Started by Noverco, June 13, 2016, 08:44:25 PM
Quote from: Noverco on June 13, 2016, 08:53:58 PMThank you aDVll, for your quick reply and explanation - could I possibly use task scheduler as an alternative workaround?
Quote from: fixer on June 13, 2016, 09:19:48 PMReHIPS GUI for security purposes requires administrator account (doesn't matter elevated to the real admin or using limited token) to connect to the Service and control it. The Service checks if the connecting process was started by a user from Administrator group. If not, it disconnects. This was done for security purposes to restrict other non-admin users to control ReHIPS.Recently there were some changes in this policy. Service now supports connections from both administrators and users from the whitelist. But GUI part doesn't support it yet though, will be implemented later. But if you can't wait, you can edit the xml database manually
Quote from: fixer on June 13, 2016, 09:33:13 PMFirst-as far as I remember, this feature is not in current build yet. And second-it wasn't tested at all, even internally.But as a sneak peek: trusted command lines are stored like ReHIPS-ReHIPSTrustedCmdLines-TrustedCmdLine-CmdLine. And whitelisted users are stored like ReHIPS-ReHIPSTrustedUsers-TrustedUser-Sid. As you probably noticed by name it expects user SID like the one in ReHIPSRulesUsers.