Question about DropMyRights application

When I use DropMyRights to run an application (Firefox, for example), how can I tell if Firefox REALLY IS running under DropMyRights?

Is there some test I can use to find out if Firefox's rights really were dropped??

 

process explorer

 

I have Process Explorer, but where do I look?

 

Look in the properties security tab for firefox.exe. You should see that a number of privileges have been dropped when compared against a normal process.

 

You should see this;
'Deny,Owner' indicates that it is being run without admin rights. Run Safer in OA gives the same 'Deny Owner' result.

 

Hi All

I was very interested in this thread because I protect my browser (Firefox) and other Internet facing software through Sandboxie, with the Drop Rights tick boxed for ALL applications. YET, it does not show up in Process Explorer as one of the replies in this thread suggested.

Why is that?

Terry

 

Sorry Bill,

Integrity level is not shown on XP I use it on Vista, there it shows the integrity level http://technet.microsoft.com/en-us/sysinternals/bb896653.aspx

 

A quick and dirty test would be to open Firefox and browse to a website. Then File->Save Webpage as... and try to save it to the Windows or Program Files directories. You should get a message box telling you that you don't have the necessary privileges.

 

My screenshot in post #5 was from XP home SP3.

 

IsAdmin extension will show you.

 

.
This extension is useful, thanks! I'm running Windows 7 and it confirms that Firefox is not running as "admin" as a result of UAC. It would appear that Drop My Rights is unnecessary in Vista and Windows 7 with UAC enabled.

 

Bellgamin...
http://mrwoojoo.com/sg/index.htm
Try out my SaferZone tool. Same thing as DMR, but different
Sul.

 

Grrreat!!!

@Sully -- I think I might prefer DMR_zone. Shall try them both in due time. Thanks!

@all- Excellent thread. Isn't Wilders wonderful!

 

Actually DMRzone was the precursor to SaferZone. Both are just the same root code that DMR uses, only I provided methods to pass items to the DMR code via drag and drops or some registry context entries.

Don't forget, if you run the small GUI, to right click on its title bar for a few options. What I normally do is just put a shortcut to SaferZone on my desktop, and drop whatever I want onto it, then it starts in SAFER mode (whichever mode you have set as default).

Sul.

 

That's strange because I'm running Firefox in a sandbox on my 32-bit XP Pro system and firefox.exe shows up in Process Explorer with DMR applied by Sandboxie.

 

FYI -- The PsExec tool with the “-l” switch can be used as an alternative to DropMyRights: see Running as Limited User - the Easy Way.

 

A very informative article. THANKS!