strawberryJAMM's Security and User Experience WebLog : January 2005

This Blog

Syndication

Search

News

Disclaimer: This posting is provided "AS IS" with no warranties, and confers no rights of any kind. All opinions included here are mine (Mine, all mine!) and do not represent the opinions of Microsoft or any of its other thousands of employees

(They're mine I tell you! Mine! Mine! And no one can take them away from me! Mwa-ha-ha-ha-ha!)

My Stuff

Security

UX

January 2005 - Posts

Tuesday, January 25, 2005 5:58 PM

Least-Privileged Users, Add/Remove Programs and System Management Server

Did you know that installations published to enterprise employees using Systems Management Server (SMS) can be successfully installed by a non-Admin user using the "Add New Programs" view of the Add/Remove Programs (ARP) control panel applet?

Posted by strawberryJAMM | (Comments Off)

Filed under: LUA, Security, UX

Tuesday, January 18, 2005 5:19 PM

"Using a Least-Privileged User Account" OR "Woohoo, I've been published on microsoft.com!"

An article I wrote, "Using a Least-Privileged User Account (LUA)", was published on TechNet as part of the monthly Microsoft Security Newsletter for January 2005. It takes a brief look at a few of the key issues around the principle of "least-privilege" and running as LUA on the Windows OS.

Posted by strawberryJAMM | 2 Comments

Filed under: LUA, Security, UX

Tuesday, January 18, 2005 4:50 PM

Browsing the Web and Reading E-mail Safely as an Administrator, Part 2

Michael Howard has written a follow up to an earlier article where he outlined how to programatically make web browsing and reading e-mail safer for administrators. In this latest article, he provides instructions on how to do the same thing using SAFER (also known as Software Restriction Policies - SRP) with local or enterprise policy to reduce potential threats against these kinds of applications.