Forums
New posts
Search forums
News
Security News
Technology News
Giveaways
Giveaways, Promotions and Contests
Discounts & Deals
Reviews
Users Reviews
Video Reviews
Support
Windows Malware Removal Help & Support
Mac Malware Removal Help & Support
Mobile Malware Removal Help & Support
Blog
Log in
Register
What's new
Search
Search titles only
By:
Search titles only
By:
Reply to thread
Menu
Install the app
Install
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Forums
Security
General Security Discussions
Do you use an Admin account or Standard User Account?
Message
<blockquote data-quote="Andy Ful" data-source="post: 880828" data-attributes="member: 32260"><p>Some clarifications about SUA.</p><ol> <li data-xf-list-type="ol">One can install applications when logged on SUA (without Admin password), if they do not require Admin rights.</li> <li data-xf-list-type="ol">Some web browsers can be installed on SUA even if they initially ask for Admin rights. If the user chooses NO, then the browser can continue installation in %UserProfile% without Admin rights.</li> <li data-xf-list-type="ol">The SUA is much safer when we talk about exploiting the programs or Windows features. This follows from the fact that processes running with<span style="color: rgb(184, 49, 47)"><strong> Admin rights</strong></span> must do it on another account (a particular Admin account) and <strong><span style="color: rgb(184, 49, 47)">cannot run on SUA</span></strong>.</li> <li data-xf-list-type="ol">One can install applications that require Admin rights when logged on SUA, but after writing the Admin password in UAC prompt, <span style="color: rgb(184, 49, 47)"><strong>the installation is redirected to the Admin account</strong></span>. This can cause some issues because the application custom settings, made by the user during installation, will be written in the Admin user profile and not in the SUA user profile. After launching the application from SUA, the application cannot access these settings and the application has to be configured again.</li> <li data-xf-list-type="ol">When the malware is running on Admin account with standard rigths, this is also the same account for many processes with Admin rights. Sharing the same account by the processes with different privileges is like sharing the same room with people who can be invected by COVID-19.</li> <li data-xf-list-type="ol">If the malware is running on SUA (necessarily with standard rights), then there is no processes with Admin rights on SUA. High privileged processes are running on other account(s) (Admin type). This is similar to the situation when the infected patient is isolated in a single room from others.</li> <li data-xf-list-type="ol">That is why there are many UAC bypasses on Admin account, but not on SUA.</li> </ol></blockquote><p></p>
[QUOTE="Andy Ful, post: 880828, member: 32260"] Some clarifications about SUA. [LIST=1] [*]One can install applications when logged on SUA (without Admin password), if they do not require Admin rights. [*]Some web browsers can be installed on SUA even if they initially ask for Admin rights. If the user chooses NO, then the browser can continue installation in %UserProfile% without Admin rights. [*]The SUA is much safer when we talk about exploiting the programs or Windows features. This follows from the fact that processes running with[COLOR=rgb(184, 49, 47)][B] Admin rights[/B][/COLOR] must do it on another account (a particular Admin account) and [B][COLOR=rgb(184, 49, 47)]cannot run on SUA[/COLOR][/B]. [*]One can install applications that require Admin rights when logged on SUA, but after writing the Admin password in UAC prompt, [COLOR=rgb(184, 49, 47)][B]the installation is redirected to the Admin account[/B][/COLOR]. This can cause some issues because the application custom settings, made by the user during installation, will be written in the Admin user profile and not in the SUA user profile. After launching the application from SUA, the application cannot access these settings and the application has to be configured again. [*]When the malware is running on Admin account with standard rigths, this is also the same account for many processes with Admin rights. Sharing the same account by the processes with different privileges is like sharing the same room with people who can be invected by COVID-19. [*]If the malware is running on SUA (necessarily with standard rights), then there is no processes with Admin rights on SUA. High privileged processes are running on other account(s) (Admin type). This is similar to the situation when the infected patient is isolated in a single room from others. [*]That is why there are many UAC bypasses on Admin account, but not on SUA. [/LIST] [/QUOTE]
Insert quotes…
Verification
Post reply
Top