1. Computer problem? Tech Support Guy is completely free -- paid for by advertisers and donations. Click here to join today! If you're new to Tech Support Guy, we highly recommend that you visit our Guide for New Members.

90 percent of Windows 7 flaws fixed by removing admin rights

Discussion in 'General Security' started by lotuseclat79, Mar 31, 2010.

Thread Status:
Not open for further replies.
  1. lotuseclat79

    lotuseclat79 Thread Starter

    Joined:
    Sep 12, 2003
    Messages:
    20,583
    90 percent of Windows 7 flaws fixed by removing admin rights.

    After tabulating all the vulnerabilities published in Microsoft's 2009 Security Bulletins, it turns out 90 percent of the vulnerabilities can be mitigated by configuring users to operate without administrator rights, according to a report by BeyondTrust.

    -- Tom
     
  2. lunarlander

    lunarlander

    Joined:
    Sep 21, 2007
    Messages:
    11,882
    I wonder if that means that the consentUI is not working as intended? If I understand correctly, the consentUI only passes over the admin token after that 'continue' prompt. So, if this report says that vulnerabilities are mitigated by not using an admin account, doesn't that imply that somehow when exploiting the vulnerabilities, the admin rights are used.
     
  3. Gizzy

    Gizzy

    Joined:
    Aug 2, 2005
    Messages:
    3,832
    (y)

    Too bad more people don't use non-administrator user accounts, There would be a lot less infected windows users, and any infections picked up while in a non-administrator account would be easy to remove. :)

    For anyone that just reads the title and not the article, Many vulnerabilities not working applies to to all versions of windows with non-administrator accounts, Not just windows 7.

    I'm guessing they mean with UAC off, So pure admin permissions...Though I'm not positive.

    But many people turn off UAC anyway,
    And I would still recommend using a standard user account instead since UAC is more of a make believe standard user account and it's not a security boundary like using a non-administrator account so it's not as strong and can be bypassed...
     
As Seen On
As Seen On...

Welcome to Tech Support Guy!

Are you looking for the solution to your computer problem? Join our site today to ask your question. This site is completely free -- paid for by advertisers and donations.

If you're not already familiar with forums, watch our Welcome Guide to get started.

Join over 733,556 other people just like you!

Loading...
Thread Status:
Not open for further replies.

Short URL to this thread: https://techguy.org/913805

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice