Is it really necessary run as limited user?

Is it really necessary run as limited user? What are the dangers if I use an Administrator account?

 

The articles/blog by Aaron Margosis are worth a read:
http://blogs.msdn.com/aaron_margosis/archive/category/10085.aspx

Regards,

CrazyM

 

My opinion? No. I don't want to be limited by software, especially not by something as global as OS. At least this is the case for personal pro usage.
Corporate PCs are another story...

 

One major benefit of running as a limited user should be that you can't get infected by viruses or other malware because they shouldn't be able to install themselves or write to the registry, /windows or /program files directories without admin permission, but of course this simply isn't the case.

You can't install software, but viruses and other malware still seem able to install themselves at will, even though you're running a limited account that simply shouldn't have the appropriate priviledges. When running as a restricted user, nothing but system processes should be able to write to protected system files or directories without entering the admin password, period.

Until Microsoft gets it's act together and patches the myriad of security holes that permit escalation of priviledges and allow such farsical behaviour, it's probably just not worth it. Microsoft should take a long hard look at *nix systems to see how priviledges should work

 

Yeah i noticed the same on some machines. Some malware installed like nothing was restircting it and other just waited calmly for someone to login with admin account. And then all crap executed at once. Thats why i don't even bother with limited accounts and security policies. Waste of time and nerves...

 

It would be nice if Marcos and Happy Bytes comment in this thread...

 

Experienced PC user...No.

Novice PC user...Probably not from some baddies, but it should prevent the user from creating self-inflicting software issues.

 

Yes, if your security is important for you.

 

Necessary? No. Is it smart for some users? Yes. As noted above, many of the bad guys take advantage of local admin priviledges to install themselves and have better access to the operating system. Wether it's necessary or not is not a universal answer for everyone, as across the various computer users out there..some are careful, some are not, some have safe surfing habits, others don't, some use good antivirus and windows updates and other anti-malware, some do not, etc etc etc etc etc.

 

Happy Byte's interview: (https://www.wilderssecurity.com/showthread.php?t=102870)

If possible, do not run your PC all the time in Administrator/Root mode. Create AND USE limited User Accounts - this prevents lots of malware from running!