You can duplicate this behavior by using multiple accounts and using runas (which is essentially, from what I gather, what winquota does.)<br>You can granularly adjust your user's permissions, not only the file permissions but also some of the 'windows api permissions' (I don't know their correct name.)
<br><br>You could even do it all from the command line, probably using 'secedit' and 'net' and 'runas' (or a third party runas, I forget the name but it made up for all runas failings.)<br><br>Using this you can construct a jail for risky software. (But there are still privilege escalation attacks, window shattering, etc.)
<br><br><div><span class="gmail_quote">On 2/20/07, <b class="gmail_sendername">Victor Krapivin</b> <<a href="mailto:vik@scand.com">vik@scand.com</a>> wrote:</span><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">
<div>
<p>Hello full-disclosure,</p>
<p><br></p>
<p>> So is there anyone who can help me or who already implemented</p>
<p>> a more chroot-like jail with microsoft windows?</p>
<p><br></p>
<p>I've found such interesting tool named WinJail: <a href="http://www.winquota.com/wj/" target="_blank" onclick="return top.js.OpenExtLink(window,event,this)">www.winquota.com/wj/</a></p>
<p><br></p>
<p>Did anybody seen it?</p>
<p><br></p>
<p><span>-- </span></p>
<p><span>Best regards,</span></p>
<p><span> Victor</span></p>
</div>
<br>_______________________________________________<br>Full-Disclosure - We believe in it.<br>Charter: <a onclick="return top.js.OpenExtLink(window,event,this)" href="http://lists.grok.org.uk/full-disclosure-charter.html" target="_blank">
http://lists.grok.org.uk/full-disclosure-charter.html</a><br>Hosted and sponsored by Secunia - <a onclick="return top.js.OpenExtLink(window,event,this)" href="http://secunia.com/" target="_blank">http://secunia.com/</a><br>
</blockquote></div><br>