3
2
I've heard the equivalent of root is the "SYSTEM" account. But I used a tool called "RunAsSystem" to open a shell as SYSTEM, and I'm still getting "access denied" errors even though I know the files in question aren't in use. How can I get a shell from which I can perform any action on any file regardless of whatever permissions are set?
EDIT: This is not a duplicate of this question. That one is asking why a standard administrator account doesn't have certain permissions; I'm asking if there's an account that has full permissions for everything.
EDIT2: It's not a duplicate of this one either. That question is asking how to get a command prompt as the SYSTEM user. In my question I've clearly stated that I was able to do so, so I'm certainly not asking how to do that.
Also, I haven't chosen an accepted answer yet because I haven't decided yet--I didn't forget, if you were wondering.
Nice, never thought of using SeBackupPrivilege\SeRestorePrivilege from this angle. Thanks! – beatcracker – 2015-03-14T22:04:28.897
Good idea, and that looks like a useful script. But I'm still getting some "access denied" errors. I'm testing it by trying to create a file in
C:\program files\windowsapps\Microsoft.WindowsCalculator_6.3.9600.20278_x64__8wekyb3d8bbwe
, as well as trying to append (using>>
) toapp.xaml
within that folder. Both have failed using this method. – flarn2006 – 2015-03-15T22:03:47.0001Looks like Windows protect files inside WindowsApps somehow besides normal access control lists. Even if I explicitly grant full access to everyone, files still unavailable to edit.
icacls
shows extra entity in ACL forS-1-19-512-4096
SID, that is not shown in GUI, maybe it related somehow. – user364455 – 2015-03-16T00:50:02.723@PetSerAl I have a similar problem here http://superuser.com/questions/1039116/cannot-write-on-windowsapps-directories-and-restore-files
– Aristos – 2016-02-12T21:03:35.883