Quote:
Originally Posted by tompe
My point was that if you try to get better security by introducing a system that people then do not respect and work around then you have failed in getting better security. And the fault is yours.
Letting users approve running programs is also an extremely bad system. All people I know that are not experts in Vista just answer yes to all questions if a program should be allowed to run.
|
Exactly what HarryT was trying to point out. The current problem is a number of regular Windows apps currently require elevated permissions just to run because programmers were taking the easy way out by writing to system/application directories. Once that bad habit is beaten out of them, though, users won't need to run apps in administrator mode and UAC would actually become a practical approach to security. Similar systems already exist in both Linux (sudo) and MacOS. Users need elevated permissions in order to make critical system changes.
Microsoft needed to introduce this system to improve security. Now, it's just up to the programmers to catch up.