windozer security
hwsw famulus
hwsw at famulus.hu
Mon Nov 22 23:39:56 CET 2004
Tovabbi infok...
KJ
---------------------
Meg még ezen akciókat is lehet tiltani vele...
Úgyhogy jó az irány és egyszeru a megoldás.
Amongst the many things this malware does, all of which require admin
rights, are:
* Creating files in the system32 directory.
* Terminating various processes.
* Disabling the Windows Firewall.
* Downloading and writing files to the system32 directory.
* Deletes registry values in HKLM.
All these fail if the user running the e-mail client is not an
administrator.
So wouldn't it be useful (read: safer) if you could browse the Web, read
e-mail, and so on as a non-admin, even though you need to perform your
normal daily tasks as an admin? Luckily, Windows XP and Windows Server 2003
and later support this capability using restricted tokens.
--------------------
> Ujabb fejlemeny a sokat szidott biztonsag teruleten...
>
> KJ
>
> -----win listarol-----
>
>
http://msdn.microsoft.com/security/securecode/columns/default.aspx?pull=/library/en-us/dncode/html/secure11152004.asp
>
> Internet Explorer,
> Outlook Express
> Firefox,
> StrongDC++,
> "N" opcióval hasznalva.
>
> Ekkor ezek a progik adminként használva
> sem lesznek képesek írni a
> system32-be, meg még pár helyre.
>
> ------------------
>
> -----------------------------------
> Szponzorunk: http://tonerbolt.hu/
>
More information about the Elektro
mailing list