Using DPAPI under NPLogonNotify processing
Fri, 20 Jun 2008 10:45:34 -0700 (PDT)
I have a service running under local system account that processes
NPLogonNotify calls. As part of its processing my service uses DPAPI
to unprotect data for the logged on user.
.....
ImpersonateLoggedOnUser(hUserToken) ;
if (CryptUnprotectData(auth, &pDescOut, optionalEntropy, NULL, NULL,
CRYPTPROTECT_UI_FO ...
|
Credentials dialog in a network provider
Fri, 20 Jun 2008 02:49:04 -0700
Hi,
1. In NPAddConnection3, do I need to create and display a credentials dialog
for the user? Or returning WN_BAD_PASSWORD is enough?
2. If indeed I am the one that has to create the dialog, is there any
default credentials dialog that I can use?
Thank you very much!
Josef ...
|
IE Toolbar security: signing toolbar dll
Thu, 19 Jun 2008 12:27:00 -0700
I have created a simple toolbar that deals with some sesitive data for the
user. I know a dll can be signed so that someone else can't go in and simply
replace my dll with one they have modified. Does IE have any functionality to
check the validity of a dll which it loads as a toolbar? If not any ideas as
...
|
CreateProcess from a Service
Thu, 19 Jun 2008 09:18:02 -0700
I am having problems with a service which I wrote to start up our applications.
The service uses the CreateProcess().
After so many of the processes are started the remainder start then die
almost emidiatly.
The service believes the processes all started and has process ids.
Depending on the account the servic ...
|
RE: Detached signature...
Wed, 18 Jun 2008 14:26:00 -0700
Hi,
.NET does not add the hash to the signature if the property SignedAttributes
of the CmsSigner used in the computation is empty. If you want the signature
to contain the digest, you must add an element to the SignedAttributes
collection. For example, you can add a Pkcs9SigningTime instance :
signer. ...
|
Acquiring private key
Wed, 18 Jun 2008 17:26:24 +0200
Hello,
I am trying to get a HCRYPTPROV from a certificate private key stored in
a smart card. I am using CryptAcquireCertificatePrivateKey(). It works
with an application launched by the user, but it fails when called from
an application running as system.
Is there another way to get this handle ? I trie ...
|
RSA Encryption without Session Keys - (I know it's a bad idea)
Wed, 18 Jun 2008 07:30:08 -0700 (PDT)
I'm looking into replacing openssl in my application with CryptoAPI.
The problem I've run into is my application uses openssl to encrypt
passwords with a public key. This "encrypted" password is transmitted
to a server that decrypts the password with the appropriate private
key. I understand the correct thing to ...
|
|
|
How to get credentials for network access in authentication package?
Wed, 18 Jun 2008 12:50:11 +0000 (UTC)
Hi,
maybe my question is a bit weird, but I guess I just don't understand
the whole logon process good enough. Bear with me.
My situation is this. I created a custom authentication package which
is supposed to be used by OpenSSH with public key authentication. The
public key is stored in the user's home ...
|
LsaEnumerateLogonSessions
Tue, 17 Jun 2008 10:21:05 +0200
Hi,
I need an unique identifier for all loggon sessions. For that I use
LsaEnumerateLogonSessions and LsaEnumerateLogonSessions.
I've tried microsofts sample code to enumerate logon sessions which can be
found under: http://msdn.microsoft.com/en-us/library/aa375400(VS.85).aspx
When I start the program o ...
|
How can I create a PFx certificate with specific keypair?
Sat, 14 Jun 2008 14:57:02 +0800
Hi everyone,
I need to create a PFX certificate with my Key pair,I mean I have a key pair
(public key and private key) and I would like to create a certificate(PFX)
with these keys ,is it possible? if yes, how can I do this ?if there is any
tools that can help me please inform me.
I'd appreciated for any hel ...
|
