A
Alias
Robert said:Which I have been telling users that call in to the call center where I
work that while it is possible to disable the prompts (they do ask about
it) I don't recommend it. It helps to prevent stuff like spyware from
installing on their own.
In all fairness to Microsoft, I predict that UAC will be changed with a
service pack or update.
He is referring to someone determining the password for the root user
account. The account on linux and unix referred to as "god". Controls
everything in the system regardless of permission status. Has more
control than even the Administrator account on any windows platform.
That account must has a secure password. The key here though is never
allow a remote user to login as root. When I secured up a VPS that I
was playing around with that was one of the first things. I was still
securing it while a bunch of people hammered it attempts to login which
all failed. Granted they were trying the wrong username. I mean what
is the point of trying Administrator on a server running Linux? I
thought about just creating one just to see what they would of done with it.
I don't do remote user trips.
One thing that I will point out is that there is never a 100% secure
system. It won't matter what platform it is running on. It could be
Linux, Unix, any BSD flavor, Mac OS, Windows, or Solaris and still can
be broken in and taken advantage of. There is always a security issue
or a loophole somewhere. The best that can happen is the user takes
measures to prevent such from happening. A firewall is a good first
line to prevent someone from gaining access to a computer.
I have a nat firewall. I stand corrected; it is *possible* to get a
nasty with Linux or have your computer taken over but highly unlikely.
In the even that it gets trashed with beasties, reinstalling Ubuntu is a
less than two hours chore, most of which is downloading and installing
updates and requires no user input.
Alias