[CS-FSLUG] NI: Longhorn following Unix on security?
Fred A. Miller
fmiller at lightlink.com
Wed Jul 13 09:16:09 CDT 2005
On Wednesday 13 July 2005 9:51 am, Frank Bax wrote:
> 1) I found this a little hard to believe, so I did some searching. It
> didn't take long to find this:
> http://www.microsoft.com/technet/security/Bulletin/MS03-031.mspx
> How is it possible that a "cummulative" security patch can be released the
> month immediately following the study, and yet the software had no
> vulnerables for the 12 months prior to study?? Is a vulnerability only
> counted when the patch to fix it is released? Were patches leading up to
> the "cumulative" patch all released after the study as well?
>
> 2) The whole issue of Admin rights in Windows appears to be distorted by
> this article. WinXP already has the ability to create non-admin
> users. The real problem is that many windows software packages require
> admin rights to run properly. Until software developers test their
> products using non-admin accounts, the problem will continue.
That is correct, and that just might change with Longhorn. However, MickySoft
has NEVER been able to come up with a good design in an OS....one that will
allow code that can be secure and WITHOUT bloat. I don't expect them to be
able to do it now either.
Fred
--
Planet Earth - a subsidiary of Microsoft. We have no bugs in
our software, Never! We do have undocumented added
features, that you will find amusing, at no added cost
to you, at this time.
More information about the Christiansource
mailing list