How can the standard AppPool identity have permission to pop up a debugger window
I've tried to add
System.Diagnostics.Debugger.Launch();
to my IIS ASP.NET web site code. I run the application as the standard AppPoolIdentity user and it pops up a debug window where I can choose to attach VS2010 and debug the process. My question is, what allows the AppPoolIdentity (virtual) user permission to interact w开发者_StackOverflow社区ith my desktop? Normally that's not allowed. This was tested on Windows 7 x64.
Thanks!
When an unhandled exception occurs, there is a check done in the registry to see which debugger is listed.
32 bit systems use: KEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AeDebug\Debugger
This can also be the source of a security vulnerability - see http://support.microsoft.com/kb/923827
for details on the AEDebug registry key see: http://msdn.microsoft.com/en-us/library/5hs4b7a6.aspx
The app pool identity isn't interacting with your desktop - the debugger request is. Nothing has 'interacted' until you choose to debug, at that time the debugger is launched and you attach to that process.
The easist thing to do is in VS attach to process, choose IIS. You can set a breakpoint in your app and it will stop on the breakpoint. It will stop every web site on your pc too!!!!
The other thing you can do is set the debugging mode on your app. The default is just my code. Tell it to debug native code too.
here was a question like yours How to start aspnet_wp.exe without firing Application_Start event
精彩评论