[转载]Applying the Principle of Least Privilege to User Accounts on WinXP
原始连接:<A href="http://www.microsoft.com/technet/prodtechnol/winxppro/maintain/luawinxp.mspx">[url]http://www.microsoft.com/technet/prodtechnol/winxppro/maintain/luawinxp.mspx[/url]</A><BR><BR><P>Please direct questions and comments about this guide to <A href="mailto:secwish@microsoft.com?subject=Applying%20the%20Principle%20of%20Least%20Privilege%20to%20User%20Accounts%20on%20Windows%20XP" target=_blank>secwish@microsoft.com</A>.</P>
<P>To view comments or discussion of this guide, see <A href="http://blogs.technet.com/secguide" target=_blank>[url]http://blogs.technet.com/secguide[/url]</A>. </P>
<H5 style="PADDING-TOP: 2px">On This Page</H5>
<TABLE style="MARGIN-TOP: 7px; MARGIN-BOTTOM: 12px" cellSpacing=0 cellPadding=0 border=0>
<TBODY>
<TR vAlign=top>
<TD><A href="http://www.microsoft.com/technet/prodtechnol/winxppro/maintain/luawinxp.mspx#ELAA"><IMG height=9 alt=Introduction hspace=4 src="http://www.microsoft.com/library/gallery/templates/MNP2.Common/images/arrow_px_down.gif" width=7 vspace=2 border=0></A></TD>
<TD class=onThisPage><A href="http://www.microsoft.com/technet/prodtechnol/winxppro/maintain/luawinxp.mspx#ELAA">Introduction</A></TD></TR>
<TR vAlign=top>
<TD><A href="http://www.microsoft.com/technet/prodtechnol/winxppro/maintain/luawinxp.mspx#EKAA"><IMG height=9 alt="Risks Associated with Administrative Privileges" hspace=4 src="http://www.microsoft.com/library/gallery/templates/MNP2.Common/images/arrow_px_down.gif" width=7 vspace=2 border=0></A></TD>
<TD class=onThisPage><A href="http://www.microsoft.com/technet/prodtechnol/winxppro/maintain/luawinxp.mspx#EKAA">Risks Associated with Administrative Privileges</A></TD></TR>
<TR vAlign=top>
<TD><A href="http://www.microsoft.com/technet/prodtechnol/winxppro/maintain/luawinxp.mspx#EJAA"><IMG height=9 alt="Definition of the Principle of Least Privilege" hspace=4 src="http://www.microsoft.com/library/gallery/templates/MNP2.Common/images/arrow_px_down.gif" width=7 vspace=2 border=0></A></TD>
<TD class=onThisPage><A href="http://www.microsoft.com/technet/prodtechnol/winxppro/maintain/luawinxp.mspx#EJAA">Definition of the Principle of Least Privilege</A></TD></TR>
<TR vAlign=top>
<TD><A href="http://www.microsoft.com/technet/prodtechnol/winxppro/maintain/luawinxp.mspx#EIAA"><IMG height=9 alt="Definition of the LUA Approach" hspace=4 src="http://www.microsoft.com/library/gallery/templates/MNP2.Common/images/arrow_px_down.gif" width=7 vspace=2 border=0></A></TD>
<TD class=onThisPage><A href="http://www.microsoft.com/technet/prodtechnol/winxppro/maintain/luawinxp.mspx#EIAA">Definition of the LUA Approach</A></TD></TR>
<TR vAlign=top>
<TD><A href="http://www.microsoft.com/technet/prodtechnol/winxppro/maintain/luawinxp.mspx#EHAA"><IMG height=9 alt="Benefits of the LUA Approach" hspace=4 src="http://www.microsoft.com/library/gallery/templates/MNP2.Common/images/arrow_px_down.gif" width=7 vspace=2 border=0></A></TD>
<TD class=onThisPage><A href="http://www.microsoft.com/technet/prodtechnol/winxppro/maintain/luawinxp.mspx#EHAA">Benefits of the LUA Approach</A></TD></TR>
<TR vAlign=top>
<TD><A href="http://www.microsoft.com/technet/prodtechnol/winxppro/maintain/luawinxp.mspx#EGAA"><IMG height=9 alt="Risk, Security, Usability, and Cost Tradeoffs" hspace=4 src="http://www.microsoft.com/library/gallery/templates/MNP2.Common/images/arrow_px_down.gif" width=7 vspace=2 border=0></A></TD>
<TD class=onThisPage><A href="http://www.microsoft.com/technet/prodtechnol/winxppro/maintain/luawinxp.mspx#EGAA">Risk, Security, Usability, and Cost Tradeoffs</A></TD></TR>
<TR vAlign=top>
<TD><A href="http://www.microsoft.com/technet/prodtechnol/winxppro/maintain/luawinxp.mspx#EFAA"><IMG height=9 alt="Implementing the LUA Approach" hspace=4 src="http://www.microsoft.com/library/gallery/templates/MNP2.Common/images/arrow_px_down.gif" width=7 vspace=2 border=0></A></TD>
<TD class=onThisPage><A href="http://www.microsoft.com/technet/prodtechnol/winxppro/maintain/luawinxp.mspx#EFAA">Implementing the LUA Approach</A></TD></TR>
<TR vAlign=top>
<TD><A href="http://www.microsoft.com/technet/prodtechnol/winxppro/maintain/luawinxp.mspx#EEAA"><IMG height=9 alt="Future Developments" hspace=4 src="http://www.microsoft.com/library/gallery/templates/MNP2.Common/images/arrow_px_down.gif" width=7 vspace=2 border=0></A></TD>
<TD class=onThisPage><A href="http://www.microsoft.com/technet/prodtechnol/winxppro/maintain/luawinxp.mspx#EEAA">Future Developments</A></TD></TR>
<TR vAlign=top>
<TD><A href="http://www.microsoft.com/technet/prodtechnol/winxppro/maintain/luawinxp.mspx#EDAA"><IMG height=9 alt=Summary hspace=4 src="http://www.microsoft.com/library/gallery/templates/MNP2.Common/images/arrow_px_down.gif" width=7 vspace=2 border=0></A></TD>
<TD class=onThisPage><A href="http://www.microsoft.com/technet/prodtechnol/winxppro/maintain/luawinxp.mspx#EDAA">Summary</A></TD></TR>
<TR vAlign=top>
<TD><A href="http://www.microsoft.com/technet/prodtechnol/winxppro/maintain/luawinxp.mspx#ECAA"><IMG height=9 alt=Resources hspace=4 src="http://www.microsoft.com/library/gallery/templates/MNP2.Common/images/arrow_px_down.gif" width=7 vspace=2 border=0></A></TD>
