Dailydave mailing list archives
Re: Is Windows Integrity Control in Vista really worth the performance hit? And does it really work?
From: "Rodrigo Rubira Branco (BSDaemon)" <rodrigo () kernelhacking com>
Date: Thu, 1 Mar 2007 12:40:53 -0000
This kind of protection are needed to obtain an EAL certification level 4+ (or more)... Capabilities like selinux exist in linux a long time and offer a little impact in the overall system performance (but that impact exists)... We need to first thing in windows we have more things to care about, so, its more difficult to implement this type of protection (and for sure, more performance impact are hit). Linux solutions can be bypassed as well. The main difference here is how the solutions are implemented... To obtain an EAL xyz certification, linux introduces the SELinux in the kernel, using the LSM framework... its more bugged than great (who donĀ“t agree with me??). But other ACL mechanisms exist for linux (for sure, without the complexity and resources offered by selinux), like grsecurity (i like it). Cya, Rodrigo (BSDaemon). -- http://www.kernelhacking.com/rodrigo Kernel Hacking: If i really know, i can hack GPG KeyID: 5E90CA19 --------- Mensagem Original -------- De: Security Admin NetSec <secadmin () netsecdesign com> Para: dailydave () lists immunitysec com <dailydave () lists immunitysec com> Assunto: [Dailydave] Is Windows Integrity Control in Vista really worth the performance hit? And does it really work? Data: 01/03/07 10:25
I have been playing around with Vista for about a year; to date I cannot
find a reason why one would take the productivity hit to upgrade. For those who do not know what WIC is, there is a good into write-up at http://www.securityfocus.com/infocus/1887. While Windows Integrity Control (WIC) is somewhat secure, I was able to elevate privileges on programs using a tool from a friend of mine. Presumable one could use this tool or one like to elevate their privileges as well. Has anyone tried to elevate all the way to SYSTEM? I know it is possible to elevate form Low to Medium to High.
It seems to me that the Linux and BSD folks have figured out how to
implement access controls without a heavy load on the system; Vista really chokes.
Edward Ray -- This mail was scanned by BitDefender For more informations please visit http://www.bitdefender.com _______________________________________________ Dailydave mailing list Dailydave () lists immunitysec com http://lists.immunitysec.com/mailman/listinfo/dailydave
________________________________________________ Message sent using UebiMiau 2.7.2 _______________________________________________ Dailydave mailing list Dailydave () lists immunitysec com http://lists.immunitysec.com/mailman/listinfo/dailydave
Current thread:
- Re: Is Windows Integrity Control in Vista really worth the performance hit? And does it really work? Rodrigo Rubira Branco (BSDaemon) (Mar 01)
- Re: Is Windows Integrity Control in Vista really worth the performance hit? And does it really work? Steve Grubb (Mar 01)
- Re: Is Windows Integrity Control in Vista really worth the performance hit? And does it really work? Chris Rohlf (Mar 02)
- Re: Is Windows Integrity Control in Vista really worth the performance hit? And does it really work? endrazine (Mar 03)
- Re: Is Windows Integrity Control in Vista really worth the performance hit? And does it really work? Chris Rohlf (Mar 03)
- Re: Is Windows Integrity Control in Vista really worth the performance hit? And does it really work? endrazine (Mar 07)
- Re: Is Windows Integrity Control in Vista really worth the performance hit? And does it really work? Chris Rohlf (Mar 02)
- Re: Is Windows Integrity Control in Vista really worth the performance hit? And does it really work? Steve Grubb (Mar 01)
- <Possible follow-ups>
- Re: Is Windows Integrity Control in Vista really worth the performance hit? And does it really work? Rodrigo Rubira Branco (BSDaemon) (Mar 01)
- Re: Is Windows Integrity Control in Vista really worth the performance hit? And does it really work? Rodrigo Rubira Branco (BSDaemon) (Mar 03)