Least Privileges + Games = Microsoft Achilles Heel?.
Today I want to discuss something that is more practical when it
comes to issues with least privilege, and things Microsoft is going to
need to do about it.
If anyone reads my blog from the division that publishes Microsoft games, listen up!
I want to discuss least privilege, and games.
For least privilege to be taken seriously, and be used correctly, it
has to work everywhere, all the time. It has to be easy for the user to
use, adopt and run without affecting their computing experience. If you
make it to hard, they simply won't do it.
This is EXTREMELY paramount for kids. You know.. the little people
in your house that know more about computers than you, and can kill
more terrorists than the US Army Rangers because of the sheer amount of
online training with CounterStrike and all the other fun games out
there.
Well, if you can't make their gaming experience work with least
privilege, little Johnny will never accept the computer the way it
is… and you got a problem.
What am I talking about? Well today I stumbled across a knowledge base article
on Microsoft's site which discusses how a problem in the CD
verification routines prevent some games from functioning on XP.
Especially when fast user switching is involved.
Ok, so the immediate reaction is “this is a software issue with the
CD verification software”. Yep. But its more than that. This isn't Joe
Smith's personal Q-Bert game we are talking about here. These are
Microsoft's published games. Here is the list provided in the knowledge
base article:
- Microsoft Age of Mythology
- Microsoft Age of Mythology: The Titans
- Microsoft Age of Empires II: The Age of Kings 2.0
- Microsoft Age of Empires II Expansion: The Conquerors
- Microsoft Age of Empires II Gold Edition
- Microsoft Baseball 2001
- Microsoft Casino
- Microsoft Classic Board Games
- Microsoft Combat Flight Simulator 2: WWII Pacific Theater 1.0
- Microsoft Combat Flight Simulator 3: Battle for Europe
- Microsoft Crimson Skies
- Microsoft Dungeon Siege 1.0
- Microsoft Flight Simulator 2004 – Century of Flight
- Microsoft Flight Simulator 2002
- Microsoft Flight Simulator 2002 Professional Edition
- Microsoft Flight Simulator 2000
- Microsoft Flight Simulator 2000 Professional Edition
- Microsoft Freelancer
- Microsoft Golf 2001 Edition
- Microsoft Halo: Combat Evolved
- Microsoft Impossible Creatures
- Microsoft Links LS 2000
- Microsoft Links 2001
- Microsoft MechCommander 2.0 1.0
- Microsoft MechWarrior 4: Vengeance
- Microsoft MechWarrior 4: Mercenaries
- Microsoft Metal Gear Solid
- Microsoft Midtown Madness 1.0
- Microsoft Midtown Madness 2 2.0
- Microsoft Motocross Madness 2 2.0
- Microsoft NBA Inside Drive 2000 1.0
- Microsoft NFL Fever 2000 1.0
- Microsoft Pandora's Box 1.0
- Microsoft Rise of Nations
- Microsoft StarLancer 1.0
- Microsoft Train Simulator 1.0
- Microsoft Zoo Tycoon
- Microsoft Zoo Tycoon: Complete Collection
- Microsoft Zoo Tycoon: Dinosaur Digs Expansion Pack
- Microsoft Zoo Tycoon: Marine Mania Expansion Pack
So why do you care? Because
one of the recommended solutions is to log on as Administrator to play
the game! COME ON PEOPLE… NEVER RECOMMEND TO RUN USER MODE APPS AS
ADMINISTRATOR!
Thats like telling Linux geeks to run Quake as root. Please, please do. I need another rooted box. [Dana Epp's ramblings at the Sanctuary]