简体繁体中英

Where should a Windows service, running as Local System, store a private key in the file system?

原文 2018-12-12 14:49:36 0 1 windows-services/ system32/ dpapi/ windows-process/ windowstaskschedule

I need to generate and store a sensitive file (assume that it is not a traditional PKCS format) private key and keep it accessible to the running service.

Normally, when running as a service account (AD User), I would store the file under the user's profile, and then let standard Windows security handle this.

Outside of the CryptoAPI, where in the file system should I store this private key?

1 answers

Using DPAPI, you can either use current user credentials or either the LocalMachine 'creds'.

LocalMachine will make all users on the computer able to Unprotect the data (still a solution though... if you trust every user on this computer).

Or, you can use impersonation to get the current user & do your stuff.

Making keyboard and mouse operations in a windows service running as a local system?

What are the security risks in running a Windows Service as “Local System”?

Windows Service running with Local System rights, wants to create child processes from windows service which will running with Local User rights

Running msiexec from a service (Local System account)

How can I get the MainWindowHandle of a Windows 7 application running as user <foo> from within a service running as Local System?

Can a Windows service running under Local System create new files on the computer it is running on?

Windows Service running as Local System unable to launch Com Server as Interactive User

Why does “Local System” account lack permissions to NTFS Filesystem (running java as windows service)

printing a PDF file in a C# windows service under Local system account

Windows Service not writing text file after installation in Windows Service System

暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Making keyboard and mouse operations in a windows service running as a local system? What are the security risks in running a Windows Service as “Local System”? Windows Service running with Local System rights, wants to create child processes from windows service which will running with Local User rights Running msiexec from a service (Local System account) How can I get the MainWindowHandle of a Windows 7 application running as user <foo> from within a service running as Local System? Can a Windows service running under Local System create new files on the computer it is running on? Windows Service running as Local System unable to launch Com Server as Interactive User Why does “Local System” account lack permissions to NTFS Filesystem (running java as windows service) printing a PDF file in a C# windows service under Local system account Windows Service not writing text file after installation in Windows Service System

Related Tags

Where should a Windows service, running as Local System, store a private key in the file system?

Question

1 answers

solution1 0 2019-01-09 09:44:25

solution1
0 2019-01-09 09:44:25