RE: So how is sudo better?
Charles Manning Posted above:
One a terminal has used sudo, it gets a free pass to use sudo for a while with no checks.
True, but malware can't tell which processes have rights when, and therefore where to try injecting stuff. On win7, 70+ applications have permanent, unlimited, use-at-any-time free passes. Including explorer.exe, a very complex program which is easy to inject stuff into and which is almost certainly running all the time.