|
Oh, boy. This wouldn't be a problem if XP's out-of-the-box configuration didn't run the default user with Admin priviledges... the Unix world figured this out a long time ago, and Linux, OSX, etc all inherited the better approach. But MS seems to strongly dislike the idea, though I don't know why... it must add to much complexity for the casual user.
Microsoft is a company full of highly intelligent and highly skilled individuals who routinely, grossly underestimate the cleverness of attackers, who gain the most ground by exploiting undereducated, over-priviledged users. Their security model puts way too much trust in the user, which is by far the weakest link in the security chain.
If they applied direct pressure by protecting the OS from the user (block admin priviledges without an admin password), they might slow the hemhorraging, but instead they keep adding layer after layer of security band-aids. Bah.
__________________
Hot Pastrami!
|