Re: Limited account in WinXP

newstome_at_comcast.net
Date: 05/16/05

  • Next message: xpyttl: "Re: Limited account in WinXP" 
    Date: Mon, 16 May 2005 13:42:24 -0500

    speeder <no.spam@invalid.com> wrote:
    > I´ve been thinking about creating a limited account in WinXP as
    > another layer of security. An administrator level account would exist
    > only for installing new stuff. Is this a valid idea as a threat
    > deterrent?
    >
    > My assumption is that in a limited account malicious code from
    > webpages or possible injection of malicious code through unknown
    > server vulnerabilities (I run a few) would not be able to install or
    > provide further attack venues.
    >
    > If my assumption is all wrong can the limited account be helpful at
    > all in providing further security?

    Yes, this is a good idea. In fact, it is the way that it SHOULD work
    all the time. As a long time Unix user, I was flabbergasted when I
    installed Windows XP on a machine and found out how many things
    (regular, user applications) broke when not run as Administrator.
    That's simply inexcusable, in my opinion.

    I do have things set up with normal user accounts for everyone who
    uses the machine, and a separate Administrator account that's only
    supposed to be used to install new software or change configuration
    settings. I have had to fight with some software to make it work (the
    most common fix is to make the installation directory for the software
    world writable -- some software apparently tries to save temporary
    files in the install directory!). And a few things just have to be
    run as Administrator for some reason (for example, I have to
    personally start Harry Potter and the Sorceror's Stone for my son when
    he wants to play it, because it has to be run as Administrator --
    lovely, eh? Nothing like having to give full admin rights to a 4 year
    old...). 

    -- 
That's News To Me!
newstome@comcast.net
  • Next message: xpyttl: "Re: Limited account in WinXP"

    Relevant Pages

    • No admin privileges in administrator mode
      ... New install win xp pro from fresh... ... Now after the install all is well, create my administrator ... account and limited account. ... access denied while being logged as the admin... ...
      (microsoft.public.windowsxp.security_admin)
    • Re: Problem with Policies in Windows XP Home
      ... You say you sign in as limited account. ... I keep getting a policy error when trying to install windows deffender. ... I am logged in as the Administrator (In Safe Mode).. ...
      (microsoft.public.windowsxp.general)
    • Re: Internet explorer crashes explorer.exe in limited accounts only
      ... In the limited account, after this happens, you might also try checking the ... >>administrator and not limited. ... Install the applications ...
      (microsoft.public.windowsxp.accessibility)
    • Re: Non administrator user cannot run program
      ... > If it IS your computer then why lumber yourself with a limited account?? ... something as administrator then change your account to limited. ... account to install programs or to perform maintenance on the box. ...
      (microsoft.public.windowsxp.general)
    • Re: I installed The Chron. of Riddick on a LIMITED account XPSP2
      ... Nombredepila typed: ... Well - this isn't really a security issue, ... good would it make to be operating the PC from a limited account, ... Whether an application requires admin rights to install, or not, is ...
      (microsoft.public.windowsxp.security_admin)