this post was submitted on 20 Nov 2023
165 points (85.7% liked)

Memes

45581 readers
1 users here now

Rules:

  1. Be civil and nice.
  2. Try not to excessively repost, as a rule of thumb, wait at least 2 months to do it if you have to.

founded 6 years ago
MODERATORS
 

Edit: typo

top 39 comments
sorted by: hot top controversial new old
[–] beefcat@beehaw.org 21 points 2 years ago* (last edited 2 years ago) (1 children)

most windows programs haven’t run as root in over a decade.

a program only runs as “root” in one of three situations:

  1. The app manifest says it is a requirement.
  2. The executable does not have an app manifest and has the "Run as Administrator" compatibility flag (only applies to apps built for XP or older).
  3. The user manually invokes the program with super user permissions (right click and “Run as Administrator", or manually set the above compatibility flag).
[–] socsa@lemmy.ml 1 points 2 years ago* (last edited 2 years ago) (1 children)

There are still far too many system components which run with spooky elevated privileges. Don't believe me? Try nuking permissions on Windows update or activation nagware, disconnect from the internet and see how long those changes persist. Sometimes it is a few reboots.

This is a fundamentally insecure security framework, which no amount of glue or sandboxing can fix.

[–] beefcat@beehaw.org 1 points 2 years ago

how would you expect something like windows update to function without elevated privileges?

activation nagware

what?

[–] Katana314@lemmy.world 19 points 2 years ago

If Linux was the world’s most popular operating system, it too would have tons of vulnerabilities.

There’s two sides to that statement; one being that increased attention leads to more findings. The second being that in order to become popular, it would need a large set of simplified convenience features aimed for mass consumers; and those are often what lead to vulnerabilities. (Same story pretty much happened with Android)

[–] verdare@beehaw.org 13 points 2 years ago (1 children)

What do you mean by “most Windows programs running as root?” I don’t think that’s accurate, unless you’ve disabled UAC.

[–] beefcat@beehaw.org 10 points 2 years ago

OP still uses Windows XP.

[–] Raine_Wolf@lemm.ee 12 points 2 years ago

Meanwhile, giving myself root access to my own computer is a bitch. I need to just switch to Linux

[–] KinNectar@kbin.run 8 points 2 years ago (1 children)
[–] Designate6361@beehaw.org 8 points 2 years ago (1 children)

Pretty most of the people i know who work in IT are all just using Defender now, i have even stopped paying for AV and just use defender out of the box. Unless you are doing something that exposes you to risk there really is no use to use anything other than defender. In saying that enterprise or businesses environment i would still say 100% have something other than defender in place.

[–] wrath_of_grunge@kbin.social 2 points 2 years ago

i'm one of those people. haven't used anything other than Windows Defender for over a decade at this point.

[–] Omega_Haxors@lemmy.ml 6 points 2 years ago* (last edited 2 years ago)

If you want to criticize windows for being shitty, you should have went with their certification system. You know that popup that shows up whenever you run an exe from an "unknown publisher"? Well viruses can (and do) get certification since all you have to do is send Macroshaft money, leaving you completely unprotected from actual threats. It's security theatre only there for fundraising purposes. Completely useless.

And no this isn't a case of "no oversight" there are cases where Windows Defender will let you run a program its own database knows is a virus. Even if they know your program is flat out malware, as long as you buy that certificate your program will forever be treated as legitimate.

[–] Static_Rocket@lemmy.world 5 points 2 years ago

You know what, if it keeps me from getting weird phone calls from my gramps once a month it's good enough.

[–] Zerush@lemmy.ml 5 points 2 years ago

Precisely because Windows has been the main target for hackers and malware, for being by far the most used OS, it has caused Windows today to be the best protected OS, with a Defender that is currently one of the best AVs on the market and a effective Sandbox system that prevents any changes without user intervention in the root system. Hopefully in terms of privacy it will be just as good, at least by default it is not like that.