<<< Date Index >>>     <<< Thread Index >>>

Re: Internet Explorer 7 - Still Spyware Writers' Heaven



On 11/2/06, Roger A. Grimes wrote:
So, if you're statement is accurate that malware would need to be placed
in a directory identified by the PATH statement, we can relax because
that would require Administrator access to pull off. Admin access would
be needed to modify the PATH statement appropriately to include the
user's desktop or some other new user writable location or Admin access
would be needed to copy a file into the locations indicated by the
default PATH statement.

It would not require *administrator* access--non-administrator users
can still add things to their own PATHs, just not to the universal,
system PATH. (See Control Panel > System > Advanced > Environment
Variables.)

-Eliah