Full Disclosure mailing list archives

Re: local SYSTEM on Windows vs. local root on Unix

From: "Erik van Straten" <emvs.fd.3FB4D11C () cpo tn tudelft nl>
Date: Tue, 20 Jan 2004 19:08:49 +0100

On Mon, 19 Jan 2004 16:20:58 -0500 KF wrote:

I am currious to know what you folks think the differences are between 
obtaining local SYSTEM on a win32 box and obtaining root on a Unix machine.


They are equivalent.

However, there are very many more ways to become SYSTEM on an average
W32 box, than on a Linux box.

Which *IS* an advantage, because if you harden a W32 box, provided
you did a good job, typically morons will have to spend *A* *LOT*
more time to find the holes you overlooked (likely they'll give up
and try Annie's box next door).

With Linux, the first thing they'll do is see if you've patched your
kernel (which I, honestly, have not done on all boxes).

Erik (using both)

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Current thread:

local SYSTEM on Windows vs. local root on Unix KF (Jan 19)
- Re: local SYSTEM on Windows vs. local root on Unix petard (Jan 20)
  - Re: local SYSTEM on Windows vs. local root on Unix S G Masood (Jan 20)
- Re: local SYSTEM on Windows vs. local root on Unix Erik van Straten (Jan 20)
- Re: local SYSTEM on Windows vs. local root on Unix K_aneda (Jan 20)
  - RE: local SYSTEM on Windows vs. local root onUnix joe (Jan 20)
    - Re: local SYSTEM on Windows vs. local root onUnix Jeremiah Cornelius (Jan 21)
- <Possible follow-ups>
- Re: local SYSTEM on Windows vs. local root on Unix 3APA3A (Jan 20)