Hole in the XP Firewall

xoxoxoBruce · 03-01-2005, 09:03 PM

It seems Bill put an intentional hole in the Windows XP Firewall.

Explained here and here.

Troubleshooter · 03-01-2005, 09:13 PM

You can't possibly believe that someone who is Knight Commander of the Most Excellent Order of the British Empire can't be so duplicitous can he?

hot_pastrami · 03-01-2005, 11:49 PM

Oh, boy. This wouldn't be a problem if XP's out-of-the-box configuration didn't run the default user with Admin priviledges... the Unix world figured this out a long time ago, and Linux, OSX, etc all inherited the better approach. But MS seems to strongly dislike the idea, though I don't know why... it must add to much complexity for the casual user.

Microsoft is a company full of highly intelligent and highly skilled individuals who routinely, grossly underestimate the cleverness of attackers, who gain the most ground by exploiting undereducated, over-priviledged users. Their security model puts way too much trust in the user, which is by far the weakest link in the security chain.

If they applied direct pressure by protecting the OS from the user (block admin priviledges without an admin password), they might slow the hemhorraging, but instead they keep adding layer after layer of security band-aids. Bah.

jaguar · 03-02-2005, 01:35 AM

It is impossible to change that security model now without breaking a *lot* of applications, that's the problem.

hot_pastrami · 03-02-2005, 03:40 AM

Quote:

Originally Posted by jaguar

It is impossible to change that security model now without breaking a *lot* of applications, that's the problem.

I thought the same thing at first, but upon examination, it seems one solution would be relatively benign... to mimic the functionality and behavior of Unix's SuperUser ("su") command.

Windows already has a relatively safe "Restricted User" security role in Windows XP, it just isn't the default out-of-the-box. By default, Windows has the user use a full Administrator account. So here's what MS oughtta do...

1) During Setup, prompt the user to create one or more user accounts for the computer (these are Restricted User accounts).
2) After creating those users, Setup should allow the user to set an Administrator password, with a blurb explaining the purpose of Administrator (only for installing software, advanced configuration, etc)
3) After installation, if/whenever the user tries to log on as Administrator, they see a warning that running as Administrator may compromise their system security, and are they sure?

Then, when the user needs to run a process with Administrator priviledges, either A) the user uses the already-present context command "Run As..." to run it as Admin, or B) they run the program, and when Windows determines they lack the necessary priviledges, instead of just saying "You can't do that," it says "This action requires Administrator priviledges. Please enter the Administrator password or press Cancel."

Then, only that process runs with Admin rights, and all of the modifications are limited to Windows behavior... no changes to the actual security model.

I oversimplify, perhaps?

lumberjim · 03-02-2005, 11:55 AM

yay, hot_pastrami's back, yay!

I don;t know what the fuck he just said, but Yay!

hot_pastrami · 03-02-2005, 11:58 AM

Quote:

Originally Posted by lumberjim

yay, hot_pastrami's back, yay!

I don;t know what the fuck he just said, but Yay!

I have missed you SO MUCH.

*cough*

Heheh.

03-01-2005, 09:03 PM	#1
xoxoxoBruce The future is unwritten Join Date: Oct 2002 Posts: 71,105	Hole in the XP Firewall It seems Bill put an intentional hole in the Windows XP Firewall. Explained here and here. __________________ The descent of man ~ Nixon, Friedman, Reagan, Trump.

03-01-2005, 09:13 PM	#2
Troubleshooter The urban Jane Goodall Join Date: Jan 2004 Location: Florida Posts: 3,012	You can't possibly believe that someone who is Knight Commander of the Most Excellent Order of the British Empire can't be so duplicitous can he? __________________ I have gained this from philosophy: that I do without being commanded what others do only from fear of the law. - Aristotle

03-01-2005, 11:49 PM	#3
hot_pastrami I am meaty Join Date: Dec 2001 Location: Salt Lake City, UT Posts: 1,119	Oh, boy. This wouldn't be a problem if XP's out-of-the-box configuration didn't run the default user with Admin priviledges... the Unix world figured this out a long time ago, and Linux, OSX, etc all inherited the better approach. But MS seems to strongly dislike the idea, though I don't know why... it must add to much complexity for the casual user. Microsoft is a company full of highly intelligent and highly skilled individuals who routinely, grossly underestimate the cleverness of attackers, who gain the most ground by exploiting undereducated, over-priviledged users. Their security model puts way too much trust in the user, which is by far the weakest link in the security chain. If they applied direct pressure by protecting the OS from the user (block admin priviledges without an admin password), they might slow the hemhorraging, but instead they keep adding layer after layer of security band-aids. Bah. __________________ Hot Pastrami!

03-02-2005, 01:35 AM	#4
jaguar whig Join Date: Apr 2001 Posts: 5,075	It is impossible to change that security model now without breaking a lot of applications, that's the problem. __________________ Good friends, good books and a sleepy conscience: this is the ideal life. - Twain

03-02-2005, 11:55 AM	#6
lumberjim I can hear my ears Join Date: Oct 2003 Posts: 25,571	yay, hot_pastrami's back, yay! I don;t know what the fuck he just said, but Yay! __________________ This body holding me reminds me of my own mortality Embrace this moment, remember We are eternal, all this pain is an illusion ~MJKeenan

Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)