Feeds

* Posts by John Cupitt

2 posts • joined 15 Feb 2009

Wanna see how to use Win 7 UAC to pwn a PC?

John Cupitt
Thumb Up

RE: So how is sudo better?

Charles Manning Posted above:

One a terminal has used sudo, it gets a free pass to use sudo for a while with no checks.

True, but malware can't tell which processes have rights when, and therefore where to try injecting stuff. On win7, 70+ applications have permanent, unlimited, use-at-any-time free passes. Including explorer.exe, a very complex program which is easy to inject stuff into and which is almost certainly running all the time.

0
0
John Cupitt

@Rich Turner

No they have not. Please read the article.

0
0