On TechRepublic: Five super-secret features in Windows 7
BNET Business Network:
BNET
TechRepublic
ZDNet
48 TalkBacks

By Munir Kotadia
Posted on ZDNet News: Jun 14, 2005 12:43:00 AM

The next version of Microsoft's much criticized Internet Explorer browser is being built to resist hijacking attempts by spyware and other malicious software, according to a Microsoft developer.

Rob Franco, lead program manager for IE Security at Microsoft, wrote in a blog entry on Thursday that Internet Explorer 7 for Longhorn will contain a feature called "low rights IE." The feature essentially removes administrator rights, so that the system will not allow unknown applications, such as spyware and other potentially dangerous code, to be installed without express permission from the user.

"When users run programs with limited user privileges, they are safer from attack than when they run with Administrator privileges, because Windows can restrict the malicious code from taking damaging actions...Any programs that the user downloads and runs will be limited by User Account Protection, unless the user explicitly gives the program Administrator privileges," wrote Franco, whose authorship of the blog was confirmed by a Microsoft representative.

Franco said that by restricting administrator rights for Web surfers, users will be protected even if a malicious Web site tries to exploit a vulnerability in the browser.

"The Web site's code won't have enough privileges to install software, copy files to startup folder, or hijack the settings for the browser's homepage or search provider. The primary goal of Low Rights IE is to restrict the impact of a security vulnerability....It can limit the damage a vulnerability can do," Franco wrote.

James Turner, security analyst at Frost & Sullivan Australia, said restricting admin rights is a very important development and one that Microsoft has been extremely slow to pursue.

"A Unix administrator would not dream of working in root as standard. We only logged in as root when something special/unusual needed to happen. It's been an issue for Windows administrators for years that standard users just shouldn't have local admin power," Turner said.

Microsoft's Franco confirmed that though IE7 will be made available for Windows XP SP2, the low rights browsing feature will be available only on the next version of Windows, code-named Longhorn.

Munir Kotadia of ZDNet Australia reported from Sydney.

SponsoredWhite Papers, Webcasts, and Downloads

  • Talkback
  • Most Recent of 48 Talkback(s)
So that's how you get your users to use an ...
So that's how you get your users to use an unfriendly browser over more useful ones...you simply ban them.

Didn't Hitler do something similar?... (Read the rest)
Posted by: phoneguy8099@... Posted on: 06/17/05 You are currently: a Guest | | Terms of Use
Why don't we just start with the Active-X crap!  rick752 | 06/13/05
You're no fun  alterego_z | 06/14/05
RE: "Why don't we just start with the Active-X crap!"  ajapierce | 06/14/05
I wish them the best of luck....  nucrash | 06/13/05
19 years too late  realitycheck101 | 06/13/05
Just keeps getting better...  Mike Cox | 06/13/05
Mr Cox .... you are indeed a "piece of work"  rick752 | 06/13/05
5.0  DragonBRockin | 06/13/05
7.6 - Informative  nucrash | 06/13/05
Time to fry up some penguins and applesauce! happy  tr7oy | 06/13/05
Forget exorcising Daemons!!!!  nucrash | 06/14/05
Earing your name - COX!  An_Axe_to_Grind | 06/14/05
Cox Is Sucking Worse With Every Post  itanalyst | 06/14/05
In that case...  Jack-Booted EULA | 06/14/05
Good one...  Colonel_Panic | 06/14/05
8.1  jheine | 06/14/05
So that's how you get your users to use an ...  phoneguy8099@... | 06/17/05
Comparison with Unix?  sayshh | 06/14/05
Nope, none.  Fred Fredrickson | 06/14/05
Nope, none.  Fred Fredrickson | 06/14/05
Have you used a modern linux distro?  ebrke | 06/14/05
I disagree  alterego_z | 06/14/05
Only available to the next Version of Windows?  shfy70 | 06/14/05
Sure  Middle of the Road | 06/14/05
Security  soulcircus | 06/14/05
Like Communism... Great In Theory  nikoli | 06/14/05
Hard to say...as far as I know true Communisim  Laff | 06/14/05
Is this a challenge?  An_Axe_to_Grind | 06/14/05
Yes, fix what you broke originally with a few registry settings.  Xunil_Sierutuf | 06/14/05
You mean we have to pay for it....?  figgle | 06/14/05
I Saw Mike Cox The Other Day Along I-40  itanalyst | 06/14/05
Lawsuite comming your way !  Ardian Daka | 06/14/05
Remarkable LATENESS and lack of Forethought  michael_t | 06/14/05
Not disagreeing  IT Scion | 06/14/05
Fortunately most of us aren't using Windows  Boot_Agnostic | 06/14/05
Security.  soulcircus | 06/14/05
It's about time  IT Scion | 06/14/05
Every time MS says they'r going to do something, it's either vaporware or  HypnoToad | 06/14/05
IE7 Being Developed To Resist Itself  itanalyst | 06/14/05
Ms spyware vs. hacker spyware!  An_Axe_to_Grind | 06/14/05
IE7 and Michael Jockson!!!! :-o  An_Axe_to_Grind | 06/14/05
IE and "Jockson"  jguyp725@... | 06/14/05
when I see it, I'll believe it...  voyager529 | 06/14/05
If it isn't a gui I can't drive it..........  pesky_z | 06/14/05
Using .NET?  perrasd@... | 06/14/05
NM  jguyp725@... | 06/14/05
Buuuwwaaaahahahah, waaaaaay too little, waaaaay too late...  Colonel_Panic | 06/14/05
IE7 Our Savior at Last  dw5437@... | 06/15/05

What do you think?

advertisement
advertisement

White Papers, Webcasts, and Downloads

SmartPlanet

  • Thought-provoking progressive ideas on diverse topics that intersect with technology, business, and life, and matter to the world at large. Visit SmartPlanet
  • More from IBM
  • Innovate your business' process model, play against the market, compete against others on our scoreboards and WIN! Try INNOV8 2.0: A BPM Simulator
  • Enabling Real-World Business Transformation through IBM Service Management Read the EMA Analyst Report
Click Here