Edit: typo

  • beefcat@beehaw.org
    link
    fedilink
    arrow-up
    21
    ·
    edit-2
    11 months ago

    most windows programs haven’t run as root in over a decade.

    a program only runs as “root” in one of three situations:

    1. The app manifest says it is a requirement.
    2. The executable does not have an app manifest and has the “Run as Administrator” compatibility flag (only applies to apps built for XP or older).
    3. The user manually invokes the program with super user permissions (right click and “Run as Administrator", or manually set the above compatibility flag).
    • socsa@lemmy.ml
      link
      fedilink
      arrow-up
      1
      ·
      edit-2
      11 months ago

      There are still far too many system components which run with spooky elevated privileges. Don’t believe me? Try nuking permissions on Windows update or activation nagware, disconnect from the internet and see how long those changes persist. Sometimes it is a few reboots.

      This is a fundamentally insecure security framework, which no amount of glue or sandboxing can fix.

      • beefcat@beehaw.org
        link
        fedilink
        arrow-up
        1
        ·
        11 months ago

        how would you expect something like windows update to function without elevated privileges?

        activation nagware

        what?