Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations SkipVought on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

DIsabling the shutdown command, not just hiding it

Status
Not open for further replies.
mwingeier

mwingeier

MIS
Jul 19, 2002
41
0
0
US
I recently came across a bug in one of my company's applications whereby when I was logged on to the terminal server and hit the application shutdown button, the whole server shut down. When asking why this happened, the reply was that it was by design: the program sends a system call to shut down workstations (which is desired) regardless of priviledge level, but can't tell the difference between a workstation that is OK to shut down, and a server that is not.
I am unable to modify these routines, as the reponse I get is that they are working as intended. I have looked at the various ways to hide shutdown from users, but the call is still available, and so this program can still shut things down. Given this set of circumstances, is there a way to disable the shutting down of the system by this call, but still allow normal administrator access to shut it down if needed?
 
Sort by date Sort by votes
As Paul said:
paulhthomas said:
hmmm, interesting :)
Click to expand...

My question is: Is this a "Bug" in your application or a "Bug" in terminal server - If your application is running with the user's privileges, then theoretically any user of a terminal server could shut down the whole server, which is not a good thing ;-)

 
Upvote 0 Downvote
It appears to be a flaw in the way the shutdown routine that is being called, was designed. Since non-admins log into these stations, the routine was designed to shut down the station regardless of access level. From what I have been told, this is happening because the routine calls the shutdown process with the system account. Obviously blocking the system account from executing a shutdown would be a bad thing indeed, and this routine sends a blind shutdown, not caring what system it is trying to shut down.
So in the end, I am looking to block system level calls for shutdown, but still allow an admin interactive session to shut down the system. At first glance, it wouldn't seem possible, but someone may know a trick that I am unaware of. I'm just trying to patch my end to fix someone else's bad programming.
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

microsGuy16
  • Locked
  • Question
Can not copy files to Mapped drive
Replies
0
Views
105
microsGuy16
microsGuy16
mangentle
  • Locked
  • Question
What are the key advantages of using Microsoft Windows Servers for businesses?
Replies
1
Views
129
gbaughma
gbaughma
dpellegrini
  • Locked
  • Question
Website will load using hostname but not IP address
Replies
3
Views
180
mangentle
mangentle
DeepuM
  • Locked
  • Question
Web Response returned Web Exception : The underlying connection was closed error | Simphony & QS
Replies
0
Views
78
DeepuM
DeepuM
mangentle
  • Locked
  • Question
What could be the potential causes if a Microsoft Windows Server is experiencing slow network!
Replies
1
Views
135
gbaughma
gbaughma

Part and Inventory Search

Sponsor

Back
Top