Windows Vista Security News

Windows Vista Information - Security, news, articles, tips and more.

• Home
• Contact

Latest Entries

• Should Microsoft Throw Away Vista?
• Angry Vista users vent over SP1 driver issues
• Want Vista SP1? Here is what to expect
• 99 Windows Vista Performance Tips and Tweaks
• Has Vista lost all credibility?

Why UAC will not work

Sunday, January 13th, 2008

It’s security’s dirty little secret: Not having your users logged in as root or administrator will not stop malware. There is a huge public security thrust to ensure that users are not constantly logged on with highly privileged access. In Microsoft Windows, this means not being logged in as a member of the administrators group or any of the other 17 groups with admin-like privileges.

In Unix/Linux/BSD, this means not being logged in as root or bin or whatever else is close. In the AS/400, it means not being logged in as Qsysop or Qsecofr. For mainframes, it might mean superuser, terminal 0, or another user label indicating special privileges. Unfortunately, the concept of least privilege is more a popular mantra than a rule in most environments. This is especially true at home, but it’s nearly as bad at work. If you want to find someone logged in as administrator or root all the time, point your finger in the general direction of network security folks: "Do as I say, not as I do." Security design: Why UAC will not work | InfoWorld | Column | 2008-01-11 | By Roger A. Grimes

Related Posts

• Security architecture of Windows Vista, Part 2
• Security architecture of Windows Vista, Part 1
• Should Microsoft Throw Away Vista?
• Angry Vista users vent over SP1 driver issues
• Want Vista SP1? Here is what to expect
• 99 Windows Vista Performance Tips and Tweaks
• Has Vista lost all credibility?
• Speed Up Windows Vista
• Recover Files with Shadow Copies on Any Version of Windows Vista
• WGA exploit finder coming, changes made to WGA in Vista SP1
• Microsoft Pulls Buggy Windows Vista SP1 Files
• Six safety tips for using gadgets with Windows Vista
• Windows Vista SP1 Set For Launch
• Lock down your Windows Vista logon tight
• Windows 7 = Vista Release 2
• Software Tool Strips Windows Vista To Bare Bones
• Microsoft: Vista More Secure Than XP and Open Source
• Windows Vista Security One Year Later
• Microsoft relents: Vista consumer virtualization ban lifted
• 30 free essential utilities for Windows Vista
• How to tame Windows Vista
• Bypass the Windows Vista logon procedure
• Windows Vista, Office 2007 Expelled From British Schools
• 12 Windows Vista Tweaks To Boost Your PC
• The Secret Of UAC

Comments are closed.

Please read our Disclaimer

Search

Your search engine brought you here? please use the same keyword in the Google box below to find what you are looking for.

Web This Site

© Windows Vista Security News 2006 - 2008 All Rights Reserved
Site Map | About | Disclaimer | Privacy Policy

Design by Andreas Viklund | Ported by Matteo Turchetto