FDCC settings prohibit escalated privileges from being granted to ordinary end-users. What is considered an escalated privilege?
Any privilege that is not a default user right in XP or Vista is considered under the FDCC as an escalated privilege. The security inherent in FDCC relies partly on the fact that typical users are only assigned standard user rights. Assigning any additional rights to typical users or user groups circumvents this layer of security by allowing users to run with escalated privileges. Assigning “Administrative” or “Power User” roles are two examples of escalating the privileges of the user.
Related Questions
- FDCC settings prohibit escalated privileges from being granted to ordinary end-users. What is considered an escalated privilege?
- Can the MANAGE SCHEDULER privilege be granted to any user or does the user have to have DBA privileges?
- Where do I change my BlastGroups privacy settings and member privileges?