Re: CWS = Crummy Windows Security

From: Bartlett,James D (James.D.Bartlett_at_BUSINESS.COLOSTATE.EDU)
Date: 10/08/04

Next message: Bartlett,James D: "Who needs Real Player?"

Previous message: Drew Copley: "Re: Disclosure policy in Re: RealPlayer vulnerabilities"
Maybe in reply to: Andrew Aronoff: "CWS = Crummy Windows Security"
Next in thread: Ron Parker: "Re: CWS = Crummy Windows Security"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date:         Thu, 7 Oct 2004 16:18:55 -0600
To: NTBUGTRAQ@LISTSERV.NTBUGTRAQ.COM

Well, the default user of a basic XP installation always has admin
rights. Every distressed CWS victim that I have ever dealt with was a
low-level user running a single account on a non-domain personal
machine. Being the only user on their machines, they were all admins.
XP does not discriminate on installation. Maybe there should be a
computer literacy test built into the default XP install that limits
security level based on the results. ;)

~Jimmy Bartlett
Security Team Lead
College of Business @ Colorado State University
Business e-mail: james.d.bartlett@business.colostate.edu

-----Original Message-----
From: Windows NTBugtraq Mailing List
[mailto:NTBUGTRAQ@LISTSERV.NTBUGTRAQ.COM] On Behalf Of Ron Parker
Sent: Friday, October 01, 2004 8:59 AM
To: NTBUGTRAQ@LISTSERV.NTBUGTRAQ.COM
Subject: Re: CWS = Crummy Windows Security

Unfettered? What's "unfettered" mean? By default, AppInit_DLLs
is read-only for all but administrators and system. If your users
are running untrusted software as administrators, that key is the
least of your worries.

--
NTBugtraq Editor's Note:
Want to reply to the person who sent this message? This list is configured such that just hitting reply is going to result in the message coming to the list, not to the individual who sent the message. This was done to help reduce the number of Out of Office messages posters received. So if you want to send a reply just to the poster, you'll have to copy their email address out of the message and place it in your TO: field.
--

Next message: Bartlett,James D: "Who needs Real Player?"

Previous message: Drew Copley: "Re: Disclosure policy in Re: RealPlayer vulnerabilities"
Maybe in reply to: Andrew Aronoff: "CWS = Crummy Windows Security"
Next in thread: Ron Parker: "Re: CWS = Crummy Windows Security"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages

Re: sysinstall nigthmare
... Only if you're looking for job security. ... Ease of installation means something quite different for the big farm ... admin who has to care for a thousand machines than for the home user who ... long will the script be if you want to have many different ports? ...
(comp.unix.bsd.freebsd.misc)
Re: Age of Mythology game requires admin rights !
... No. Windows 2000 has an excellent security model, ... During installation it would feel free to ... wants Admin, I have seen many that wouldn't run without some horsing around. ... That's the HKCU for Administrator. ...
(microsoft.public.win2000.security)
Re: Error Message 0x80242006 when installing KB942615
... AumHa VSOP & Admin http://aumha.net ... missing this, then tries to download/install, that the installation has ... Illusion!I dont know...I do know I am sick to death of these security update ...
(microsoft.public.windowsupdate)
Re: lighting---hacked!
... the only possible security measure one might take. ... I made to turn off ipchains which we have only been running for about ... Take, in particular, the installation of ipchains, which is what ... >From the GUI interface and what documentation I had ...
(comp.os.linux.security)
Re: Software Distribution Service 3
... to a checkpoint prior to that installation. ... to restore prior to the checkpoint before this Windows Update was applied I ... your best bet would be to open a free support incident. ... security updates. ...
(microsoft.public.windowsupdate)