 |
 |
Testing... |
 |
|
|
Main Menu |
|
|
|
Topics |
|
|
|
Voice Over IP |
|
|
|
Last 10 Articles... |
|
|
|
Search this site |
|
|
| |
|
This blog is no longer updated.
Since I own the domain name for a couple more years, and the hosting was paid-in-advance, it's still here. But I've moved on to Hawaii, and no longer have the need to publish all the sorts of neat stuff that made up the contents of this website.
If you've linked to me, you are invited to unlink, as your readers will no longer be presented with new content. Thanks, Steve
Browsing the Web and Reading E-mail Safely as an Administrator
Monday, January 31, 2005 : Stephen D. Carroll, rokus.net
|
|
You're a top-notch Systems Administrator, with a whole bunch of acronyms after your last name to prove it. You're the king. There's nobody that can run Windows better than you.
You're sure as heck ain't going to log on to your box with some piddly "normal" user account - your SID's *-500! You're the man!
And then you go and browse the web with FullControl of the System32 directory, able to terminate any processes on your box, configuring the Windows Firewall, and adding or removing registry keys.
Well, doesn't that sound just like a recipe for disaster? Do you think that someone might just take advantage of your awesome credentials to install some nasty crap on your box?
I present: DropMyRights [msdn.microsoft.com].
The "right" way to run your system is to run as JoeUser, and then elevate your privileges when you need to. DropMyRights does the opposite - it allows you to run as Admin, and then drops your rights when you're about to engage in potentially hazardous activity (e.g. surfing the web and reading email).
|
|
Permalink | Mail this...
|
|
| Browsing the Web and Reading E-mail Safely as an Administrator | Login/Create an account | 0 Comments |
|
| | Comments are owned by the poster. We aren't responsible for their content. |
| |
|
|
|
