Linked by HAL2001 on Thu 19th May 2011 12:10 UTC
Privacy, Security, Encryption "A little over two weeks have passed since the appearance of MAC Defender, the fake AV solution targeting Mac users. And seeing that the approach had considerable success, it can hardly come as a surprise that attackers chose to replicate it. This time, the name of the rogue AV is Mac Protector, and the downloaded Trojan contains two additional packages. As with MAC Defender, the application requires root privileges to get installed, so the user is asked to enter the password."
Permalink for comment 473745
To read all comments associated with this story, please click here.
RE[2]: Can't get excited
by WereCatf on Thu 19th May 2011 14:56 UTC in reply to "RE: Can't get excited"
Member since:

At the risk of getting annoying with my sandbox advocacy... How exactly are you supposed to know *why* some piece of software requires admin rights before installing and running it, on nowadays' desktop OSs ?

On current OSes it's not easy, I admit that, but if someone wrote a completely new OS they could separate every API in use to two categories: privileged and non-privileged. Even file system access would have to be separated for it to be effective, and so if your application used e.g. PrivFileOpen("somefile.txt") instead of FileOpen("somefile.txt") the system would immediately notify about it and halt execution.

Similarly, executables would have to list in the executable file every function call they use (excluding parameters though) so that if the application tries to use a function call not specified it would again get halted.

Then at installation time OS would present the user with what permissions the application is asking for, ie. what privileged functionality or data it wants access to, and a short explanation of what each item might entail and possibly a warning based on heuristics on the permissions being asked.

Sure, it would require helluva lot of work and careful design from the OS developer(s), but it should still help atleast a little. Of course there are still those luddites who just click away, but clear-text explanations for items should again help with atleast some of them; people often just click "Ok" or "next" because they don't understand what's presented to them, not because they don't care.

Reply Parent Score: 1