PySecurityDescr iptor object to set the process-wide security values.
But I'm not able to find a way to let the code go through.
I have read MSDN and searched web, I've not been able to find answer. I
cooked a security descriptor like this (assume aces is a tuple of tuple
(access, sid) :
sd = win32security.S ECURITY_DESCRIP TOR()
sd.Initialize()
sd.SetSecurityD escriptorOwner( sid_owner, False)
sd.SetSecurityD escriptorGroup( sid_group, False)
# create DACL
dacl = win32security.A CL()
dacl.Initialize ()
for (access, acc_sid) in aces:
# Add ACE which is access and SID
dacl.AddAccessA llowedAce(win32 security.ACL_RE VISION, access,
isinstance(acc_ sid, (unicode, str)) and
win32security.C onvertStringSid ToSid(acc_sid) or acc_sid)
sd.SetDacl(True , dacl, False) # SetSecurityDesc riptorDacl
print sd.IsSelfRelati ve() # result is 1
The sd is a self relative one.
>From MSDN, after calling InitializeSecur ityDescriptor, the sd isabsolute sd, and CoInitializeSec urity needs absolute sd. Pythonwin has
not wrapped function like 'MakeAbsoluteSD '.
Has someone ever had same problem. Could you give a hint for solving
the problem. Thanks.
Regards