<a href="http://g.adspeed.net/ad.php?do=clk&zid=14678&wd=728&ht=90&pair=as" target="_top"><img style="border:0px;" src="http://g.adspeed.net/ad.php?do=img&zid=14678&wd=728&ht=90&pair=as" alt="i" width="728" height="90"/></a>

Nmap Security Scanner

Docs
Security Lists

Full Disclosure

More
Security Tools

Packet crafters

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

edgeos

Bugtraq: Re: On product vulnerability history and vulnerability complexity

Re: On product vulnerability history and vulnerability complexity

From: ArkanoiD <ark_at_eltex.net>
Date: Mon, 3 Apr 2006 19:44:12 +0400

nuqneH,

On Sat, Apr 01, 2006 at 03:00:30PM -0800, Crispin Cowan wrote:
> >
> IMHO the biggest thing that makes Firefox on Linux more secure than IE
> on Windows is that you don't run Firefox as root/administrator, so when
> it gets hacked, it doesn't 0wn the machine.

Actually there is only one major difference: you cannot be rootkited (unless
there is an exploit that fits, and if you are running X11 with all modern
software bells'n'whistles , there probably is) .

>From other points of view owning a sole user on the machine does not
differ much.

(Do they still run web browser as administrator? I think XP was designed not
to do that?)
Received on Apr 03 2006

This message: [ Message body ]
Next message: Dennis Brown: "Re: WebVulnCrawl searching excluded directories for hackable web servers"
Previous message: xx_hack_xx_2004_at_hotmail.com: "SQL Injection in Softbiz Image Gallery"
In reply to: Crispin Cowan: "Re: On product vulnerability history and vulnerability complexity"
Next in thread: Forrest J. Cavalier III: "Re: On product vulnerability history and vulnerability complexity"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]

[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]