Jeff7181
Lifer
- Aug 21, 2002
- 18,368
- 11
- 81
Originally posted by: DasFox
Originally posted by: Andrmgic
I'm saying it is more secure to have the built-in admin account disabled, because in earlier versions of windows, you could always tell which account was the administrator account by the hexidecimal value of its entry in the SAM database. In my mind, it makes sense why they did that. I agree that would be better for the account created to be a standard user and have a password to elevate the account to the equivalent of a superuser in a OS X or Linux environment. I know that using an administrator-level account is far less secure, but I'm personally willing to give up a degree of security for the convenience of not having to type in a password whenever I want to do something that requires more rights than my account already has.
Well I guess remembering how the user accounts can be messed up it's good to create an admin account so that if you can't access it then you have the backup account.
Using the standard user account shouldn't just be about typing in the password all the time to do something, it should about having greater security which should be everyone's concern.
Being under a user account should also make it harder against hacks and exploits trying to gain access to the system, where UAC wouldn't being suspecting anything.
You honestly don't get it, do you? UAC has a couple purposes...
In a business environment it simplifies locking down a computer so users can't install software if they're not a local admin.
In a home environment it's a warning, "Hey fucktard, that icon you double clicked is about to make system wide changes... just so ya know."