Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Release v0.7 (Beta) #21

Merged
merged 54 commits into from
Apr 5, 2020
Merged

Release v0.7 (Beta) #21

merged 54 commits into from
Apr 5, 2020

Conversation

gerardog
Copy link
Owner

@gerardog gerardog commented Feb 11, 2020
edited
Loading

Release v0.7

  • For security reasons, the Credentials Cache is no longer 'automatic' by default. It has 3 modes now:
    • Disabled: Every elevation request shows a UAC popup.
    • Explicit: (default) Every elevation shows a UAC popup, unless a cache session is started/stopped with gsudo cache on/off.
    • Auto: Simil-unix-sudo. The first elevation shows a UAC Popup and starts a cache session automatically.

Those who want to see a reduced amount of UAC popups must opt-in to start a cache session (gsudo cache on) or set the Auto mode (gsudo config CacheMode Auto).

  • Are you leaving the keyboard to a co-worker? run gsudo -k to stop all cache sessions.

  • gsudo can not only launch elevated but also unelevate or restrict the permissions of a given command. With the added the -integrity {integrity} | (-i {integrity} for short) option to launch a process with any integrity level. For example:

    • gsudo -i Low {command} start the process with low integrity, restricted permissions.
    • gsudo -i Medium {command} start with normal permissions. Can be used to unelevate a process.
    • Only High (the default) or higher has local admin privileges.

  • Added gsudo status to show info regarding the user, elevation, and cache status.

  • gsudo is now just one single EXE file, (no DLLs). (Single executable #26)

  • New internal method to elevate/unelevate based on replacing the new process security token, instead of (the now deprecated) console attachment/redirection.

Fixes:

@gerardog
Added '-k / --kill' (for a lack of better --syntax) to kill active cr…
68c6750 
…edentials cache. (Inactive gsudo services will end. Active ones will remain open until the elevated app is closed.
@gerardog
Clear Credentials Cache
d337b95
@gerardog
Nicer error message when user clicks 'No' on UAC Popup.
0e4bb64
@gerardog
Merge branch 'master' into dev
8995721
@gerardog
CredentialsCacheLifetimeManager thread should be Background
19be24c
@gerardog
Allow disabling Credentials Cache if CredentialsCacheDuration = 0.
7030f9d 
Protection against parent process tampering.
Protection against debugger attached on non-elevated gsudo.
@gerardog
Minor fixes
7d890ce
@gerardog
Added SecurityEnforceUacIsolation, Global (system-wide) config settings.
e9251f4
@gerardog
Added --nocache to elevate a command but be sure your credentials c…
8ad576b 
…ant be used again. (very safe)

Added `--unsafe` so credentials cache accepts connections from any gsudo parent process and duration is set to infinite. Virtually disables UAC. (use at your own risk)
Renamed '--raw' to '--piped', because 'raw' is not very representative.... `--raw` still supported for backwards compat.
@gerardog
Coding style fixes
283c83c
@gerardog
Renamed --raw to --piped because it is more accurate. (--raw still wo…
c73757b 
…rks as an alias for backward compat).

Fixes in AdjustUacIsolationRequest.
@gerardog
refactor: Coding readability
3ff37a8
@gerardog
feat: Integrity Level Token WIP
ef3ef19
@gerardog
Fix: Ctrl-Break was not correctly being forwarded
f39bdea
@gerardog
chore: renamed ProcessExtensions as ProcessHelper
81b1e9d
@gerardog
Named Piped Clients using TokenImpersonationLevel.Identification in…
72746b8 
…stead of Impersonation
@gerardog
Credential cache logging and disposal improvements
7469f32
@gerardog
fix: issue where Shell detection failed to detect cmd when grandparen…
f5ab6ff 
…t pid is pwsh.
@gerardog
fix: issue with ctrl-c when attached
0ab8bd7
@gerardog
Added [-i|--integrity] {IntegrityLevel} to specify a desired Integr…
32ed01a 
…ity Level. gsudo can now elevate or restrict the permissions of a given command.

Added `status` verb to list info on the current console/gsudo session.
@gerardog
Added AttachRun Command to launch processes with lower integrity leve…
0ffda32 
…l on the same console.
@gerardog
Improved gsudo status command, added username.
04fb3ad
@gerardog
Refactored NamedPipes classes
36982e9
@gerardog
fix: AttachRun return ExitCode
3bcbbd8
@gerardog
Added new elevation mode TokenSwitch that starts the process at the c…
af68b2f 
…lient and uses the service to change it's security token.

Piped, Attach, and VT modes now Obosolete.
Initial refactor ProcessFactor.
@gerardog
fix: wait on windows apps
87bb7ff 
fix: Fixed tests
@gerardog
Workaround for #27: Running gsudo from mapped drive fails.
1330e5f 
If invoked from a network drive, once elevated it won't be able to read the network drive because is not connected on the elevated session,
Therefore, disabled this protection for this scenario.
@gerardog
Work on v7 milestones.
792c0b7 
- Added CacheMode setting for higher default security and customization of the cache sessions and UAC popups
- Added security warnings when starting the cache session or when changing the CacheMode.cs
- SingleUseElevation: When cache is off and not in auto mode, the UAC popup shows a more explicit command line to elevate on the UAC popup.
- Improved 'gsudo status' to show if there is a cache session available.
- Silent -k if used as in: gsudo -k command
- Deprecated console modes: attached, piped, vt, superseeded by TokenSwitch mode.
- Removed --unsafe and --nocache because CacheMode superseeds them.
@gerardog
Code comments and cosmetics
2c28e78
@gerardog
fix: cacheduration issue on service
9d0420f
@gerardog gerardog changed the title Release 0.7 (DRAFT) Release v0.7 (Beta) Apr 2, 2020
@oising
Copy link

oising commented Apr 4, 2020

This is getting really nice! Great work!

@gerardog gerardog merged commit 3088ef6 into master Apr 5, 2020
@github-pages github-pages bot temporarily deployed to github-pages April 5, 2020 06:12 Inactive
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
2 participants
@gerardog @oising