[Dshield] Flavors of Linux

Stephane Grobety security at admin.fulgan.com
Tue Oct 5 05:46:14 GMT 2004


sn> The major difference between windows and unix, in my opinion, is that
sn> there are no super user under windows: everything is permission based, 
sn> if you want a root-like account, you have to include it in admin groups 
sn> or give it allow everything permissions.

Ah... the SYSTEM account has permanent, complete right over everything
local. You can't login with it, but it is more or less the equivalent
of root.

But you forgot something, probably the most important part: NT-based
OSs have ACLs on other things than files: system objects (like mutex,
pipes, memory mapped files, etc.) all have ACLs that can be controlled
by the calling program: Something that Unix, AFAIK, doesn't have.

Good luck,
Stephane





More information about the list mailing list