![[personal profile]](https://www.dreamwidth.org/img/silk/identity/user.png){kind=small}
gizaFrom this article on ZDNet regarding setup programs under Windows Vista:
This just hurts my brain. More technical details about Microsoft's reason for this "design choice" are in the article. (A reason I happen to disagree with. I cite the ability to install and run many applications on UNIX and OS/X as a non-root user, for example.)
Additional blog entires (with even more details) that I haven't yet read through:
Running Vista Every Day! - The original blog entry talking about the security hole
PsExec, User Account Control and Security Boundaries - Microsoft's response
Vista Security Model – A Big Joke? - Response from the original blogger
If anyone who has more familiarity with Windows Vista can explain to me why this isn't the gaping security hole it appears, please feel free to do so in the comments.
"[When] you try to run such a program, you get a UAC prompt and you have only two choices: either to agree to run this application as administrator or to disallow running it at all. That means that if you downloaded some freeware Tetris game, you will have to run its installer as administrator, giving it not only full access to all your file system and registry, but also allowing it to load kernel drivers! Why should a Tetris installer be allowed to load kernel drivers?," Rutkowska asked in a post on her Invisible Things blog.
This just hurts my brain. More technical details about Microsoft's reason for this "design choice" are in the article. (A reason I happen to disagree with. I cite the ability to install and run many applications on UNIX and OS/X as a non-root user, for example.)
Additional blog entires (with even more details) that I haven't yet read through:
Running Vista Every Day! - The original blog entry talking about the security hole
PsExec, User Account Control and Security Boundaries - Microsoft's response
Vista Security Model – A Big Joke? - Response from the original blogger
If anyone who has more familiarity with Windows Vista can explain to me why this isn't the gaping security hole it appears, please feel free to do so in the comments.