<TD class=onThisPage><A href="http://www.microsoft.com/technet/prodtechnol/winxppro/maintain/luawinxp.mspx#ECAA">Resources</A></TD></TR>
<TR vAlign=top>
<TD><A href="http://www.microsoft.com/technet/prodtechnol/winxppro/maintain/luawinxp.mspx#EBAA"><IMG height=9 alt=Acknowledgments hspace=4 src="http://www.microsoft.com/library/gallery/templates/MNP2.Common/images/arrow_px_down.gif" width=7 vspace=2 border=0></A></TD>
<TD class=onThisPage><A href="http://www.microsoft.com/technet/prodtechnol/winxppro/maintain/luawinxp.mspx#EBAA">Acknowledgments</A></TD></TR></TBODY></TABLE><A name=ELAA></A>
<H2>Introduction</H2>
<P>Recent advances in networking technology such as permanent connectivity to the Internet have brought enormous opportunities to organizations of all sizes. Unfortunately, a connection between a computer and any network, especially the Internet, increases the level of risk from malicious software and external attackers, and as old risks are managed, new ones are discovered or created. </P>
<P>Sophos, an Internet security company, found that the number of malicious programs detected rose from 45,879 in November of 1999 to 114,082 in November of 2005, an increase of at least 10 percent every year for the last six years. In November of 2005, Sophos discovered more than 1,900 new examples of malicious software, such as viruses, Trojan horses, and spyware programs. Other antivirus vendors report similar increases in the numbers and types of malicious software.</P>
<P>A significant factor that increases the risks from malicious software is the tendency to give users administrative rights on their client computers. When a user or administrator logs on with administrative rights, any programs that they run, such as browsers, e-mail clients, and instant messaging programs, also have administrative rights. If these programs activate malicious software, that malicious software can install itself, manipulate services such as antivirus programs, and even hide from the operating system. Users can run malicious software unintentionally and unknowingly, for example, by visiting a compromised Web site or by clicking a link in an e-mail message.</P>
<P>Malicious software poses numerous threats to organizations, from intercepting a user's logon credentials with a keystroke logger to achieving complete control over a computer or an entire network by using a rootkit. Malicious software can cause Web sites to become inaccessible, destroy or corrupt data, and reformat hard disks. Effects can include additional costs such as to disinfect computers, restore files, re-enter or re-create lost data. Virus attacks can also cause project teams to miss deadlines, leading to breach of contract or loss of customer confidence. Organizations that are subject to regulatory compliance can be prosecuted and fined.</P>
<P><B>Note</B>For more information about rootkits, see the rootkit definition on <A href="http://en.wikipedia.org/wiki/Rootkit" target=_blank>Wikipedia</A> at [url]http://en.wikipedia.org/wiki/Rootkit.[/url]</P>
<H3>The Least-Privileged User Account Approach</H3>
<P>A defense-in-depth strategy, with overlapping layers of security, is the best way to counter these threats, and the least-privileged user account (LUA) approach is an important part of that defensive strategy. The LUA approach ensures that users follow the principle of least privilege and always log on with limited user accounts. This strategy also aims to limit the use of administrative credentials to administrators, and then only for administrative tasks. </P>
<P>The LUA approach can significantly mitigate the risks from malicious software and accidental incorrect configuration. However, because the LUA approach requires organizations to plan, test, and support limited access configurations, this approach can generate significant costs and challenges. These costs can include redevelopment of custom programs, changes to operational procedures, and deployment of additional tools.</P>
<P><B>Important</B>It is difficult to find utilities and guidance on using limited user accounts, so this white paper refers to third-party tools and guidance from Web logs and other unofficial sources. Microsoft makes no warranty about the suitability of the tools or guidance for your environment. You should test any of these instructions or programs before you deploy them. As with all security issues, there is no perfect answer, and this software and guidance is no exception.</P>
<H3>Audience</H3>
<P>This white paper targets two audiences:</P>
<TABLE cellSpacing=0 cellPadding=0 border=0>
<TBODY>
<TR>
<TD class=listBullet vAlign=top>•</TD>
<TD class=listItem>
<P>Business decision makers who need to understand the concepts of the LUA approach and the organizational issues that the LUA approach generates.</P></TD></TR>
<TR>
<TD class=listBullet vAlign=top>•</TD>
<TD class=listItem>
<P>IT professionals who need to understand the options for implementing the LUA approach within their organization.</P></TD></TR></TBODY></TABLE>
<H3>Topics</H3>
<P>This document discusses the issues and concerns that organizations may face when they apply the LUA approach to computers that run Microsoft
页:
[1]