Full Disclosure mailing list archives
Re: DLL hijacking with Autorun on a USB drive
From: Christian Sciberras <uuf6429 () gmail com>
Date: Fri, 27 Aug 2010 16:54:09 +0200
Valdis, that last statement of yours really didn't make any sense:
(And remember what people said about the *first* release of UAC in the beta? A *lot* of people said it sucked hard enough to make them seriously consider moving to Linux...
Without getting into any difference between Windows and Linux, myself, from a user perspective, would definitely prefer a UAC prompt than a File Manager which silently refuses to copy some files due to permissions. Really, comparing UAC to Linux's security measures wasn't smart. I'm no fan of UAC, and even less of SUDO. Cheerio, Chris. On Fri, Aug 27, 2010 at 4:47 PM, <Valdis.Kletnieks () vt edu> wrote:
On Fri, 27 Aug 2010 10:13:21 EDT, Dan Kaminsky said:Oh, come on. MS puts more effort into delivering a secure platform than pretty much anyone at this point. They're just not the low hanging fruit they once were.Oh, I'll grant you that, they *have* done a great job in the past few years, the biggest turn-around I've seen in 3 decades in this business. The point is that we all know that *really* fixing some of these issues will involve a *complete* re-architect of the system - and that's someplace they really don't want to go. Look at how many corporations were slow to jump on Vista - now imagine if the corporations had to wait for pretty much *every single app* to update to the New World Order. Remember that one of the big components of vendor lock-in is the cost of jumping ship. Now if the next WIndows release is as disruptive as jumping ship, you lose a lot of lock-in. (And remember what people said about the *first* release of UAC in the beta? A *lot* of people said it sucked hard enough to make them seriously consider moving to Linux... so it got toned down a whole lot before release.) _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
_______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Current thread:
- Re: DLL hijacking with Autorun on a USB drive, (continued)
- Re: DLL hijacking with Autorun on a USB drive paul . szabo (Aug 26)
- Re: DLL hijacking with Autorun on a USB drive Dan Kaminsky (Aug 26)
- Re: DLL hijacking with Autorun on a USB drive Valdis . Kletnieks (Aug 26)
- Re: DLL hijacking with Autorun on a USB drive Dan Kaminsky (Aug 26)
- Re: DLL hijacking with Autorun on a USB drive Valdis . Kletnieks (Aug 26)
- Re: DLL hijacking with Autorun on a USB drive Dan Kaminsky (Aug 26)
- Re: DLL hijacking with Autorun on a USB drive Larry Seltzer (Aug 27)
- Re: DLL hijacking with Autorun on a USB drive Valdis . Kletnieks (Aug 27)
- Re: DLL hijacking with Autorun on a USB drive Dan Kaminsky (Aug 27)
- Re: DLL hijacking with Autorun on a USB drive Valdis . Kletnieks (Aug 27)
- Re: DLL hijacking with Autorun on a USB drive Christian Sciberras (Aug 27)
- Re: DLL hijacking with Autorun on a USB drive Valdis . Kletnieks (Aug 27)
- Re: DLL hijacking with Autorun on a USB drive Michal (Aug 27)
- Re: DLL hijacking with Autorun on a USB drive Dan Kaminsky (Aug 27)
- Re: DLL hijacking with Autorun on a USB drive Larry Seltzer (Aug 27)
- Re: DLL hijacking with Autorun on a USB drive Dan Kaminsky (Aug 27)
- Re: DLL hijacking with Autorun on a USB drive Christian Sciberras (Aug 27)
- Re: DLL hijacking with Autorun on a USB drive Dan Kaminsky (Aug 27)
- Re: DLL hijacking with Autorun on a USB drive Larry Seltzer (Aug 27)
- Re: DLL hijacking with Autorun on a USB drive Arthur Orr (Aug 28)
- Re: DLL hijacking with Autorun on a USB drive Larry Seltzer (Aug 27)