Microsoft plans to make several significant tweaks to the next beta of Windows Vista to make a key security feature less annoying to users. In response to widespread criticisms that the implementation of the UAC (User Account Control) feature triggers too many privilege elevation prompt pop-ups, the software maker will make changes in Windows Vista RC1.
To view parent comment, click here.
To read all comments associated with this story, please click here.
Member since:2006-01-02
I think the best security is to prevent incursion and then assume it's going to happen anyway, so you can limit the damage. There are unknown classes of security bugs being found all the time. You fix one type of issue and crackers just go for the next new thing. It gets harder and harder, yes... but why not make it hard for them to do anything after they've made their first discovery of that integer overflow?
Member since:2005-06-29
There are other valid ways of slowing that.
1.) Using languages that don't have buffer overflow issues (.net, Java, python, etc).
2.) Randomizing stacks and heaps.
3.) Good permissions systems limiting them once inside. (SELinux is an example of this, as well as ACL's)
4.) Jails for dangerous applications (servers).
The key thing here is that none of those are wasting huge amounts of cycles trying to clean up completely successful intrusions.
Member since:
2005-06-29
Incorrect. I think proper security is to prevent incursion, not slow its spread.