Hello,
Esan said:
Ok, lets say I want to delete a remaining folder from my "program files"
after incomplete uninstall, which is usually common/normal. Anyway, this
is what I need to confirm before the folder is eventually placed in the
"Recycle Bin":
Press "Delete" button = Are you sure you want to move this folder to the
"Recycle Bin"? (Ok, this dialogbox can be turned off)
Confirm with "Yes" = Destination Folder Access Denied: "You need to
confirm this operation"?
Confirm with either "Continue", "Skip" or "Cancel" = User Account Control:
"Windows needs you permission to continue"
Confirm with "Continue" or "Cancel" = Folder finally moved to "Recylcle
Bin".
Is the second step normal?
Yes... The second step is the windows shell (a potentially untrusted
program) informing you exactly what didn't work and that you need to use
your admin power in order to do it.
If you decide you want to use your admin power to do it, the shell instructs
Windows that it wants to use your admin power, which results in the UAC
component of Windows (a secure, trusted part of windows) displaying the
"Windows needs your permission to continue" screen.
The first part is the program explaining to you in detail the problem ("The
door is locked and you need a key to get in"), the second part is the
operating system itself asking you for pemissions ("Do you want to unlock
this door?").
So ... why are these seperate?
Well, when Windows talks to you directly thru a UAC prompt, it doesn't want
to display any information that it cannot confirm for itself. For example,
if any (possibly malicious) programs could display any information they
wanted on a UAC prompt, then they could very easily misrepresent themselves
and mislead you into clicking continue.
This works well most of the time, since UAC prompts are usually opened when
a user requests something specific to be done, so the user is aware of what
they are doing when it pops up and what will happen if they click continue.
However, when using the windows shell, the additional information/prompt
screen is necessary, because without it, you would not know exactly what
file or operation it is requesting permission to accomplish. You would know
that you requested to delete a folder in program files, but you wouldn't
know exactly what file/folder is needing permission, which may affect your
decision on whether to approve the action or not.
It would be nice to combine these two prompts into one, but if Microsoft did
that, then they would have to allow any (potentially malicious) third-party
program to do the same thing, which would not be desirable.