Re: Botnet threat fiction?





"DAS WULF" <guest@xxxxxxxxxxxxxxxxx> wrote in message news:a8db032830ec1b65a992213b0773063b@xxxxxxxxxxxxxxxxxxx

here are some links.

'US surfers 'alarmingly' ignorant over botnet danger - Security -
iTnews Australia'
(http://www.itnews.com.au/News/73710,us-surfers-alarmingly-ignorant-over-botnet-danger.aspx)

'Botnet - Wikipedia, the free encyclopedia'
(http://en.wikipedia.org/wiki/Botnet)



Yeah, well you're right. US suffers are unaware of the botnet dangers as the surf the Internet with Windows machines with full Admin rights, and they don't know how to implement safe hex computing practices.

I think UAC on Vista is trying to address some of the issues by not allowing the Admin user to run on the Internet with Full Admin rights, and the Admin is locked down to Standard user rights. If the Admin is on the Internet and something is happening that requires Full Admin rights, then the user is prompted to allow or disallow the action. If the user is a Standard user, then the user is prompted to give a user-id and psw to an Admin account to proceed. At least, something would be in their face forcing them take notice that something could be happening good or bad, if they recognize the situation.

http://news.softpedia.com/news/Admin-Approval-Mode-in-Windows-Vista-45312.shtml
http://technet.microsoft.com/en-us/library/cc709691.aspx

It is not unlike a user running on Linux where the user is a Limited user or a user that's not an Admin with full rights, until such time the user is prompted to give the root user/admin user-id and psw before things will processed.

UAC if enabled can help stop this kind of stuff from happening if the user recognizes the conditions as to why the user is being prompted.

http://www.eweek.com/c/a/Security/Hundreds-Click-on-Click-Here-to-Get-Infected-Ad/

.



Relevant Pages

  • Re: Botnet threat fiction?
    ... US suffers are unaware of the botnet dangers as the surf the Internet with Windows machines with full Admin rights, and they don't know how to implement safe hex computing practices. ...
    (microsoft.public.windows.vista.security)
  • Re: Permissions (EVERYONE POST TO THIS)
    ... Removing Admin rights from your users is the prudent thing to do. ... without the IT Administrator providing these services and applications. ... priveledes, and before you know it, you have lost control of your network. ...
    (microsoft.public.win2000.security)
  • Re: I turned off UAC
    ... The User Access Control (UAC) can detect rootkits before they install. ... escalated to admin rights, the escalation to full-admin rights only last for the moment of escalation to do the task, and then the admin user is returned to being a Standard user again with Standard user rights only, not admin rights. ... Malware or a virus can only run under the context of the user account that is using the computer. ...
    (microsoft.public.windows.vista.general)
  • Re: XP & W2K server User rights need help
    ... accounts. ... This narrows the issue, since any admin ... > Here is another fact, this domain server had to be> replaced so a new one was created, in the old domain> server non of the users had accounts only the computers ... >>> Accounts in AD Power users with admin rights to local ...
    (microsoft.public.windowsxp.security_admin)
  • Re: Running Applications and Adming Rights
    ... Again, I didn't give the Domain Admin rights, I am an application developer ... access rights for the install. ... >> the application folders, ...
    (microsoft.public.windowsxp.security_admin)