All Things Microsoft > Microsoft Software

Running Windows for 3 weeks no viruses and no anti-virus!

<< < (4/11) > >>

toadlife:

--- Quote from: piratePenguin ---How do you know the "attacks" are coming from owned GNU/Linux boxes? Couldn't the cracker just be using their own box or some other box they have legit access to?
--- End quote ---

That's possible, but unlikely. The pattern in the log file is the classic one of an owned box randomly tryinging weak root passwords on random addresses. I see this exact pattern of login attempts daily basis - from linux machines all over the planet. They either try to log in as root around 20-50 times with common passwords, or they try a slightly different tactic -they will try to find password-less/test accounts by trying many common usernames like test, operator,email,joe,paul,chris,daniel, etc.

ksym:

--- Quote from: toadlife ---Bullshit. I mount cd-images in daemon tools as a power user all the time at work.
--- End quote ---

Afaik running as a Power User is almost as insecure as running as admin.

Or am I totally lost?

Refalm:

--- Quote from: ksym ---Afaik running as a Power User is almost as insecure as running as admin.

Or am I totally lost?
--- End quote ---

There is little difference between local administrator and power user in Windows NT/2000/XP.

ksym:

--- Quote from: Refalm ---There is little difference between local administrator and power user in Windows NT/2000/XP.
--- End quote ---

Thanks for the info :)

I am just lazy, so I go with adming rights ... and it won't matter if my Windows goes boom, since I can easily reinstall it. It resides in another HD than my Linux installation.

toadlife:

--- Quote from: Refalm ---There is little difference between local administrator and power user in Windows NT/2000/XP.
--- End quote ---

I wouldn't say that.

Power Users cannot install/remove device drivers
Power user cannot install activeX controlls
Power users cannot take ownership of system files
Power users cannot change networking settings
Power users cannot change (or even READ) security policies/IPSEC policies
Power users cannot read the security log, and cannot clear any of the logs
Power users cannot change the firewall settings


All of these things make rootkits virtually impossible to install as a power user. It also keeps "drive by downloads" in IE from working, and many other nasty things from happening if the user executes some bad code.

Yes, you can write to many directories and some parts of the registry that regular users can't, but to say there is little difference from a power user and an administrator is wrong.

Navigation

[0] Message Index

[#] Next page

[*] Previous page

Go to full version