In an interview with eWEEK, Microsoft security chief Ben Fathi said the decision to add the ActiveX installer was a direct result of demands from beta testers. 'The feedback we get is that UAC is great but, in the enterprise, there is a legitimate need to install applications on Standard User systems. We had to create a way to safely preapprove applications without the need for an admin password,' Fathi explained.What a boon to hackers and virus-writers: executable code that can be installed without the admin password prompt. And people wonder why Windows has so many viruses.
Monday, July 03, 2006
Bruce Schneier pointed to an article that talks about how Microsoft will yet again weaken security rather than fixing their OS. This time, they're making a way for ActiveX controls to be "pre-approved" so they can automatically be installed on "Standard User" machines without an admin password:
Posted 10:32 AM