Re: Two new security flaws found in WinXP SP2

From: leslie (LESLIE_at_JRLVAX.HOUSTON.RR.COM)
Date: 08/21/04 

Date: Sat, 21 Aug 2004 04:59:24 GMT

Bob (nottooslow@forevermail.com) wrote:
: In article <myyVc.3720$v86.447@fe2.texas.rr.com>,
: LESLIE@JRLVAX.HOUSTON.RR.COM says...
: > Bob (nottooslow@forevermail.com) wrote:
: > :
: > : I've read the details on all three 'flaws' and they all require
: > : significant manual intervention by the user to do any damage.
: > :
: > : The cmd 'flaw' has an equivalent on every operating system in use
: > : today, including all flavors of Unix, Linux, MAC OS, VMS, ZOS, etc,
: > : simply because it's not a flaw but rather social engineering.
: > :
: >
: > You mean if I created an account on my VMS system for you with only
: > NETMBX and TMPMBX privileges, you can 'root' my system ?
: >
: >
: > Jerry
: >
: Jerry,
:
: Nope. But we are talking about uneducated users who don't create accounts
: with lesser privileges to use.
:
: For example, with Windows XP Home/Pro, you get an account that
: automatically has admin privs, just like when you install VMS, you get the
: SYSTEM account with all privs.
:
: In both cases, if you simply use the system as it is installed, you will be
: running from an account with all privs and if you are silly enough to run
: programs sent to you by strangers, your system can be compromised.
:
: Is that a case of a flawed operating system?
:

No, a case of "ID ten T error" ("I D 1 0 T error").

: BTW, did you see HP announce the end of the Alpha line?
:

Yes...

  http://www.theinquirer.net/?article=17954
  Last Alpha chip to arrive on Monday

There's probably more on the Alpha EOL at:

  http://www.openvms.org/
  OpenVMS.org - The OS with uptimes longer than MS Windows support policies

: Bob/Texas

Jerry

Relevant Pages

  • Re: PC Recovery - Files Transfer Wizard ? Move ?
    ... Used HP PC recovery on my laptop to reinstall XP MCE. ... see old account folders/files but since XP only sees the Bob ... folder as a folder and NOT an account I can't log into ... I'd like all of the files that live in the BOB account to appear in Owner's ...
    (comp.sys.hp.hardware)
  • Re: Unsupported three-architecture cluster
    ...  Currently the VAX is at VMS V7.3, the Alpha at V8.2, ... customize account settings on the newer systems (not everyone on the ... baseline for UAF quotas anyway. ...
    (comp.os.vms)
  • Re: PC Recovery - Files Transfer Wizard ? Move ?
    ... Used HP PC recovery on my laptop to reinstall XP MCE. ... see old account folders/files but since XP only sees the Bob ... folder as a folder and NOT an account I can't log into ... I'd like all of the files that live in the BOB account to appear in Owner's ...
    (comp.sys.hp.hardware)
  • Re: BYPASS privilege !!
    ... will bypass all system security. ... SYSTEM account for their admin duties. ... privs and quotas of the system account. ...
    (comp.os.vms)
  • Re: Cannot delete a "Windows System Folder" in XP Pro
    ... thought occurs to me that perhaps you renamed the administrator to Bob? ... My BobS account does have administrator priviledges. ... However I could not delete the userprofile Folder. ... Windows help - www.rickrogers.org ...
    (microsoft.public.windowsxp.general)