By Gregg Keizer, Feb 2, 2009
Microsoft insisted Monday that what outsiders have called a "security flaw" in Windows 7 is not a bug, but the way the new operating system is meant to work. Last week, Rafael Rivera , a developer for a Virginia-based company that sells secure messaging software to the U.S. government, and Long Zheng, a well-known blogger who writes "I Started Something," argued that a change to User Account Control (UAC) in Windows 7 could be exploited by attackers to secretly disable the feature. UAC, which debuted in Windows Vista , is a security feature that prompts users for their consent before tasks such as program and device driver installation are allowed. The feature has been roundly criticized since Vista's launch, primarily for too-frequent nagging. Even Microsoft acknowledged UAC's problems last year when it named it one of the five factors that contributed to Vista's slow adoption pace. In Windows 7, UAC has been modified to pop up alerts less often. It also, said Rivera and Long, has been changed so that by default the feature is set to "Don't notify me when I make changes to Windows settings."
Read more here -->Link
No comments:
Post a Comment