two
Volume 3, Number 9 -- March 8, 2006

Winternals Tackles Elevation of Privilege Problem with Protection Manager

Published: March 8, 2006

by Alex Woodie

Windows security and utility developer Winternals this week delivered new security software called Protection Manager that's designed to prevent malicious software from taking advantage of one of Windows' most glaring security weaknesses: the elevation of privilege attack.

Due to the way many Windows applications are written, users often must run their Windows operating system in administrative mode for an application to work properly. However, running in this most permissive administrative state can lead to problems, especially as malicious software writers get hip to the problem and start targeting it with their wares.

Microsoft, to its credit, has recognized the problem, and pledges to make sweeping changes to user privileges with the next version of Windows. However, Longhorn won't be in widespread production for another 12 months at least, which, for some users, is an unacceptably long time to be exposed to the problem.

Winternals says its new Protection Manager software provides protection for Windows system right now. The company says it solves the elevation of privilege problem by only allowing authorized applications to run. Applications that haven't been authorized to run are blocked. However, the software does permit legacy applications that would otherwise break if you tried to run them with anything but full administrative privilege to be run in elevated privilege mode, as needed.

Mark Russinovich, co-founder and chief software architect of Winternals, says the new software addresses two of the most prevalent threats to Windows security: malicious software attacks, and the fact that end-users often run with administrative rights. "Protection Manager is the first solution capable of defeating those threats through an approach that prevents all unauthorized applications from executing, merged with a least-privilege environment that provides the minimum necessary user access rights," he says.

Protection Manager is available now for Windows 2000, Windows XP, and Windows Server 2003 systems. Pricing starts at $250 per server, or $25 per workstation, and there is also a console available for centralized management for $69. For more information, go to www.winternals.com.

Sponsored By
MICRO FOCUS

Lift and Shift . . .
your mainframe and proprietary COBOL applications to Linux . . .
and dramatically lower your hardware and software costs, while increasing your agility.

Eliminate the cost and risks of a rewrite by reusing and integrating your existing COBOL applications with Web services, XML and J2EE.

Develop, extend and deploy your applications with
Micro Focus Server Express and Enterprise Server.

Learn more at:
www.microfocus.com/products/serverexpress
Editor: Alex Woodie
Contributing Editors: Dan Burger, Joe Hertvik,
Shannon O'Donnell, Timothy Prickett Morgan
Publisher and Advertising Director: Jenny Thomas
Advertising Sales Representative: Kim Reed
Contact the Editors: To contact anyone on the IT Jungle Team
Go to our contacts page and send us a message.

Sponsored Links

MKS:  Meet your compliance goals with iSeries and cross-platform application lifecycle management
Wolf Computer Consulting:  Reliable service and affordable rates for business computing needs
COMMON:  Join us at the Spring 2006 conference, March 26-30, in Minneapolis, Minnesota

 
THIS ISSUE SPONSORED BY:

OpenLogic
Vision Solutions
World Data Products
Lakeview Technology
Micro Focus



TABLE OF CONTENTS
Intel Goes After AMD with New Chip Architecture

Microsoft Faces New Challenges on the Office Front

Intel Gearing Up for Battle on the Server Front

Microsoft Petitions US Courts for Help in EU Case

But Wait, There's More:

Winternals Tackles Elevation of Privilege Problem with Protection Manager . . . Microsoft Eager for Intel Core Chips for Vista . . . eEye Develops Custom Security Software for Citrix Environments . . . Atempo Buys Storactive, Boosts Windows Backup Capability . . . No Backdoors in Vista: Microsoft . . . Microsoft Celebrates 5,000th Patent . . .

The Windows Observer

BACK ISSUES

The Four Hundred
OS/400 Servers Over Time: Stacking Up the Big Boxes

Hosting is Increasingly Popular at OS/400 Shops

The Balance of Server Powers

Lincoln to Open SQL

The Linux Beacon
Linux Growth Doesn't Offset NetWare Decline in Q1

IBM and Friends Fight Identity Theft with 'Project Higgins'

The Balance of Server Powers

Lincoln to Open SQL

Big Iron
Getting a Grip on the zIIP

Top Mainframe Stories and Vendor Announcements

Chats, Webinars, Seminars, Shows, and Other Happenings

The Unix Guardian
McNealy PR Stunt Number 105: Merge Solaris and HP-UX

Oracle Designates HP-UX on Itanium a Strategic Platform

The Balance of Server Powers

As I See It: Future Schlock


 
Subscription Information:
You can unsubscribe, change your email address, or sign up for any of IT Jungle's free e-newsletters through our Web site at http://www.itjungle.com/sub/subscribe.html.

Copyright © 1996-2008 Guild Companies, Inc. All Rights Reserved.
Guild Companies, Inc., 50 Park Terrace East, Suite 8F, New York, NY 10034

Privacy Statement