Other
News
10/24/2007
03:49 PM
Connect Directly
RSS
E-Mail
50%
50%

Those Cross-Browser Blues

CMP Information Week
InformationWeek Daily - Tuesday, Aug 28, 2007


Editor's Note

Microsoft Endorses A Fix For Something It Insists Isn't A Problem

Vista's User Account Controls prompts are something almost everybody loves to hate. Microsoft has steadfastly maintained that they're a feature that improves the product. But this week, "Microsoft has taken the very unusual step of endorsing another company's product that fixes a problem in its own operating system."

That sentence turned up in my e-mail from a PR guy touting BeyondTrust's BeyondTrust Privilege Manager 3.5. Privilege Manager enhances Microsoft policy management, and this new version is designed to let corporate IT managers run their users in a "least privilege" environment by eliminating most of the UAC prompts they might see when running Windows Vista.

Is BeyondTrust maybe stretching the truth a little when it uses that word "endorsing"? Not really. Here's the money quote in the announcement press release, from Austin Wilson, director, Windows Client Security Product Management at Microsoft:

Microsoft recognizes that to help create a secure, auditable and compliant enterprise environment all users should be Standard Users and ideally not have administrative privileges or access to administrator passwords. . . . I am pleased to see third-party security vendors such as BeyondTrust improve what is already our most secure business client OS, Windows Vista. The combination of elevating approved applications transparently with Privilege Manager and running UAC in no prompt mode with Internet Explorer in protected mode provides a best of breed solution to the least privilege problem.

Am I the only guy who translates that as, "Microsoft admits UAC is broken. Privilege Manager 3.5 fixes it"? Apparently not -- see, for example, Betanews.com's story, Microsoft Endorses Product That Turns Off Vista UAC Nags. Scott Fulton's thorough piece includes a similar quote from another Microsoft employee, Mark Russinovich, Technical Fellow and one of the most widely respected Windows experts in this quadrant of the galaxy. Russinovich isn't down on UAC per se, but he's concerned about the kind of on-the-fly escalation of privileges that UAC both requires and enables.

As for me, I'm not as far into the philosophy of Vista security as Rossinovich is, I'm just annoyed by the nagging (see Don't Shut Off Vista UAC, There's A Better Way). I'm glad there's a fix like BeyondTrust Privilege Manager that may help those of you who are corporate IT types, but I'm my own help desk, and for me a "least privilege" environment is not a solution, it's the problem Vista is forcing on me. Recently a commenter posted what looks like a good tip to one of myprevious blog entries, suggesting a free utility called TweakUAC that you can download from a Web site. TweakUAC's description includes an interesting take on what UAC does -- and doesn't do.

Do you agree that UAC is broken? Do you have any suggestions how on to fix it? Leave a comment at the InformationWeek Blog.

David DeJean
ddejean@dejean.com
www.informationweek.com

Quote of The Day

"You can fool too many of the people too much of the time." -- James Thurber

Top Stories

Those Cross-Browser Blues: How To Develop Web Sites For Both IE And FireFox
If you're trying to develop sites which will be compatible with IE, Firefox, and Opera, watch out -- there are still a lot of speed bumps out there. We examine six of them, and let you in on some solutions.

White Paper

Web Service To Measure Campaign Buzz On Blogs

The software aims at being a real-time scorecard for which presidential candidate is winning the battle of the blogs.

Acer-Gateway Deal Poses Threat To Lenovo, Other PC Makers

The Acer-Gateway agreement could kill Lenovo's talks to buy Netherlands-based Packard Bell.

Hanzlik Out As Wi-Fi Alliance Chief

No replacement has been named; Hanzlik's post has been filled on a temporary basis by Andrew Myles, manager of wireless standards at Cisco.

Yahoo Mail Adds Mobile Text, Microsoft To Its Mix

Yahoo plans to roll out co-branded versions of the new Yahoo Mail to carrier partners like AT&T and Verizon.

Unified Communications Can Cause Network Traffic Jams

Nearly four of 10 companies surveyed have suffered application performance problems due to the convergence of communications apps, the survey says.

Q & A: NetSuite's CEO Discusses IPO Plans, Larry Ellison, iPhone Apps, And SaaS

Zach Nelson talks about doing an IPO in a shaky stock market, Larry Ellison's hands-off approach, and plans to team with Apple to get business users on the iPhone.

