Hey Listee's I am running Virtual Box on one of our domain controllers (Win 2k3; There is simply no where else to run it!) and I am wondering; is there anyway I can run Virtual Box as a service so I don't have to leave a user constantly logged in? What is bothering me in particularly is that often you find service exploits that when executed against a service on a server give the attacker the same privileges as the currently logged on user and currently the server has a "power users" of sorts, logged in (just a user with make/delete users and change password privileges, that sort of thing). If someone were to run such an exploit against this domain controller they could then make a new user, set a password etc and give that user the same "power user" status.
How can I tackle this, can VB be run as a service or should I just log on the the server as a guest and fire up VB (but that doesn't help when I need to fire up ADUC and add users, although I could just use the "Run As" feature?). How do other people tackle this? Thanks for reading guys. Regards, James ;) -----BEGIN GEEK CODE BLOCK----- Version: 3.1 GIT/MU/U dpu s: a--> C++>$ U+> L++> B-> P+> E?> W+++>$ N K W++ O M++>$ V- PS+++ PE++ Y+ PGP t 5 X+ R- tv+ b+> DI D+++ G+ e(+++++) h--(++) r++ z++ ------END GEEK CODE BLOCK------ _______________________________________________ vbox-users mailing list [email protected] http://vbox.innotek.de/mailman/listinfo/vbox-users
