Linked by Thom Holwerda on Mon 11th Sep 2006 17:56 UTC
Windows A few days ago we reported on the fact that applications which have administrative rights in Vista (given by the user, of course) can disable User Account Protection altogether. This was seen as a security flaw; Ars, however, begs to differ: "When UAC is disabled, Vista gripes loudly about it. The Windows Security Center immediately notes that UAC has been turned off, and it prompts you to turn it back on using a system tray notification. From our own testing, it appears impossible to disable UAC without the Security Center noticing it, which makes it rather unlikely that a user is end up in a less secure state."
Permalink for comment 161358
To read all comments associated with this story, please click here.
Well...
by PJBonoVox on Mon 11th Sep 2006 18:35 UTC
PJBonoVox
Member since:
2006-08-14

I posted yesterday that an application (Windows or Linux) could ask for the root password. Say in KDE surely it could create a 'kdesu' like box telling you it needs administrative privileges. Then it uses the provided password to do something as root.

If this is possible, and I'm sure it is, what is stopping Linux from being 'owned' the same way that the Vista hating article from yesterday said Vista could?

Understand-- I use Linux and Windows and I like them both, but this article just got me thinking.

Edited 2006-09-11 18:36

Reply Score: 5