Comments on: Is a PC Using a Limited User Account (LUA) Safe from Drive-by Download Attacks? http://www.blueridgenetworks.com/securitynowblog/limited-user-account-does-not-protect-from-drive-by-download-attack Secure Communications Mon, 28 Jun 2010 23:24:35 -0500 http://wordpress.org/?v=2.8.4 hourly 1 By: Zack Wixom http://www.blueridgenetworks.com/securitynowblog/limited-user-account-does-not-protect-from-drive-by-download-attack/comment-page-1#comment-1345 Zack Wixom Mon, 28 Jun 2010 19:14:26 +0000 http://www.blueridgenetworks.com/securitynowblog/?p=131#comment-1345 Awesome post. I've got to express though that for operating systems, I'm still old school and usually stick with models that have had the kinks worked out for a couple years, how about you? Awesome post. I’ve got to express though that for operating systems, I’m still old school and usually stick with models that have had the kinks worked out for a couple years, how about you?

]]> By: Computer Software Cannot Be Trusted http://www.blueridgenetworks.com/securitynowblog/limited-user-account-does-not-protect-from-drive-by-download-attack/comment-page-1#comment-20 Computer Software Cannot Be Trusted Thu, 23 Jul 2009 16:56:05 +0000 http://www.blueridgenetworks.com/securitynowblog/?p=131#comment-20 [...] So, what can these malicious executables do from user-space? They can steal information, alter registry settings so they automatically run when Windows launches, and they can attack other applications or other computers. BTW, the Conficker worm attempts to crack the admin credentials for its host so it can implant something deeper and more invisible into its host. There are other vectors.  {More on this point in a post on Limited user accounts versus drive-by download attacks} [...] [...] So, what can these malicious executables do from user-space? They can steal information, alter registry settings so they automatically run when Windows launches, and they can attack other applications or other computers. BTW, the Conficker worm attempts to crack the admin credentials for its host so it can implant something deeper and more invisible into its host. There are other vectors.  {More on this point in a post on Limited user accounts versus drive-by download attacks} [...]

]]>