- TalkBack 31 of 65:
- Next »
- « Previous
- Thread View
- Flat View
- re: Configuration
-
Why is it every MS virrus that comes down the pipe writes to %system% & %Systemroot% 2 directories that by default are not writeable by normal users.
Because they can? Other than shutting down anti-virus (which you don't seem to believe in anyway), what did Kama Sutra do that required admin access? Yes, it did take advantage of the fact that it probably would have admin but to say that *nix would be immune to Kama Sutra style attacks because users don't have write access to /bin is simply not true. You don't need write access to /bin to run programs in the default configuration of common distros.
Also, keep in mind that the user wanted to run the Kama Sutra attachment. It took at least 5 steps to run the attachment in Windows. What makes you think that a user that committed to running an attachment would stop because he needed to enter his root password?
thus user stupidity cant infect the entire system
The truth is that most home machines are only single user systems. Erasing all of the main user's files is in essence infecting the entire system, or at least what the entire system is there to support.
There are 2 types of exploits system and configuration, can you guess which one this is?
I agree, this is a configuration issue. I suppose you could call that a vulnerability, I call it a defaults issue but at this point, you are raising a semantic argument. It takes 30 seconds to fix Windows' configuration issue and it doesn't require any help from MS which is why I don't consider it a real vulnerability in the classic definition of the word. - Posted by: NonZealot Posted on: 02/08/06 You are currently: a Guest | Members login | Terms of Use
Reply to Story
No further replies to this post will be accepted.
Microsoft security service to ship in June
Loverock Davidson | 02/07/06
|
I just wish
Michael Kelly | 02/07/06
|
|
No need to wish
NonZealot | 02/07/06
|
|
Well said.
A_Pickle | 02/07/06
|
That's good for you and me
Michael Kelly | 02/08/06
|
I agree but so what?
NonZealot | 02/08/06
|
|
Thats a fact!!
Cayble | 02/09/06
|
|
Just go with avast
Jeff Spicoli | 02/07/06
|
|
Oh I do
Michael Kelly | 02/08/06
|
|
What does Avast fix?
NonZealot | 02/08/06
|
|
easy example
Jeff Spicoli | 02/08/06
|
|
Not so fast ...
ac2_z | 02/07/06
|
|
Perhaps not
java.user | 02/07/06
|
|
Well...
zkiwi | 02/07/06
|
|
Why?
java.user | 02/07/06
|
|
You are wrong
NonZealot | 02/07/06
|
|
Ok, so...
zkiwi | 02/07/06
|
|
You are right
NonZealot | 02/07/06
|
|
Somehow...
zkiwi | 02/07/06
|
|
yup
Jeff Spicoli | 02/07/06
|
|
BWahahahahaha!!!
Jeff Spicoli | 02/07/06
|
|
Why go back to the mechanic who broke it
Suicida| | 02/07/06
|
|
What?
NonZealot | 02/07/06
|
|
Because...
zkiwi | 02/07/06
|
|
BWahahahahaha!!!
Jeff Spicoli | 02/07/06
|
|
Thanks for the reply
NonZealot | 02/07/06
|
|
Seriously, this product is G**
Suicida| | 02/07/06
|
|
Um . . . US-CERT says so
Suicida| | 02/07/06
|
|
One quick question
NonZealot | 02/07/06
|
|
Configuration
Suicida| | 02/08/06
|
|
re: Configuration
NonZealot | 02/08/06
|
|
Sounds more like conflict of interest to me
GoPower | 02/07/06
|
|
hehe maybe
Monkey_MCSE | 02/07/06
|
|
Not really
java.user | 02/07/06
|
|
Hey lovecrock ,
I'm Ye, the MS SHILL . | 02/08/06
|
|
The time is upon us...
Mike Cox | 02/07/06
|
|
lay down the crack pipe!
Linux Geek | 02/07/06
|
|
Demolish the Torvalds' church!
A_Pickle | 02/07/06
|
|
In terms of security and the level consequences...
zkiwi | 02/07/06
|
|
Hmmm
Suicida| | 02/07/06
|
|
What is wrong with Windows?
NonZealot | 02/07/06
|
|
Well, it SUCKS
Jeff Spicoli | 02/08/06
|
|
'Dude', lighten up
george_ou | 02/07/06
|
|
Tell'em George
I'm Ye, the MS SHILL . | 02/08/06
|
|
7.5
ac2_z | 02/07/06
|
|
Are you sure
zmud | 02/07/06
|
|
I really would like to know...
zkiwi | 02/07/06
|
|
While You Were Out to Lunch
justmeinok@... | 02/07/06
|
|
Nice Mikey
Suicida| | 02/07/06
|
|
Subscription basis?
zmud | 02/07/06
|
|
Your wrong about Symantec
DragonBRockin | 02/07/06
|
|
Hey where did that 30K go?
Suicida| | 02/07/06
|
|
Symantec Consumer Products.
DragonBRockin | 02/08/06
|
|
Now Microsoft will release malware so they can sell "security" services
Jeff Spicoli | 02/07/06
|
|
That's right Sean!
GoPower | 02/07/06
|
|
Id rather
Suicida| | 02/07/06
|
|
M$'s NEW and IMPROVED Cash Cow
swbobcat | 02/07/06
|
|
meh
Suicida| | 02/08/06
|
|
Show me the inux
TheOtherITGuy | 02/08/06
|
|
Free Linux ISO images
I'm Ye, the MS SHILL . | 02/09/06
|
|
Great!
tero_t_vaananen@... | 02/08/06
|
|
BWAHAHAHAHA!!!!
Chad_z | 02/08/06
|
|
Do what you said
Boot_Agnostic | 02/08/06
|
|
How convenient!
choosy susie | 02/10/06
|
|
One Care Live
pam1947@... | 02/13/06
|
What do you think?
SponsoredWhite Papers, Webcasts, and Downloads
- Why Isn't Server Virtualization Saving Us More? A Few Small Changes May Dramatically Increase Your Efficiency VMware Companies have rapidly adopted server virtualization over the past few ... Download Now
- Five Steps to Determine When to Virtualize YourServers VMware Server virtualization isn't just for big companies. Entry-level ... Download Now
- Evaluating Price/Performance of VMware ESX Server on Dell PowerEdge Servers Dell This paper examines the price/performance advantage that enterprises can ... Download Now
Premier Vendor Content Whitepapers, webcasts & resources from our Power Center Sponsors
- Microsoft Dynamics CRM Online - Free Six-Month Trial for Eligible Organizations
-
Microsoft Dynamics CRM Online provides fast online access, simple contact management and better sales performance for a low monthly cost - the best value on the market today.
- Learn more about the free, six-month trial offer >>
- The Compelling Case for Conferencing
-
Read the whitepaper to discover the specific ways Unified Communications can improve your bottom line.
- Click to download >>
- New Online Dashboard for IT Leaders
-
Read about top issues IT decision-makers face every day, plus get cost-effective solutions to real-life IT problems.
- Learn more >>
Popular Sanity Saver Videos
