|
|
|
|
|
|
by Const-me
737 days ago
|
|
|
Here’s some of the Windows things which have these ACLs applied, except obvious ones i.e. files and sockets. • Disk volumes and physical disks • Pipes • Registry keys • Processes and threads • Inter-process synchronization primitives like mutexes, semaphores, and mailslots • Shared memory sections • Desktops; you need to pass access check before interacting with a desktop. The OS has multiple of them, used for fast user switching, concurrent remote desktop sessions, UAC prompt, logon screen. • Other, more exotic things like job objects, windows stations, and ALPC ports. To be fair, some of them are protected with ACLs on Linux because they are mapped into the file system. For example, physical disks are visible in the file system and the kernel does apply these security things to them. |
|
|