IBM In $17 Million Outsourcing Deal With Danish Government

The pact extends an existing contract that IBM inked with the Danish government in 2003 to support its Agricultural Advisory Service.

Federal Security Officers Say Telecommuting Is Safe, But Want Better Mobile Security

A study reports that 83% of federal CISOs have strong interest in mobile endpoint certification for compliance with the Federal Information Security Management Act.

Microsoft Piracy Check Snafu Mislabels Authentic Windows Copies

Without a fix, users would have had to turn off anything that would ping Microsoft's WGA servers for validation, including updates and patches, until the issue got resolved.

IBM Server Worth $1.4 Million Falls Off Forklift

Federal contractor T.R. Systems says its workers were moving the server from a freight truck into its warehouse in Alexandria, Va., when the mishap occurred.

Microsoft Adds Ubisoft To 'Games For Windows' Campaign

Ubisoft's products will carry the Games for Windows seal, an indication to consumers that a game will run properly on Windows Vista and other Microsoft operating systems.

Acer To Acquire Gateway For $710 Million

The combo will become the world's third-largest PC maker, and will double Acer's presence in the United States.

All Our Latest News

On The Go

See InformationWeek's daily breaking news on your mobile device, visit wap.informationweek.com and sign up for daily SMS notifications.

In This Issue


The latest research, polls, and tools

Virtualization At The Desktop?
Examine how more than 250 companies plan to adopt server virtualization technology in this recent InformationWeek Research report, Server Virtualization.

The BI Explosion
Examine the business intelligence strategies of 500 companies, including deployment drivers and challenges, spending plans, and vendor selection, in this recent InformationWeek Research report.

Latest InformationWeek Blog Posts

What's The Rule For Embedding Open Source Software?
I just talked with two CIOs who have different takes on embedding open source software in their companies? products. One sees it as standard practice, the other approaches it like a snake in a bag.

Ubuntu Adds Ho-Hum Features In Latest 'Gutsy Gibbon' Alpha
Ubuntu, the Linux distro which I've personally found to be somewhat less than it's cracked up to be -- your mileage may vary -- is getting an update.

Don't Fear The Acer-Gateway (And Other Globalization) Grim Reapers
Taiwan's Acer plans to acquire U.S. PC maker Gateway, a deal some may view as further evidence that the U.S. tech industry is bolting offshore. Despite the upheaval in the domestic tech industry and profession, however, the United States is holding its own as a high-tech center.

Alltel Lets Managers Be Puppet Masters
For the SMB on a budget, the new FieldMasterPro service from Alltel lets managers simplify scheduling and dispatch on Windows Mobile smartphones. It's perfect for control freaks!

Hate Your Cell Phone? Go Ahead And Chuck It
On Saturday, the tiny Finnish village of Savonlinna hosted its annual Mobile Phone Throwing World Championships. The winner, one of 32 male contestants, flung a mobile phone 294 feet to take the gold prize.

Aggregate Knowledge Aims To Be A Mind Reader On The Web
Having jumped into the market for Web "discovery" technology last December, Aggregate Knowledge is getting closer to general availability of three new services. Founded by the same guys behind social networking site Tribe.net -- the assets of which were acquired by Cisco in March -- Aggregate Knowledge promises to help companies get the most appropriate products and content in front of Web site visitors.

Microsoft Endorses A Fix For Something It Insists Isn't A Problem
Vista's User Account Controls prompts are something almost everybody loves to hate. Microsoft has steadfastly maintained that they're a feature that improves the product. But this week, "Microsoft has taken the very unusual step of endorsing another company's product that fixes a problem in its own operating system." The "Through the Looking Glass" saga of Vista continues.

Is The Google Phone Ready To Launch In India In Two Weeks?
A few weeks ago I blogged that Google was working on a cell phone but, in typical fashion, refused to comment. Now Rediff claims the Google Phone is set to launch in India in as soon as two weeks.

What Orkut Really Needs
Google's software engineers report that they've been busy giving Orkut, the company's social networking service, a face-lift. But perhaps what the site really needs is a new name for the U.S market.

