Slashdot Mirror

← Back to Stories (view on slashdot.org)

Windows Users Ignoring LUA Security

Posted by timothy on from the until-it's-easy-it's-hard dept.

blankify writes "eWeek is running a story about the least-privilege, no-admin option available in Windows (2000/XP/2003) that has been mostly ignored by end users. From the article: '"To the average user, the notion of non-admin is abstract and obscure," said Michael Howard, a senior security program manager in Microsoft Corp.'s security business and technology unit. "Most users just don't know they can set up least-privilege accounts in Windows today, and that's just a sad reality."'"

2 of 522 comments (clear)

  1. It could be the default option during install by Colin+Smith · · Score: 5, Interesting

    How about, embracing and extending good practice...

    --
    Deleted
  2. Windows' fault by Dacmot · · Score: 5, Interesting

    Could it be "the sad reality" because Windows up until XP (ignoring 2000 and NT) there was no user-priviledges differences?

    Maybe MS should start educating the population and force them to create passworded least-priviledged accounts and choose a password for the administrator account when installing or booting an OEM for the first time. Maybe also the administrator should be blocked out of surfing the web and playing games so that people just don't use the admin account for everything.