Has the time finally come for the least-privilege user — you know, setting your Windows client machines to run without system administrator rights? With Vista in the wings, it may just be. But does it really matter?
–I like how they dismiss running limited user rights because they don’t know how to adjust the application to run in that environment. If it wasn’t built that way, how can it be possible. Boooo. Then trying to equate a DOS attack from a network service run amok to key loggers and bots running on administrative accounts on a domain is silly. Limit your users accounts, lock down these apps, then focus on those other problems with IDS and packet filters. Turn off the prompts in Vista to bypass the security restrictions, der. Read more on my site about how to lock down your Windows clients.