Setting Remote Launch in DCOM

Question

I can use DCOMCNFG to disable remote launch on my DCOM application, but I would like to do this programatically. I looked at CoInitializeSecurity, but that does not seem to do it. Anyone done this?

I am using Delphi BTW.

ChristianWimmer · Answer 1 · 2009-12-21T19:38:01.303

2

The binary data is simply a security descriptor structure (PSecurityDescriptor). I mean it is a copy of the memory of this structure. And, of course, the security descriptor is self relative. JWSCL can create such a structure easily.

Launch- and AccessPermission list for every user access rights that also contain remote and local access.

edited Dec 21 '09 at 19:38

answered Dec 21 '09 at 18:59

ChristianWimmer

1,039
8
16

score 1 · Answer 2 · answered Sep 17 '08 at 11:25

1

The permissions for Remote/Local Activation/Launch are stored in the registry under the AppID for the object.

I'm not sure how to edit it programmatically.

answered Sep 17 '08 at 11:25

Roger Lipscombe

89,048
55
235
380

The registry item is LaunchPermimssion in HKEY_CLASSES_ROOT\Appid But it is a long binary string that encodes permissions for various users. How to decode that seems to be the problem. Further research indcates that the answer may lie in the Security Descriptor Definition Language (SDDL). – dcraggs Sep 17 '08 at 12:20

score 0 · Answer 3 · edited May 23 '17 at 10:26

0

This is very similar to change Access Permissions in Component Services > COM Security with script/api? for which i posted a response.

edited May 23 '17 at 10:26

Community

1
1

answered Jan 15 '10 at 18:56

Ruddy

1,734
10
11

Setting Remote Launch in DCOM

3 Answers3