Kevin Sullivan

Kevin
Sullivan

Eric is the CTO of Desktop Standard (formerly Autoprof), maker of the PolicyMaker line of applications.

Articles
LUA in Longhorn (part 2) 6

Application Impact Management is a fancy name for the virtual sandbox that Microsoft is creating for applications that attempt to use resources that the limited user account (LUA) doesn't have permissions to use.

Hacker SDKs
With the proliferation of free hacker solutions on the internet managing with least privilege is essential.
9th layer of the OSI model 2
Politics, politics, politics, and other non-technical road blocks.
LUA in Longhorn (part 1)

While some of the advertised features of Longhorn have fallen off of the table, enhanced LUA capability remains. The specifics of this capability are beginning to appear. One change is the deprecation of the Power Users group.

This group effectively gives the user administrator rights, and has therefore been deprecated in order to simplify the security model. This is a good thing, as Power Users is nothing more than a false sense of security. There are now only least privilege (LUA) and administrator accounts. These apply to both services and interactive accounts.

Managing Least Privilege - 28 Jun 2005
Kevin Sullivan blogs about how to run with least privileges.
Introduction to managing with Least Privilege 16

Way too many administrators. This is clear. This is made clear through the interpretation of some of the compliance regulations such as SarBox and HIPAA and others. This is clear from our internal security audits. It seems that every time someone asks how many domain administrators there are in a given enterprise the answer is much smaller than the reality. When we talk about local administrator rights, the numbers are staggering.

Hyper-V Master Class

Hyper-V Master Class with John Savill
Live Online Training: Thursdays, April 27th to May 18th
Register by April 20th and Save 20%!

John Savill provides 12 hours of detailed instruction covering all the key aspects of a Hyper-V based virtualization environment covering both capabilities in Windows Server 2012 R2 and Windows Server 2016. John will walk attendees through resource allocation and architecture, storage, networking (including Network Virtualization), clustering, migration technologies, replication, private cloud, session virtualization, migration from other technologies, integration with Microsoft Azure, and more. At the end of this class, attendees will be able to architect and manage an enterprise-level Hyper-V environment.

 

Join the Conversation

Sponsored Introduction Continue on to (or wait seconds) ×