Of course not.  If security is one thing it is a moving target.
OK;
So you all seem to be missing my point; Jimmy's coming close tho;
Lotsa ppl wont mess with uac;cuz they wont or dont know how; but for
ppl that do; in its current form;its a pain in the ___!!
And instead of taking the time to run it as intended; theyll just shut
it off.
I know one thing;
Makin that STUPID A** admin group;part admin;mostly not; is WAY
dumb!!
Either give full admin;or not; don't tell me i'm admin;thn not allow
certain functions; and tell me I have insufficient privelege.
Many ppl will put up with it;for 2 reasons;
1) they dont know how to change stuff
or
2) like it set up that way
Oh,
And Colin??  More secure???? hmmm for now maybe;in time;itll be
bypassed just as easy as any msft o.s.
Or to put it in perspective; nothing's 100% secure.
Jeff
Let them disable it.  Then they are no worse off than they were under
XP but the rest of us are more secure.  If UAC were backportable to XP
I would learn to use it there.
Oh;
Mark;
To the contrary; it won't force users to do anything;except disable
it
Jeff
message <snip>
[voice of MS] we can't figure out how to keep it out of your
system, so we will
implement this, so its your fault if it runs once it's there.
I'm going to have to say this is an invalid argument, Don, and
here's why.
Microsoft Windows is an operating system. Just like linux and OSX.
Its purpose is an abstraction layer to the hardware that allows
third-party programs to easily take advantage of the hardware
available, as well as to allow the user to change hardware without
breaking apps or requiring a rewrite of apps (ideally in as many
cases as possible).
Now, it is easy to say that Windows (or any OS for that matter)
should just be able to block all malware and only run software that
is "good".
But if you really think about this, it doesn't make any sense.
What's the difference between "bad" software and "good" software -
in terms that an operating system could understand and
differentiate between?
In fact, there's no difference to the operating system - there is
just software. The user is the one who determines what is good and
bad.
Now sure, you can have programs like antispyware or norton do
statistical analysis of all spyware and determine some indicator
factors that say "if program x does this, this, and this, then
there is an 80% probability that it is spyware" - but that's all
you can do.
Humans determine if things are good and bad, not computers.
Every OS has to deal with this - from the hackers making linux
rootkits and hiding them on some poor sysadmin's machine so when is
does a ps his system is owned, to the few nasties floating around
that attack OSX.
The problem with Windows is twofold - its market share, and its
default security model.
Market share - Why on earth would you create a virus or a spyware
that goes after a small percentage of the computers in the world?
Virus people seem to like fame, and spyware people want the money.
Windows has a big target on its back that won't go away any time
soon.
Security Model - Now here's the part where Microsoft is at fault.
Ironically, the operating systems with the SMALLEST market share
are the ones who have the BEST security model.
This is why malware doesn't get on these systems as easily -
because they have a good security model... it's called Least
Privileged Access, where programs run with only the minimum amount
of permission necessary.
Sound familiar?
At its core, UAC is forcing windows users to use this same security
model: They run as a "standard user" until they need to do
something that requires "root", and then "sudo" just that program -
for only the amount of time it needs to do its thing - to have full
access to the system.
Hello Windows Vista - welcome to the club.
- JB
Vista Support FAQ
http://www.jimmah.com/vista/
Great comparison, Jimmy.