I just thought of another suggestion that would be very helpful.
It would be great to have an option on the terminal window, to have it so that when cmd.exe is launched as a process on the client computer, then it is within the context of the currently logged on user (will probably need to do token impersonation of explorer.exe or some other hack-around).
Another solution would be to have the NT service spawn as interactive (run under the token context of the current user/a specified user)
Because the service is non-interactive, and is running under the NT AUTHORITY\SYSTEM (which can also be see by running 'whoami' in the console - or something like Process Hacker or Process Explorer), then the console does not run in the context of the currently logged on user.
It would be great to have this functionality though, because say for example I want to run a console application that saves the desktop icons of explorer before RDP-ing into the computer (so they dont get foo-bared around). In this case where the terminal (cmd.exe) is running under the context of the user, then the data would be properly saved to the right registry hive (the correct HKCU), for restoration later on.
- And also here is a large thread that I started back in 2008 on sysinternal's forums about similar things dealing with changing the user context/launching a process within a different context (I provide code at some of the posts at the end), specifically when I talk about ImpersonateLoggedOnUser and CreateProcessAsUser on the 4th page: http://forum.sysinternals.com/tip-run-process-in-system-account-scexe_topic16714.html
Along this line, it may also be useful to investigate connections via telnet too (so if a telnet session is desired, then no port forwarding needs to be setup, and it can simply be proxied through PC Monitor).
Hope this was insightful
I really love PC Monitor, and it has great potential!
I just thought of another suggestion that would be very helpful.
It would be great to have an option on the terminal window, to have it so that when cmd.exe is launched as a process on the client computer, then it is within the context of the currently logged on user (will probably need to do token impersonation of explorer.exe or some other hack-around).
Another solution would be to have the NT service spawn as interactive (run under the token context of the current user/a specified user)
Because the service is non-interactive, and is running under the NT AUTHORITY\SYSTEM (which can also be see by running 'whoami' in the console - or something like Process Hacker or Process Explorer), then the console does not run in the context of the currently logged on user.
It would be great to have this functionality though, because say for example I want to run a console application that saves the desktop icons of explorer before RDP-ing into the computer (so they dont get foo-bared around). In this case where the terminal (cmd.exe) is running under the context of the user, then the data would be properly saved to the right registry hive (the correct HKCU), for restoration later on.
Some areas to look at:
- Interactive services: http://msdn.microsoft.com/en-us/library/windows/desktop/ms683502(v=vs.85).aspx
- And also here is a large thread that I started back in 2008 on sysinternal's forums about similar things dealing with changing the user context/launching a process within a different context (I provide code at some of the posts at the end), specifically when I talk about ImpersonateLoggedOnUser and CreateProcessAsUser on the 4th page: http://forum.sysinternals.com/tip-run-process-in-system-account-scexe_topic16714.html
- Process launching without UAC notifications: http://www.codeproject.com/KB/vista-security/VistaSessions.aspx
- Discussion of similar topic over at StackOverflow: http://stackoverflow.com/questions/2974425/execute-code-in-another-users-context
Along this line, it may also be useful to investigate connections via telnet too (so if a telnet session is desired, then no port forwarding needs to be setup, and it can simply be proxied through PC Monitor).
Hope this was insightful
I really love PC Monitor, and it has great potential!