Trusted in what way? If I install my app into Program Files it can't do anything, including writing files into subdirectories of the install path.
If I install out side of Program Files it can do everything. So I think stuff in Program Files is less trusted, either i'm missing something or they have not thought this through Regards Dale Fraser http://dale.fraser.id.au/blog -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Justin Carter Sent: Friday, 13 April 2007 12:21 PM To: cfaussie Subject: [cfaussie] Re: OT: Vista Application On Apr 13, 10:35 am, "Dale Fraser" <[EMAIL PROTECTED]> wrote: > My point exactly, if stopping you putting data into program files is > supposed to stop you accessing applications some how, then people start > installing outside program files, then nothing has been stopped. The point is that applications installed to Program Files can be trusted, and apps installed outside it cannot. If writing to Program Files requires a priviledge elevation through UAC then it is hard for a virus to compromise an application which you trust. And when you run a trusted application as Administrator and agree to the priviledge elevation through UAC you want to be safe in the knowledge that you *really* trust the app to do what it needs to do. If an app has become compromised because it was stored outside Program Files and you run it as Administrator then you are in deep trouble, because you have given a free ticket to any injected code to do what it likes with your system (to a certain extent). I'm sure we'll hear horror stories about ignoring best practises or turning off UAC in the months and years to come. It is inevitable really... But that's just my 2c. It's there for our protection, not to piss us off; really it's not ;) -- Justin http://www.madfellas.com/blog --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "cfaussie" group. To post to this group, send email to [EMAIL PROTECTED] To unsubscribe from this group, send email to [EMAIL PROTECTED] For more options, visit this group at http://groups.google.com/group/cfaussie?hl=en -~----------~----~----~----~------~----~------~--~---
