Comment Re:Registry (Score 1) 303
Really? Switching to text files would magically fix this??
This flaw is not related to how the registry is loaded and/or interpreted, actually it's not the fault of the registry at all - it's a kernel exploit. The mitigation is to tweak *permissions* on a couple of reg keys that should have been tightened up in the first place. It's akin to allowing SUID root on the sudoers file and a kernel vulnerability that allows $BAD_GUY to use that fact - it's not the file itself.
Whether the info is in a database of binary values or a database composed of text files laying around a hard disk is immaterial - the permissions to change said config info would have made this a non issue.
Yes, Microsoft have been idiots, but they are trying to clean up thier act. If you're going to dis them, dis them for missing the reg key permissions, not the registry itself - al much more valid argument.