Changes between Version 43 and Version 44 of doc/OperationalSecurity


Ignore:
Timestamp:
Apr 23, 2010, 10:48:26 AM (9 years ago)
Author:
trac
Comment:

--

Legend:

Unmodified
Added
Removed
Modified
  • doc/OperationalSecurity

    v43 v44  
    334334}}}
    335335
     336'''Drop``My``Rights for Windows XP and Windows Server 2003 '''
     337
     338See [http://msdn.microsoft.com/library/default.asp?url=/library/en-us/dncode/html/secure11152004.asp Browsing the Web and Reading E-mail Safely as an Administrator]
     339
     340"Windows XP and Windows Server 2003 and later support functionality called Software Restriction Policy, also known as SAFER, which allows a user or software developer to run code at a lower privilege without having the user enter credential information when the application starts. For example, an administrator could run an application as a normal user by stripping out certain SIDs and privileges from the application's token as the application is launched. Some applications, most notably Internet-facing applications, such as a Web browser, instant messaging, or e-mail client, should never be run under an administrative context."
     341
    336342{{{
    337343TODO: discuss chroot, jail, systrace