5 captures
20 Aug 2023 - 26 Nov 2025
Dec JAN Feb
24
2024 2025 2026
COLLECTED BY
Organization: Archive Team
Formed in 2009, the Archive Team (not to be confused with the archive.org Archive-It Team) is a rogue archivist collective dedicated to saving copies of rapidly dying or deleted websites for the sake of history and digital heritage. The group is 100% composed of volunteers and interested parties, and has expanded into a large amount of related projects for saving online and digital history.

History is littered with hundreds of conflicts over the future of a community, group, location or business that were "resolved" when one of the parties stepped ahead and destroyed what was there. With the original point of contention destroyed, the debates would fall to the wayside. Archive Team believes that by duplicated condemned data, the conversation and debate can continue, as well as the richness and insight gained by keeping the materials. Our projects have ranged in size from a single volunteer downloading the data to a small-but-critical site, to over 100 volunteers stepping forward to acquire terabytes of user-created data to save for future generations.

The main site for Archive Team is at archiveteam.org and contains up to the date information on various projects, manifestos, plans and walkthroughs.

This collection contains the output of many Archive Team projects, both ongoing and completed. Thanks to the generous providing of disk space by the Internet Archive, multi-terabyte datasets can be made available, as well as in use by the Wayback Machine, providing a path back to lost websites and work.

Our collection has grown to the point of having sub-collections for the type of data we acquire. If you are seeking to browse the contents of these collections, the Wayback Machine is the best first stop. Otherwise, you are free to dig into the stacks to see what you may find.

The Archive Team Panic Downloads are full pulldowns of currently extant websites, meant to serve as emergency backups for needed sites that are in danger of closing, or which will be missed dearly if suddenly lost due to hard drive crashes or server failures.

Collection: Archive Team: URLs
TIMESTAMPS
loading
The Wayback Machine - http://web.archive.org/web/20250124050816/https://medium.com/@boutnaru/windows-security-user-interface-privilege-isolation-uipi-db790ad173eb

Windows Security — User Interface Privilege Isolation (UIPI)

--

User Interface Privilege Isolation (UIPI) was introduced in Windows 2008/Vista with the goal of mitigating "Shatter Attacks". Those types of attacks leverage the Windows’s message passing system which can be used to inject arbitrary commands/code to any application/service running in the same session, those we are using a "message loop" (https://www.slideserve.com/milek/shoot-the-messenger-win32-shatter-attacks-by-brett-moore).

UIPI allows isolating processes running as a full administrator from processes running as an account with lower permissions than an administrator on the same interactive desktop. UIPI is specific to the windowing/graphic subsystem (aka Windows USER). Thus, a process with lower privileges can’t perform operations on a process with higher privileges like: DLL injection, thread hooks for attaching, journal hooks for attaching, use window messages API (SendMessage/PostMessage) and more (https://learn.microsoft.com/en-us/previous-versions/aa905330(v=msdn.10)).

However, there are still resources that are shared between processes at different privilege levels like: clipboard, global atom table, desktop window and the desktop heap read-only shared memory. Also, painting on a screen is not controlled using UIPI, so a lower privilege application can paint over the surface region of a higher privilege application window — the GDI model does not allow control over painting surfaces (https://learn.microsoft.com/en-us/windows/win32/gdi/painting-and-drawing).

Lastly, we can control the configuration of UIPI using the "EnableUIPI" value under the "HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\System\" registry path — as shown in the screenshot below (https://www.tipandtrick.net/fix-third-party-input-language-method-editor-ime-issues-in-ie-and-windows-vista-by-disabling-uipi/). A value of "0" disables UIPI, and if the value is not present by default it means UIPI is enabled (http://pferrie.epizy.com/papers/antidebug.pdf).

See you next time ;-) You can also follow me on twitter — @boutnaru (https://twitter.com/boutnaru).

https://www.tipandtrick.net/fix-third-party-input-language-method-editor-ime-issues-in-ie-and-windows-vista-by-disabling-uipi/

--

--

No responses yet

AltStyle によって変換されたページ (->オリジナル) /