Web Surfing, Reading Email as an Administrator Considered Dangerous

Discussion in 'other security issues & news' started by lotuseclat79, Oct 22, 2005.

Thread Status:
Not open for further replies.
  1. lotuseclat79

    lotuseclat79 Registered Member

    Jun 16, 2005
    If you surf as an administrator checkout the following two web pages. I finally implemented the scheme on my WinXP Pro SP2 computer by following the Local Security Policy changes recommended in the second web page article, and verifying that the permissions had been dropped to that of a Normal User with Process Explorer.

    If you just follow the 1st web pages instructions you will not succeed until you have changed the security policies in your registry as advised in the 2nd web page - and rebooted! Remember to reboot, because the changes do not take place dynamically.

    The second webpage contains recommendations on applying the modifications to other Internet facing applications - highly recommended!

    Download the following two items referenced on the web pages:

    Browsing the Web and Reading E-mail Safely as an Administrator

    Browsing the Web and Reading E-mail Safely as an Administrator, Part 2

    You probably will need Process Explorer to check the process permissions on your browser process from: http://www.sysinternals.com/ProcessesAndThreadsUtilities.html

    -- Tom
  2. smikkel

    smikkel Registered Member

    Oct 23, 2005
Thread Status:
Not open for further replies.