Do you use an Admin account or Standard User Account?

Do you use and Admin Account or a Standard User Account

  • Admin Account

    Votes: 88 73.3%

  • Standard User Account (SUA)

    Votes: 33 27.5%
  • Total voters
    120
Chri.Mi

Chri.Mi

Level 7
Well-known
Apr 30, 2020
337
blackice said:
Yes it can depend how the computer is being used. Some people have more risk than others, and some people have different needs. Devs have a hard time running on SUA.
Click to expand...
This is true... but u are telling depend between ppls and ppls... how can be something mandatory so?
 
blackice

blackice

Level 39
Thread author
Verified
Top Poster
Well-known
Apr 1, 2019
2,867
Chri.Mi said:
This is true... but u are telling depend between ppls and ppls... how can be something mandatory so?
Click to expand...
I think a better way to put it would be default. Windows should default to having a SUA for daily work and a secondary admin account for admin tasks.

I personally don't feel that running an admin account is extremely risky for users who practice safe habits and don't download much or use cracks. However, these same people are less inconvenienced by SUA. If admin accounts were the end of the world we'd see a lot more infections. However, based on research, if SUA was the default and most people used it there would be far fewer infections. So I guess if you know the information and risk you can make that decision. The problem is most people don't understand it's much more secure to run SUA for daily tasks.
 
  • Like
Reactions: LASER_oneXM, Guilhermesene, show-Zi and 9 others
Chri.Mi

Chri.Mi

Level 7
Well-known
Apr 30, 2020
337
Personally i hate much SUA and account control always notify... pop for every stupid thing... and i rly doubt threats are blocked but those mechanism. I feel like is a sensation to stay safe...
 
  • Like
Reactions: show-Zi
Vitali Ortzi

Vitali Ortzi

Level 24
Verified
Top Poster
Well-known
Dec 12, 2016
1,322
Chri.Mi said:
Personally i hate much SUA and account control always notify... pop for every stupid thing... and i rly doubt threats are blocked but those mechanism. I feel like is a sensation to stay safe...
Click to expand...
Yeah same but malware tips trusted advisers recommended it enabled wich already caused me a headache to come back to.
 
  • Like
Reactions: show-Zi and CyberTech
blackice

blackice

Level 39
Thread author
Verified
Top Poster
Well-known
Apr 1, 2019
2,867
Chri.Mi said:
Personally i hate much SUA and account control always notify... pop for every stupid thing... and i rly doubt threats are blocked but those mechanism. I feel like is a sensation to stay safe...
Click to expand...
I would most definitely suggest UAC at always notify if you are running admin. It will prevent lots of threats if you have something try to run. But, there are also a lot of UAC bypasses that only work in Admin. So, you are right it doesn't stop everything, but it will stop some. SUA will stop approx. 80%, which is even better.
 
  • Like
  • +Reputation
Reactions: Guilhermesene, show-Zi, Stopspying and 5 others
Chri.Mi

Chri.Mi

Level 7
Well-known
Apr 30, 2020
337
Just for ask... How ppls get malwares? Personally if ppl dont use cracks, keygens and dont download from untrusted site i dont find how can be infected.
 
  • Like
Reactions: show-Zi
blackice

blackice

Level 39
Thread author
Verified
Top Poster
Well-known
Apr 1, 2019
2,867
upnorth said:
@blackice , a small tip. You should probably post a few of those researches/reports that been shared over the years. Hopefully could help even if I know some refuse learn/listen anyway.
Click to expand...
@Andy Ful shared some great information a while ago
Andy Ful said:
For security reasons, it is good to use SUA as a daily work account.

About 80% malware run with the rights higher than standard user:
Malicious code and the Windows integrity mechanism - Securelist

Most Windows vulnerabilities can be mitigated by removing Administrator's rights from the PC's user:
Want to secure a Windows PC? Turn off Administrator rights

When using SUA (without a pain), some conditions should be fulfilled for daily work applications:
1. They should work as standard user (no UAC prompt when executing, saving config files, etc.).
2. They should autoupdate with higher rights via scheduled task.
3. Alternatively, they should work in AppContainer (Universal Applications from Windows Store).

SUA can work well for anyone, who does not:
  • install many programs,
  • frequently run programs & tasks, that require Administrative Rights,
  • need frequent access to 'Windows' or 'Program Files ...' folders.
I think that most average users can be secure & happy with SUA, with occasional help & guiding from more experienced user. The experienced user, should persuade family members or friends to use SUA, because he/she will have much less work with their computers.

See also (some of many threads):
User Account like a Castle
Poll - Administrator Account vs Standard/Limited User Account
Is using the Admin Account safe?
Click to expand...

Also @shmu26 shared some valuable information as well

shmu26 said:
BeyondTrust Research Discovers that 81 Percent of Critical Microsoft Vulnerabilities Mitigated by Removing Admin Rights
April 24, 2019
BeyondTrust Research Discovers that 81 Percent of Critical Microsoft Vulnerabilities Mitigated by Removing Admin Rights
Click to expand...

And our occasional member @Umbra shared in this thread: Can't quote a deleted member, but the thread is useful.
 
  • Like
  • +Reputation
Reactions: Guilhermesene, show-Zi, Stopspying and 10 others
blackice

blackice

Level 39
Thread author
Verified
Top Poster
Well-known
Apr 1, 2019
2,867
As I said before, I actually don't get after people too much if they run an admin account IF THEY UNDERSTAND THE RISK. I've done both, and not seen anything malicious. Which is a data point of one user. But users must know the risk, which is the problem with defaulting to admin.
 
  • Like
Reactions: brambedkar59, show-Zi, Stopspying and 5 others
oldschool

oldschool

Level 84
Verified
Top Poster
Well-known
Mar 29, 2018
7,596
CyberTech said:
this is from Windows Central thats what author said
Click to expand...
True, except what he doesn't say is that a Standard User who knows the Admin password certainly can install new software. For example, if I set up a SUA for my wife she can't install software without my Admin password. This is what elevation of privileges is all about.
 
  • Like
  • Thanks
Reactions: show-Zi, Stopspying, CyberTech and 5 others
Digmor Crusher

Digmor Crusher

Level 25
Verified
Top Poster
Well-known
Jan 27, 2018
1,401
So I checked my account, Local Account Administrator, which am I? This account thingy, Microsoft password stuff I have no use for. All I know my computer works and I don't need to log in with a password, exactly how I like it.
 
  • Like
Reactions: Behold Eck

Similar threads

Victor M
    • Like
Least Privilege for Ubuntu 24.04 Standard User
Replies
2
Views
483
ChromeOS & Linux
Victor M
Victor M
SpyNetGirl
    • Like
    • Applause
    • Thanks
Serious Discussion Why do you use obsolete security technologies such as SRP?
Replies
7
Views
1,127
General Security Discussions
Andy Ful
Andy Ful
Gandalf_The_Grey
    • Sad
    • +Reputation
    • HaHa
Admin of an anarchist Mastodon server raided by FBI, insecure user data gets seized
Replies
3
Views
1,336
News Archive
codswollip
codswollip

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top