Today I reinstalled Windows
Jan Claeys
lists at janc.be
Thu Sep 24 12:57:49 BST 2009
Op woensdag 23-09-2009 om 10:26 uur [tijdzone +0200], schreef Odd:
> Jan Claeys wrote:
> > Op dinsdag 22-09-2009 om 12:28 uur [tijdzone +0200], schreef Odd:
> >> David Sanders wrote:
> >>> This is surely quite true. However the main issue for Windows security
> >>> as I see it is that a huge number of applications require
> >>> Administrator-level privieges to run. This prevented me, for instance,
> >>> from setting all the accounts on a windows box to User-level (at least
> >>> for <= Win XP).
> >> Yes, a broken security model.
> >
> > Actually, that's a symptom of Windows security being right & the
> > application being wrong...
>
> Nope. It's entirely Microsoft's fault for shipping their OSes in
> admin mode by default. IF they had shipped it so that only
> a regular user was available by default, you might have had
> a point.
That's another issue, which _is_ their fault (although the installer
proposes that you create a low-privilege user account somewhere IIRC,
it's not "forced").
Application authors that don't test on unprivileged user accounts is
still the fault of the application authors (it's been in Microsoft's
"programming for Windows" documentation since WinNT 3.x...).
--
Jan Claeys
More information about the sounder
mailing list