patrickmcginnis59 10839 - Tuesday, September 26, 2017 6:39 AM
Windows doesn't have good separation for auditing and security from administration. Certainly there are issues with application developers and their code, but the hierarchial nature of Windows and AD includes accounts that are above everything else. Same with sa/sysadmin in SQL, though they've done a good job with RLS and some encryption to take the admin out of the loop. However, there are still plenty of ways for an admin (or hacked admin account) to cover their tracks and bypass security.
Even the sudo access on Linux systems still allows God account access, rather than more fine grained access, perhaps requiring 2-3 accounts to complete all actions.
We havne't done a good job of protecting ourselves from the knowledgeable people that control systems. Two phased access to systems, which many military systems have for extremely sensitive areas (nuclear, large scale attacks, etc.) are something we should have adopted at some point.