[pchelpers] News:Hacker highlights gaping Vista security hole

• From: John Durham <john.modec@xxxxxxxxxx>
• To: PC-Helpers <pchelpers@xxxxxxxxxxxxx>
• Date: Sun, 18 Feb 2007 07:02:12 +1300

Microsoft tries to play it down

Ian Williams, vnunet.com 16 Feb 2007

White hat hacker Joanna Rutkowska claims to have discovered a gaping
hole in the User Account Control (UAC) security functionality of Windows
Vista.

Microsoft admitted that many users ran Windows XP constantly using the
admin account, which provides unfettered access to all parts of the
system.

To help mitigate the security risks, Vista runs in a normal user account
by default and provides pop-up confirmation dialogues when it needs to
perform admin functions, such as modifying system files.

Rutkowska discovered that when Vista detects that the user is running an
installation file it kicks into full admin mode.

If a user wishes to install a new program they are presented with the
option either to allow the installer complete system privileges or not
to run the program at all.

More here:
http://www.pcmag.co.uk/vnunet/news/2183507/vista-secirity-hole-discovered
-- 
John Durham
Site http://modecideas.com
Server hosted on Ubuntu 4.10
Good advice is like good paint. It only works when applied.



-- 
-------list-services-below-----------
Regards, John Durham (list moderator) <http://modecideas.com/contact.html?sig>
Freelists login at http://www.freelists.org/cgi-bin/lsg2.cgi
List archives at http://www.freelists.org/archives/pchelpers
PC-HELPERS list subscribe/unsub at http://modecideas.com/discuss.htm?sig
Latest news live feeds at http://modecideas.com/indexhomenews.htm?sig
Good advice is like good paint- it only works if applied.

• » Related posts
• » Previous by Date
• » Next by Date
• » This Month's Archive
• » Main Archive Page

• » View list details
• » Manage your subscription