James Bensley wrote: > Hey Listee's > > I am running Virtual Box on one of our domain controllers (Win 2k3; > There is simply no where else to run it!) and I am wondering; is there > anyway I can run Virtual Box as a service so I don't have to leave a > user constantly logged in? What is bothering me in particularly is > that often you find service exploits that when executed against a > service on a server give the attacker the same privileges as the > currently logged on user and currently the server has a "power users" > of sorts, logged in (just a user with make/delete users and change > password privileges, that sort of thing). If someone were to run such > an exploit against this domain controller they could then make a new > user, set a password etc and give that user the same "power user" > status. > > How can I tackle this, can VB be run as a service or should I just log > on the the server as a guest and fire up VB (but that doesn't help > when I need to fire up ADUC and add users, although I could just use > the "Run As" feature?). How do other people tackle this? > > Thanks for reading guys. Regards, > James ;) > I don't know if this will help, but take a look at: http://forums.virtualbox.org/viewtopic.php?f=6&t=15449&start=0
Mikkel -- Do not meddle in the affairs of dragons, for thou art crunchy and taste good with Ketchup!
signature.asc
Description: OpenPGP digital signature
_______________________________________________ vbox-users mailing list [email protected] http://vbox.innotek.de/mailman/listinfo/vbox-users
