Home > del.icio.us > Bookmarks for February 7th through February 14th

Bookmarks for February 7th through February 14th

February 14th, 2009 Leave a comment Go to comments

These are my links for February 7th through February 14th:

  • What’s My Pass? » Change Vista Password From Install DVD
  • Metasploit: Metasploit Mass Exploitation for Dummies – One of the features added in the 3.2 release of the Metasploit Framework was the ability to restrict the db_autopwn command to specific ports and modules matching a given regular expression. This feature can be used to run one or more exploits against a specific range of hosts at the same time.
  • Reducing the Threat from Microsoft Vulnerabilities (PDF) – This BeyondTrust Report investigates all vulnerabilities published in Microsoft’s 2008 Security Bulletins and reports on vulnerabilities that are mitigated by configuring users to operate without administrator rights. The results show that companies can reduce the threat from Microsoft vulnerabilities, experience greater protection from zero-day threats and reduce risk by removing administrator rights.
  • Is System Lockdown the Secret Weapon? – The Sunbelt scan performed after the reboot could find only a single threat, which consisted of one file in the browser cache.

    The systems managed by Administrators were not nearly as fortunate: On the Windows 2000-based system, CounterSpy found 19 threats consisting of three memory processes, 503 files and 2,500 registry keys—all of which had installed.

    Corporations thinking they have found middle ground with Power User mode will be sorely disappointed. In our tests, the Power User computer registered 19 threats (three memory processes, 503 files and 2,278 registry keys)—nearly identical results to what we found on the Administrators system.

  • nonadmin – Why Non Admin – When you run a program as Administrator, it has unlimited access to your computer. It can install root kits, back doors, keyloggers, adware, spyware, viruses, trojans, and all other manner of nasties, and they will have the same unlimited access. Think it won't happen to you? Aaron Margosis points out a plausible – and disastrous – scenario:

Related posts:

  1. Removing Administrator Rights
  2. Bookmarks for March 14th through March 18th
  3. Bookmarks for May 1st through May 14th
  4. Bookmarks for February 17th through March 3rd
  5. Bookmarks for February 15th through February 26th
Categories: del.icio.us Tags:
blog comments powered by Disqus