Windows 7 Less Vulnerable Without Admin Rights.

Actually, this information doesn't surprise me. I'm a student majoring in computer engineering and actually this is actually a big reason why people who use Linux and Macs are safer. Not because Linux is just built to be more secure (at the kernel level, I think Windows 7 is just as secure as Linux since Windows implements DEP and ASLR), but because they emphasize not using the root account (Admin) as the default account. If you need a program to run in administrator level, Linux will ask you then to input the root password. UAC, as I see it, was suppose to be an easier alternative to Linux's way of inputting an admin password everytime; instead you answer yes or no to a question. Unfortunately, people find it more annoying to answer a Yes/No question than typing your password everytime.

You see, when a program runs in an administrative level, it can do more damage. Linux prevents this by encouraging the use of a lower level account and having the user to input the root password when only necessary. In contrast to Windows, most people use the Admin account as their default account. Hopefully, UAC would notify the user if he/she would like to run a program, but most of the time just mindlessly click Yes not checking if the program is safe.

seekermeister said:

Personally, I don't find that the source of the information is MS to be particularly reassuring.

karlsnooks said:

I agree with Seekermeister.

A report from an independent source would be more credulous.

"I am good because I say I am good" does not carry much weight with me.

Silverscreen said:

Just the fact I saw a 100% in there makes me question the validity of the claim, I doubt its truly possible to relieve 100% vulnerabilities with something so simple, If it were true, truly true, Microsoft would have caught it sooner, not that I have much faith in their qc, but I believe them at least competent enough to catch something like that sooner if it were possible.

ok, I see. None even bothered to read original report.

@Silverscreen, if you have read report. It says 100 % of Microsoft Office vulnerabilities reported in 2009 and published in security builitten...
Who says Microsoft hasn't caught it already? It only says that it could be prevented running as LUA.

@karlsnooks

It's not Microsoft who is saying I am good because I am good!!!
It is report from "BeyondTrust".

On my last post I reffered to Microsoft security bulletin.
Let me clarify it:
Microsoft Security Bulletin (aka Technet security Bulletin) is a report of security vulnerabilities reported to Microsoft, and confirmed as security risk by Microsoft...

For example this is a out-of-band Security Bulletin for March 2010:
Microsoft Security Bulletin MS10-018 - Critical: Cumulative Security Update for Internet Explorer (980182)

I am the same as you guys.
I DO doubt trustworthiness of "BeyondTrust".
But I don't doubt on facts they used for anlyses. (I mean core fact, which are Security Bulletins)

Hope, none was offended by my words

I don't want or need Microsoft telling me how to use MY computer, or what I can access in their OS. I (and all Windows 7 users) paid a lot of money for the OS. Microsoft needs to shut up and let people use their computer the way they want to, and not how Microsoft wants us to.

acr,
Amen! I run my computer wide-open, that is no user account restrictions. I run as administrator. I stay away from peer-to-peer networks and dubious websites. Between google and whois I can determine if a site is to be avoided. I do not go to sites recommended by others (including those that appear in this forum) without first checking to see if the site is reputable. I use Firefox with NoScript and also WOT (web of trust) add-ons. I use Microsoft Security Essentials and Windows Firewall (although the default configuration is weak in my opinion).

True, with GPEDIT.MSC I can turn-off some of the annoying -do you really want to do this?- nag screens from Microsoft but easiest is to turn the things off completely.

I want control of my computer and I don't want MS trying to put their ways onto my computer.

jav said:

ok, I see. None even bothered to read original report.

@Silverscreen, if you have read report. It says 100 % of Microsoft Office vulnerabilities reported in 2009 and published in security builitten...
Who says Microsoft hasn't caught it already? It only says that it could be prevented running as LUA.

Yes, I actually have read it, I know it said 100% of problems reported between 2009 and 2010, I still find it hard to believe when 100% is being thrown around in a situation like this, but its just an opinion.

Silverscreen said:

Yes, I actually have read it, I know it said 100% of problems reported between 2009 and 2010, I still find it hard to believe when 100% is being thrown around in a situation like this, but its just an opinion.

Sorry for being a bit aggressive on last post

I do understand what you mean. I never liked 100% things myself.

But in my opinions 100% of all malware and 100% of all reported and published malware are different things.
Second one is acceptable, thought one may still doubt.
First one, none can know it...

Anyway, we all have different opinions and so I respect yours.

True to say (?) that most/much of the damage inflicted by viruses and malware is reliant on Admin-rights access to the OS. Indeed, should not one browse the Internet only as a standard user?