This is the mail archive of the
mailing list for the Cygwin project.
Re: (Partially) OT: Circumventing NAVCE (was: Performance Issuesdue to Anti-Virus software.)
- From: Igor Pechtchanski <pechtcha at cs dot nyu dot edu>
- To: Dan Vasaru <dvasaru at broadpark dot no>, Max Bowsher <maxb at ukf dot net>
- Cc: cygwin at cygwin dot com
- Date: Mon, 23 Sep 2002 18:03:15 -0400 (EDT)
- Subject: Re: (Partially) OT: Circumventing NAVCE (was: Performance Issuesdue to Anti-Virus software.)
- Reply-to: cygwin at cygwin dot com
On Mon, 23 Sep 2002, Dan Vasaru wrote:
> dan > Seriously, aren't your developers local administrators ? In that case,
> dan > they could easily disable the AV.
> Igor >I'm of half a mind to set up an ssh server just to be able to su to
> Igor >local system and kill it. But for now I live with it.
> Try installing the PSTOOLS package from
> PSKILL (part of pstools) will kill virtually any process, including
> LocalSystem processes, given enough (local administrator) rights. Of course
> you can also try stopping the service in the ControlPanel (Administrative
> Tools|Services, right click on NAV). Here's where you would restart it.
On Mon, 23 Sep 2002, Max Bowsher wrote:
> Igor Pechtchanski wrote:
> > Dan,
> > "Good luck" is the exact term needed here, in reference to turning off NAV
> > Corp. Edition. The service runs as LocalSystem, so anyone with less
> > privilege than that is not able to either turn it off or change anything
> > that is not unlocked. The way it's set up on my computer, the option to
> > stop the scan is disabled, and the scheduler is locked. Since the process
> > runs as LocalSystem as well, it is unkillable through the Task Manager.
> > I'm of half a mind to set up an ssh server just to be able to su to local
> > system and kill it. But for now I live with it.
> > Igor
> The pasted REGEDIT file shows how to regain control control of NAVCE. Of
> course, you will need local admin to edit the relevant registry
> locations. I can't say for certain that your version of NAVCE will use
> _exactly_ the same registry keys, but with this as a hint, it shouldn't
> take more than 5 minutes for anyone comfortable with registry editing to
> unlock NAVCE.
> [Registry settings snipped]
Merci beaucoup to all for your suggestions. This has been plaguing me for
a while. I was aware of being able to stop the service, but the pskill
and especially the registry settings proved very useful.
|\ _,,,---,,_ firstname.lastname@example.org
ZZZzz /,`.-'`' -. ;-;;,_ email@example.com
|,4- ) )-,_. ,\ ( `'-' Igor Pechtchanski
'---''(_/--' `-'\_) fL a.k.a JaguaR-R-R-r-r-r-.-.-. Meow!
"Water molecules expand as they grow warmer" (C) Popular Science, Oct'02, p.51
Unsubscribe info: http://cygwin.com/ml/#unsubscribe-simple
Bug reporting: http://cygwin.com/bugs.html