James Forshaw 
Okay, so I did a quick dive into sudo in Windows and here are my initial findings. https://www.tiraniddo.dev/2024/02/sudo-on-windows-quick-rundown.html
The main take away is, writing Rust won't save you from logical bugs :)
Ketumbra@tiraniddo Nice work, as always! MS should just run all their new features past you before they release :P
Rairii@tiraniddo nice. i meant to look at it myself, especially since it was teased in 26047, but forgot to after bindiffing bootmgr lol
✧✦Catherine✦✧@tiraniddo this is a remarkably poor implementation
Graham Sutherland / Polynomial@tiraniddo insecure DACLs are the gift that keeps on giving
bert hubert 🇺🇦🇪🇺🇺🇦@tiraniddo A point also made in https://spectrum.ieee.org/lean-software-development - we've not made a lot of progress in preventing or detecting logic bugs.
*sigh*Ber nard@tiraniddo thank you.
So sudo in Windows compares to sudo on Linux like curl in PowerShell compares to curl in cmd.exe or Unix or systemd/Linux or ...
So sudo in Windows compares to sudo on Linux like curl in PowerShell compares to curl in cmd.exe or Unix or systemd/Linux or ...
martini@tiraniddo so sudo on Windows is to sudo on Linux what rsh is to ssh
kapsiR@tiraniddo
Nice article! Thanks!
Would you recommend buying your book ("Windows Security Internals") even if the "Windows Internals" knowledge is limited?
@kapsiR well I'd like to believe I've tried to make the book not require a deep level of Windows internals knowledge. There's a few chapters at the start to get you up to speed on Windows internals things. Perhaps take a look at the index and the sample chapter on the No Starch page (https://nostarch.com/windows-security-internals) and see what you think.
@tiraniddo I did it! Looking forward to get a fresh copy 😊
@kapsiR nice, I hope it meets your expectations :)