| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Thu, 27 Aug 2009 15:30:35 -1000 From: Peter Besenbruch <prb@...a.net> To: full-disclosure@...ts.grok.org.uk Subject: Re: [Fwd: Re: windows future] On Thursday 27 August 2009 13:33:37 Thor (Hammer of God) wrote: > But that's the same on my Mac and Ubuntu distro too. The first user is the > admin. Granted, the default behavior on Mac/nix requires the admin > password That's a big difference. Entering a password counts as more of a deterrence. Having seen my co-workers on their home machines, it's pretty clear that it's too easy to click OK without thinking. Entering a password, especially when the prompt doesn't occur as often as the UAC prompt is a more significant action. Personally, I prefer arrangements where the administrator uses a separate password. Not only do you need a password, but it's a different one. It's seldom used. The end user probably has to go look it up. I'm not a big fan of sudo. -- Hawaiian Astronomical Society: http://www.hawastsoc.org HAS Deepsky Atlas: http://www.hawastsoc.org/deepsky _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Powered by blists - more mailing lists