G
Guest
I am currently restoring my system due to trojan horse type virus. I ran
FDISK off a Windows98 startup floppy. I wiped all partition information off
the hard drive and then set the boot partition up to enable large disk
support... blah... blah... blah...
I now have a fresh install of WinXP Pro SP2 with all the "high priority"
updates from Microsoft. The software updates, all "retail" software,
including Norton AV Pro 2004, the OEM bundle that came with the box, and
various Powertoys, device driver updates, and now Windows Defender were
installed under the username that I provided the XP installation utility.
That username is a member of the administrators group by default.
Should I be concerned about the administrator option in Windows Defender
that allows all users to use Windows Defender? Will allowing all users
administrative privileges afford someone remote access to the local machine
by overriding the security permissions that deny remote access to the local
machine as set in the Security Policies of XP?
My logic center... with its nifty warning light blipping away... wants me to
disable this option, as the automatic handling of issues, updates and
scheduled scans is addressed by the option to use Windows Defender; therefore
no user, save the local administrator, should need to be involved with the
application or have administrative privileges to Windows Defender.
As of this post, I am logged on as the default administrator and disabling
this option. I know just enough about XP to realize that I could be starting
an avalanche, but the support documents do not address these options and the
technical writing, in the option description, is explicit enough, in its
verbage, to afford an optimistic, literal, and linear interpretation. Am I
missing some glaring absolute in XP security policies that mitigates my
concern?
FDISK off a Windows98 startup floppy. I wiped all partition information off
the hard drive and then set the boot partition up to enable large disk
support... blah... blah... blah...
I now have a fresh install of WinXP Pro SP2 with all the "high priority"
updates from Microsoft. The software updates, all "retail" software,
including Norton AV Pro 2004, the OEM bundle that came with the box, and
various Powertoys, device driver updates, and now Windows Defender were
installed under the username that I provided the XP installation utility.
That username is a member of the administrators group by default.
Should I be concerned about the administrator option in Windows Defender
that allows all users to use Windows Defender? Will allowing all users
administrative privileges afford someone remote access to the local machine
by overriding the security permissions that deny remote access to the local
machine as set in the Security Policies of XP?
My logic center... with its nifty warning light blipping away... wants me to
disable this option, as the automatic handling of issues, updates and
scheduled scans is addressed by the option to use Windows Defender; therefore
no user, save the local administrator, should need to be involved with the
application or have administrative privileges to Windows Defender.
As of this post, I am logged on as the default administrator and disabling
this option. I know just enough about XP to realize that I could be starting
an avalanche, but the support documents do not address these options and the
technical writing, in the option description, is explicit enough, in its
verbage, to afford an optimistic, literal, and linear interpretation. Am I
missing some glaring absolute in XP security policies that mitigates my
concern?