Microsoft's Goal, Security Through Obscurity?

dave cutler writes "Salon has an amusing little wire article claiming that Microsoft argues that were they to provide any greater technical detail about protocols and APIs, it would make computers running their operating system far more vulnerable to cracking attacks." Update: 05/09 13:59 GMT by M : The benefit to customers of Microsoft integrating internet services into the operating system, as well as Microsoft's commitment to security, are exemplified in this article which notes yet another remote root hole in Microsoft's code.

Re:yet another ROOT hole in MS Code?

[ink]

NT based windows, administrator has this access.

Actually, NT's root user is called SYSTEM. The "Administrator" user is a crippled account that cannot do many things. This is a requirement for some security settings (mostly for auditing). It's also the reason why you can't kill the stupid printing spool service as the Administrator (you need the kill.exe or rkill.exe programs, which are SUID-SYSTEM more or less). You'll also notice that members of the "Backup" group have elevated privileges above the Administrator users for exactly the same reason.