Re: I installed The Chron. of Rid*** on a LIMITED account XPSP2



In news:B14D62F1-BCA6-4FF7-89A6-2EFDDA86394B@xxxxxxxxxxxxx,
Nombredepila <Nombredepila@xxxxxxxxxxxxxxxxxxxxxxxxx> typed:
Lanwench, once again thanks for your response.. Still shivering,
though...


Well - this isn't really a security issue, now. You installed this software
yourself, remember - it's not like someone hacked in through your cable
modem to do it. :)

What would be other steps to lock the security of my system then?

What exactly is it you're trying to protect, and from whom? Anyone who has
physical access to your computer can do far worse than that, if you're
really being cautious!

Some basics:

Set a BIOS password
Lock the chassis/case
Use good passwords (8 char minimum, mixed case alphanumeric)
Don't let anyone else use your account, or have their own login, either.
Use NTFS
Keep everything patched to the gills
Use a good firewall (or a layered approach; software firewall & perimeter
appliance)
Consider EFS (but be vewy vewy careful)


Please, let's try the least expensive first. While this is my home
computer, I do have some work information that needs to be
shielded.

As I mentioned above, much depends on the threats you envision, and the
origins of said threats. Hope this is somewhat helpful.

"Lanwench [MVP - Exchange]" wrote:



In news:56DDD38B-FE1C-4E6D-9F82-473B22491CF0@xxxxxxxxxxxxx,
Nombredepila <Nombredepila@xxxxxxxxxxxxxxxxxxxxxxxxx> typed:
hank you for your response Lanwench.

So if i understand you well, when writing the code, the maker of a
game can let it be installed without administrative rights...
correct?
This leads me to another security question, then:

If a malware code writer desires so, can a trojan, a rat, a worm
or a virus be installed as well without these administrator
rights? The sole idea is making me shiver... In such a case, what
good would it make to be operating the PC from a limited account,
then?

Sure. Any software that doesn't want to write to the protected areas
of the registry, or to the program files folder, etc., can be
installed by anyone.

There are many ways to lock down a computer. User permissions are
the first place one generally starts, but in an environment where a
true standard/locked desktop is required, there are ways to do it-
they can be complicated, they can be expensive.

If this is your home computer, just exercise caution, trust no one,
and click on as little as possible. ;-)



Thank you for your response!

"Lanwench [MVP - Exchange]" wrote:



In news:FA4DA19F-5C4F-4629-9318-5E40C9DF5D2A@xxxxxxxxxxxxx,
Nombredepila <Nombredepila@xxxxxxxxxxxxxxxxxxxxxxxxx> typed:
I downloaded The Chronicles of Rid*** yesterday, and although I
was using a limited account on this computer, I tried to install
it. Well, IT INSTALLED alright!! And it's running even after
rebooting, which surprised me deeply. How can a game override
the XP Sp2 limited account rights and get installed?
Can anyone help? I think there might be a security issue here...

Whether an application requires admin rights to install, or not, is
entirely up to the people who write the app/installation routine.


.