seph
10/29/2019, 1:41 PMEva
10/29/2019, 2:38 PMseph
10/29/2019, 2:39 PMEva
10/29/2019, 2:46 PMseph
10/29/2019, 2:48 PMEva
10/29/2019, 2:54 PMosqueryd
directory:seph
10/29/2019, 2:55 PMEva
10/29/2019, 2:55 PMseph
10/29/2019, 2:57 PMicacls.exe
with the directory osquery is in?Eva
10/29/2019, 2:59 PMseph
10/29/2019, 3:05 PMicacls.exe .
should workEva
10/29/2019, 3:10 PMseph
10/29/2019, 3:11 PM--allow_unsafe
flag. I’m less sure whether this represents an osquery bug.Eva
10/29/2019, 3:14 PMseph
10/29/2019, 3:14 PMEva
10/29/2019, 3:16 PMseph
10/29/2019, 3:16 PMEva
10/29/2019, 3:22 PMseph
10/29/2019, 3:23 PMEva
10/29/2019, 3:26 PMseph
10/29/2019, 3:26 PMEva
10/29/2019, 3:28 PMseph
10/29/2019, 3:30 PMget-acl
in that directory?Eva
10/29/2019, 3:32 PMseph
10/29/2019, 3:33 PMEva
10/29/2019, 3:33 PMseph
10/29/2019, 3:34 PMget-acl osqueryd
which is the binary. Can you also get-acl .
Eva
10/29/2019, 3:35 PMseph
10/29/2019, 3:35 PM