I am getting a new laptop soon and wasn't sure what the best course of action was on this topic. On my previous computers, I have always had a standard user which I used most of the time and an administrator, which I used only when there was an application which required to be "Run as Administrator" (I almost never logged into the admin account). With UAC and whatnot, however, is it safe for me to use my admin account as my primary account with which I do most of my day to day work?
Answer
Running as Administrator (the account named Administrator) is a bad idea, but running as a regular user who is in the Administrators group is quite a bit safer than it used to be on Windows XP, as you said because of UAC.
The main thing UAC does is that it changes the Session ID of processes to run in a less-privileged session, unless you successfully launch the program as an administrator and pass the UAC prompt (which comes from a secure desktop so it is very, very hard to bypass or force acceptance of the real UAC prompt).
With that said, it is always safer to run with the least amount of privileges you need. A Standard User account doesn't even have permission to use UAC to elevate to an administrator unless they type in valid credentials of an actual administrator account. This is one level removed from running as a member of the Administrators group, where you can obtain admin privileges just by clicking Yes on a prompt on the UAC secure desktop.
Lastly, consider that what most people really consider valuable is their personal data in their home folder, e.g. C:\Users\You\Documents, etc. Even without any UAC rights whatsoever, any executable code (or compromised processes such as a web browser) would be able to access all or a subset of your user profile data, regardless of the permissions you assign. So you should always be wary about executable code you download on the internet, regardless of how much you de-privilege you user account. Otherwise, attackers can make great use of things like your Firefox or Chrome user profile data (the sites you visit, your bookmarks, any saved passwords, etc), word documents; they might even want to steal your music or just be a nuisance and flat-out delete it all.
Running as an admin is safer than it used to be on Windows XP, but nothing Microsoft has done has made running untrusted code any safer. You have to be vigilant to keep yourself from being exposed to malicious or untrusted code. The main thing to avoid is don't visit websites or click on links in emails that you don't trust. Even if you never explicitly download any executable code, browser exploits remain one of the primary attack vectors into a client computer, despite a decade of intensive research and development on browser security models.
No comments:
Post a Comment