It's true that short, memorable domain names are hard to come by, but if ever there was a Google product in need of re-branding, it's Orkut.

Advice On Building A Better Password
We're always hearing that we need stronger passwords, but many people don't know how to craft a better, stronger password or they simply don't take the time to come up with some crazy complex string that they have no chance of remembering.

I was just talking with someone who gave me some great advice.

White Paper

Path to Profit: Transform your Underwriting Processes
Join Insurance & Technology Editorial Director Kathy Burger, Cindy De Armond, Partner, Insurance Industry Practice, IBM Global Business Services, and Mark B. Gorman, Strategic Research Advisor, Insurance, TowerGroup, to gain insights into how integrating analytics and operations can transform the underwriting process.

CGS Email Management & Archiving Solution Proves Successful for NYC Department of Health
Users at The New York Department of Health maintained large email mailboxes and required direct 24 x 7 access. CGS’ Unlimited Mailbox allowed the archiving of all GroupWise emails, prior to the migration to Exchange. The Unlimited Mailbox solution for Exchange was then implemented to ensure email management during the Exchange platform transition.

How to Succeed with Offshore Software Testing When Almost Everyone Else Fails
Offshore software testing projects fail at a greater rate than most other types of offshore projects. Most of the research into this problem points to very generic reasons. This paper identifies why offshore software testing projects fail, quantifies the impact of a failure and gives a list of actions that can prevent failure from happening.

Job Listings

Featured Jobs:

BreakthroughIT seeking Project Manager in Groton, CT

Monsanto seeing IT Transportation and Optimization Analyst in St. Louis, MO

Princeton Financial Systems seeking Business Analyst 4 in Princeton, NJ

CSAA seeking IT Analyst IV in Glendale, AZ

DisplaySearch seeking IT Project Manager in Austin, TX

For more great jobs, career-related news, features and services, please visit our "Career Center.

Get More Out Of InformationWeek

Try InformationWeek's RSS Feed

Discover all InformationWeek's sites and newsletters

Recommend This Newsletter To A Friend
Do you have friends or colleagues who might enjoy this newsletter? Please forward it to them and point out the subscription page.

Manage Your Newsletter Subscription

More than 20,000 IT terms, more than 20,000 definitions:
All at your fingertips, all in TechEncyclopedia

Saw a TechWeb feature you want to see again?

You are subscribed as #emailaddr#. To unsubscribe from, subscribe to, or change your E-mail address for this newsletter, please visit the InformationWeek Subscription Center.

Update your subscriber profile.

Note: To change your E-mail address, please subscribe your new address and unsubscribe your old one.

Keep Getting This Newsletter
Don't let future editions of InformationWeek Daily go missing. Take a moment to add the newsletter's address to your anti-spam white list: InfoWeek@update.informationweek.com

If you're not sure how to do that, ask your administrator or ISP. Or check your anti-spam utility's documentation. Thanks. We take your privacy very seriously. Please review our Privacy Policy.

InformationWeek Daily Newsletter
A free service of InformationWeek and the TechWeb Network.
Copyright (c) 2007 CMP Media LLC
600 Community Drive
Manhasset, N.Y. 11030

spacer
© 2007  |  CMP Technology LLC  |  Privacy Statement  |  Terms Of Service
spacer

Comment  | 
Print  | 
More Insights
IT's Reputation: What the Data Says
IT's Reputation: What the Data Says
InformationWeek's IT Perception Survey seeks to quantify how IT thinks it's doing versus how the business really views IT's performance in delivering services - and, more important, powering innovation. Our results suggest IT leaders should worry less about whether they're getting enough resources and more about the relationships they have with business unit peers.
Register for InformationWeek Newsletters
White Papers
Current Issue
InformationWeek Government Tech Digest Oct. 27, 2014
To meet obligations -- and avoid accusations of cover-up and incompetence -- federal agencies must get serious about digitizing records.
Video
Slideshows
Twitter Feed
InformationWeek Radio
Archived InformationWeek Radio
A roundup of the top stories and community news at InformationWeek.com.
Sponsored Live Streaming Video
Everything You've Been Told About Mobility Is Wrong
Attend this video symposium with Sean Wisdom, Global Director of Mobility Solutions, and learn about how you can harness powerful new products to mobilize your business potential.