[Dshield] Flavors of Linux
security at admin.fulgan.com
Tue Oct 5 05:46:14 GMT 2004
sn> The major difference between windows and unix, in my opinion, is that
sn> there are no super user under windows: everything is permission based,
sn> if you want a root-like account, you have to include it in admin groups
sn> or give it allow everything permissions.
Ah... the SYSTEM account has permanent, complete right over everything
local. You can't login with it, but it is more or less the equivalent
But you forgot something, probably the most important part: NT-based
OSs have ACLs on other things than files: system objects (like mutex,
pipes, memory mapped files, etc.) all have ACLs that can be controlled
by the calling program: Something that Unix, AFAIK, doesn't have.
More information about the list