Linked by Thom Holwerda on Wed 31st Mar 2010 14:41 UTC
Windows As geeks, we're well aware of the importance of running as a normal user instead of as root (UNIX/Linux/BSD) or administrator (Windows). However, while this should be common knowledge to anyone reading OSNews, it's often hard to illustrate just how important it is - until now, that is. A report by BeyondTrust looked at how many security bulletins issused by Microsoft are mitigated by simply... Not running as administrator.
Permalink for comment 416400
To read all comments associated with this story, please click here.
RE[5]: Not entirely...
by TemporalBeing on Thu 1st Apr 2010 13:09 UTC in reply to "RE[4]: Not entirely..."
TemporalBeing
Member since:
2007-08-22

"While I haven't run ArchLinux, neither Slackware nor Gentoo require you to run as the root user by default. Anyone that does is out of their mind. Both communities suggest using su/sudo (just like every other distro) for doing admin stuff.


The Arch Linux installer LiveCD runs as root.
"

All installer CD's run as root as there are no users. Some (like Gentoo's LiveCD's) randomize the root password on boot for security (so you can run SSH), but still login as root.

That is the nature of installation media.

LiveCD's typically run as root, but you can add users to them before you burn the CD/DVD so you don't have to. But again, that's typical because a LiveCD is usually a recovery disk or installation media where root permissions are required for the primary tasks of system maintenance.

But LiveCD's and Installation Media are not examples of normal UNIX/Linux user configurations. (And I never said that Microsoft should make the Windows Installation programs run as a normal user, that would be very problematic for any operating system installation system.)

Reply Parent Score: 2