Windows 7 Forums

Welcome to Windows 7 Forums. Our forum is dedicated to helping you find support and solutions for any problems regarding your Windows 7 PC be it Dell, HP, Acer, Asus or a custom build. We also provide an extensive Windows 7 tutorial section that covers a wide range of tips and tricks.


Windows 7: Standard User accounts issue

25 Jul 2010   #1
periboob

Windows 7 Pro 64
 
 
Standard User accounts issue

A few days ago, I heard about the .LNK file icon vulnerability, got a little concerned since there was no easy fix, and looked for ways to limit my exposure. After flailing about a bit, I decided it was time to look at the "Standard User" accounts in W7.

I set up a new user, made it Standard, and copied over my Firefox profile, and I was up and running. It was surprisingly easy, and over 90% of my user experience is now running fine as "OrdinaryUser". I was surprised at how I rarely have to switch users. Most Administrator type tasks can be accomplished by just trying it, then W7 notifies that I gotta be Admin for that, and asks me to pick an Administrator account, and give a password for it, then it just works. I think I am going to use this as my primary account--it gives me a (possibly unjustified) sense of heightened security.

However one complaint/question. As part of getting familiar with the new diggs, I edited the Registry, ( HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Authentication\LogonUI\BootAnimation )
was asked for the PW etc. and it worked fine. But now, I can go back to the same key and edit it WITHOUT any prompting, from the Standard account. I will experiment further, but it seems that my Standard User account now has unprotected access to the registry. Which makes my warm feeling of security just a little less comfortable.

Any wise words welcome.


My System SpecsSystem Spec
.

25 Jul 2010   #2
Corrine

Windows 7 & Windows Vista Ultimate
 
 

Hi, periboob.

Have you restarted the computer since making the initial registry edit?
My System SpecsSystem Spec
25 Jul 2010   #3
periboob

Windows 7 Pro 64
 
 

Had to test it. I had logged-off, but the computer is rarely powered off, so I made sure. Power-down completely, log-on with Std User, still can edit the registry key without challenge. Seems an unnecessary weakness in the generally accepted rule that Running without admin privileges gives a good extra layer of security.

However, editing/renaming files in the system areas still draws a credential check.
My System SpecsSystem Spec
.


Reply

 Standard User accounts issue




Thread Tools





Similar help and support threads
Thread Forum
Running admin created tasks in standard user accounts
My company has recently purchased internet filtering and monitoring software which requires admin access to run. I am trying to create a scheduled task from the task scheduler which runs the software as an admin any time any non-admin user logs on. However, no matter how I configure the task, it...
General Discussion
How do I block access to my external drive for standard user accounts?
I am running Windows 7 Ultimate. The external drive is a Seagate, if it matters. I have someone coming to visit, and I set up a user account for them. I noticed that that user account can still access my external drive. Is there a way to change this? I'd prefer for them to not even see it as an...
System Security
Customizing standard user accounts - adding system access without uac
When I search for the words in the thread title I only get references to UAC. Well, I do not think I am interested in UAC. In Windows NT4 it was possible to take any existing account and modify/customize its access rights, per system function. As in allowing standard user Joe to be able to...
General Discussion
Cant Access Administrative Rights in Standard User Accounts
Hello, i m using Win7 Home Premium 64b, and till a few days back, i was enjoying a trouble free OS with a Standard User , along with an Admin one, where i always use the standard user account. When installing and uninstalling softwares(in the standard user account), it will ask for Administrative...
General Discussion
How to remove programs in standard user accounts?
Please help!! I installed Win 7 64 and loaded all programs. Everytime I create a standard user account all programs that are installed on my administrator account transfers to my 2 standard user accounts and the guest account also. Even when I try to delete a program in my guest account or...
General Discussion
How to place restrictions on standard user accounts beyond parentals
I am trying to deny permission on standard user accounts to download files from email and such, as well ensure they cannot execute files. I cannot find this option available under parental controls, or even in additional parental controls software. Could someone please advise me how to gain greater...
General Discussion

Our Sites

Site Links

About Us

Find Us

Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

Designer Media Ltd

All times are GMT -5. The time now is 15:46.

Twitter Facebook Google+



Windows 7 Forums

Seven Forums Android App Seven Forums IOS App