Console Buffer Security and Access Rights

The Windows security model enables you to control access to console input buffers and console screen buffers. For more information about security, see Access-Control Model.

You can specify a security descriptor for the console input and console screen buffers when you call the CreateFile or CreateConsoleScreenBuffer function. If you specify NULL, the object gets a default security descriptor. The ACLs in the default security descriptor for a console buffer come from the primary or impersonation token of the creator.

The handles returned by CreateFile, CreateConsoleScreenBuffer, and GetStdHandle have the GENERIC_READ and GENERIC_WRITE access rights.

The valid access rights include the GENERIC_READ and GENERIC_WRITEgeneric access rights.

ValueMeaning
GENERIC_READ (0x80000000L)Requests read access to the console screen buffer, enabling the process to read data from the buffer.
GENERIC_WRITE (0x40000000L)Requests write access to the console screen buffer, enabling the process to write data to the buffer.

 

 

 

Community Additions

ADD
Show:
© 2014 Microsoft