最近在学习写Windows服务程序,发现Windows普通程序与服务程序的初始特权很不一样,很想记录下来:
特权 | 交互服务 (System帐号) |
非交互服务 (System帐号) |
服务 (Administrator) |
普通程序 (Administrator) |
SeAssignPrimaryTokenPrivilege | Disnabled | Disnabled | ||
SeLockMemoryPrivilege | Enabled | Enabled | ||
SeIncreaseQuotaPrivilege | Disnabled | Disnabled | Disnabled | Enabled |
SeTcbPrivilege | Enabled | Enabled | ||
SeSecurityPrivilege | Disnabled | Disnabled | Disnabled | Enabled |
SeTakeOwnershipPrivilege | Disnabled | Disnabled | Disnabled | Enabled |
SeLoadDriverPrivilege |