this post was submitted on 20 Nov 2023
180 points (86.3% liked)

Memes

45665 readers
1154 users here now

Rules:

  1. Be civil and nice.
  2. Try not to excessively repost, as a rule of thumb, wait at least 2 months to do it if you have to.

founded 5 years ago
MODERATORS
 

Edit: typo

you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 21 points 1 year ago* (last edited 1 year ago) (2 children)

most windows programs haven’t run as root in over a decade.

a program only runs as “root” in one of three situations:

  1. The app manifest says it is a requirement.
  2. The executable does not have an app manifest and has the "Run as Administrator" compatibility flag (only applies to apps built for XP or older).
  3. The user manually invokes the program with super user permissions (right click and “Run as Administrator", or manually set the above compatibility flag).
[–] [email protected] 1 points 1 year ago* (last edited 1 year ago) (1 children)

There are still far too many system components which run with spooky elevated privileges. Don't believe me? Try nuking permissions on Windows update or activation nagware, disconnect from the internet and see how long those changes persist. Sometimes it is a few reboots.

This is a fundamentally insecure security framework, which no amount of glue or sandboxing can fix.

[–] [email protected] 1 points 1 year ago

how would you expect something like windows update to function without elevated privileges?

activation nagware

what?