| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <f9dcbdc00902060958l61bd6f68s365f4575aa221bbf@mail.gmail.com>
Date: Fri, 6 Feb 2009 17:58:12 +0000
From: Andy McKnight <andy.mcknight@...il.com>
To: Ureleet <ureleet@...il.com>
Cc: full-disclosure <full-disclosure@...ts.grok.org.uk>,
Valdis.Kletnieks@...edu
Subject: Re: Windows 7 UAC compromised
2009/2/6 Ureleet <ureleet@...il.com>
> doesnt this work for other oses?
Windows is different in this respect. The number of Windows users who don't
know/care (or *want* to know) what goes on under the hood is *huge*. As
long as their current setup allows them to *do their job* then they're not
going to buy into any upgrade that risks breaking that. That's what's
important to them.
The biggest driver behind upgrading a Windows OS isn't a new release, or
security improvements or a fancy GUI. It's hardware replacement. Even this
was/is stretched with XP with the extended shipment dates and various
downgrade options you can *still* get on new boxes.
The only people that can really force app developers to change overnight*
and code for a new, secure Windows OS mostly don't care about it. That
leaves Microsoft to try and drip feed gradual change that improves the
situation without rocking the boat.
*relatively.
Content of type "text/html" skipped
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
Powered by blists - more mailing lists