My application uses a Named Pipe to do IPC. What access control should I place on it, to provide broad local only access?

我的应用程序使用命名管道来执行 IPC。我应该对其进行什么访问控制，以提供广泛的本地访问权限？

The pipe is created by the .net 2.0 remoting protocol, and it already has an ACL for the 'NETWORK' group to deny all access, so I think only local users can access it. In my remoting configuration file I need to pick an 'authorizedGroup' who can access this pipe.

管道是由.net 2.0 远程协议创建的，它已经有一个 ACL 用于 'NETWORK' 组来拒绝所有访问，所以我认为只有本地用户可以访问它。在我的远程配置文件中，我需要选择一个可以访问此管道的“authorizedGroup”。

I would like any process running on the local machine to access my named pipe.

我希望在本地机器上运行的任何进程都可以访问我的命名管道。

I would appear to need to select between access for the 'Everyone' Group or the 'Authenticated Users' group. Given the local-only access, what processes might be running under the 'Everyone' group that are not in the 'Authenticated Users' group?

我似乎需要在“所有人”组或“经过身份验证的用户”组的访问权限之间进行选择。鉴于仅限本地访问，哪些进程可能在“所有人”组下运行，但不在“已验证用户”组中？

I'm interested in answers for Windows XP and above.

我对 Windows XP 及更高版本的答案感兴趣。