On 19/07/2014 19:19, Andrew McGlashan wrote:
On 19/07/2014 10:18 AM, Jason White wrote:
Apparently though, Microsoft now have a new shell - windows PowerShell - which is said to compete with Linux and UNIX command line interfaces.
Yes, but it is pushed on to users and powershell scripts can be very dangerous ... given exception to run without checking by AV and other protections!!!! To me, powershell is another great big security problem just wanting to be exploited, which is a real pity considering MS has otherwise taken pretty giant strides in the right direction on safety and security matters overall in recent times (there are other exceptions of course).
I've read some pretty dumb FUD about Windows in the past, but I think that takes the cake. Do you actually have any logical and well-thought-out reasons for why PowerShell is a security issue? If so, it may be helpful to state them, as such a claim requires quite a bit of substantiation. Specifically, I'm wondering whether you have any reasons why PowerShell is worse than any other arbitrary executable or the cmd.exe interpreter that you may happen to execute when you already have administrative privileges.