Re: How to prevent malware from running on your PC

From: nutso fasst (no.replies_at_no.where)
Date: 09/25/05


Date: Sun, 25 Sep 2005 02:15:07 GMT


"Volker Birk" <bumens@dingens.org> wrote in message
news:4334e01a@news.uni-ulm.de...
> that much too many people are working as Administrator with their
> Windows-System, a mistake, Microsoft even is encouraging with their big
> design flaws in Windows XP Home, the design flaw of having too late
> sensible concepts in the market, how ISVs can make their applications
> running also without administrative rights and the phlegm and stupidity of
> those ISVs not to react now at last.

Within the setup process, or the intial startup process, guide the creation
of a user account and an admin account. Explain that the admin account is a
special account, to be logged into only for special tasks. Better yet, allow
the admin account to be logged into directly FROM the user account, exiting
back into the user account when admin duties are complete.

Do not enable any network services by default. Give the option to enable
them, with risks explained.

Perhaps there are os-independent functions that can be implemented in
firmware, not alterable by software, that could aid in avoiding a hijack or
alerting if it occurs.

nf



Relevant Pages

  • Re: How good is Comodo Internet Security?
    ... Admin account + web browser + LUA token ... admin account opposed of running as iam now, which is JUST PURE admin level? ... While LUA gives added security, ... payload delivered by a buffer overrun (assuming the app was allowed to ...
    (comp.security.firewalls)
  • Re: domain admin account impersontating
    ... i guees that the bottom line is that the domain admin account can be ... with the same username and password. ... Starting with Windows XP this became less simple, ...
    (microsoft.public.windows.server.security)
  • RE: runas issue
    ... to Power Users per new company policy,so then only one local built-in admin ... user account was at one time an admin account and was changed to power user. ...
    (microsoft.public.windowsxp.perform_maintain)
  • Re: Virus is getting domain account listing
    ... In 2003 you can change the process ID of the admin account. ... Play with the net user command at your command prompt and see what ... dictionary attack against every single account could happen. ...
    (Focus-Microsoft)
  • Re: How to restore Admin account??
    ... Remote Operator group from Administrator User. ... SBS 2003 by default don't allow the Admin account to logon through TS? ... "Frank McCallister SBS MVP" wrote: ...
    (microsoft.public.windows.server.sbs)