A reason not to use browsers for e-mail - e-mail wiretapping (fwd)
Ian BROWN
I.Brown at cs.ucl.ac.uk
Fri, 09 Feb 2001 15:29:24 +0000
>The only long-term way to make things safe is to run browsers, email
>readers & so on in their own virtual machine, under a userid that has no
>access to damage any other virtual machine.
I just don't understand why Outlook and friends don't do this on WinNT/2000.
My NT hacking friends say it is trivial to spawn a process with fewer rights
than its parent. In Win2k you can even run programs and control panel-lets as
a different user (hold down shift, right-click on the program and select "Run
as...")
Similarly, they should use cut-down versions of programs like Word that DON'T
have the ability to run macros to view attachments!
Ian :0)