Is it just me, or is 7's UAC MORE annoying than Vista?

The most annoying thing with UAC is when I click on a program to install or set up, and I have to give permission.

HELLO, I JUST CLICK ON THE INSTALL PROGRAM! So YES I am ok with it.
But you see the computer does not know if YOU are the one who ran the application requesting administrative privileges. So it is going to ask before it grants privileges to make sure YOU requested it.


Alternatively Micro$loth could get their asses in gear and create an OS that is actually safe to use instead of inventing layers of obfuscation that doesn't actually do anything for the user and is really only to protect the OS from itself. Plenty of articles have been written to show that a user exposed to a recurring prompt clicks it without thought after only a few times. So what has UAC actually done at that point? Nothing. We did a blurb on it as part of a presentation for Black Hat last year (08). We showed that a user who is exposed to the recurring pop-up eventually just clicks it mindlessly and when our malicious code is injected into the stream of clicks... gets run just fine.
 

My Computer My Computer

At a glance

Gentoo Linux
OS
Gentoo Linux
Alternatively Micro$loth could get their asses in gear and create an OS that is actually safe to use instead of inventing layers of obfuscation that doesn't actually do anything for the user and is really only to protect the OS from itself. Plenty of articles have been written to show that a user exposed to a recurring prompt clicks it without thought after only a few times. So what has UAC actually done at that point? Nothing. We did a blurb on it as part of a presentation for Black Hat last year (08). We showed that a user who is exposed to the recurring pop-up eventually just clicks it mindlessly and when our malicious code is injected into the stream of clicks... gets run just fine.

Safari falls in 10 seconds at hacking contest | News | PC Pro

I don't think that task can be accomplished unless the the typical omnipotent-wannabe user is willing to sudo all day long. Most Windows users aren't, that's why they hate UAC, and pay for Windows instead of using free Linoox.
 

My Computer My Computer

At a glance

Windows 7 x64 Ultimate SP1Core i7-2630QM6 GB DDR3Nvidia GT 540M / Intel HD 3000 - Optimus swit...
Computer Manufacturer/Model Number
Asus N73SV
OS
Windows 7 x64 Ultimate SP1
CPU
Core i7-2630QM
Motherboard
Intel HM 65
Memory
6 GB DDR3
Graphics Card(s)
Nvidia GT 540M / Intel HD 3000 - Optimus switching
Sound Card
HD Audio (Intel Azalia/Realtek) ALC269
Monitor(s) Displays
LED flat panel
Screen Resolution
1920 x 1080
Hard Drives
2x Seagate Momentus 640 GB - 1,28 TB in total
Internet Speed
4 MB/256 kbps
Other Info
External HDs

WD Elements 1,5 TB
WD MyBook 500 GB
Alternatively Micro$loth could get their asses in gear and create an OS that is actually safe to use instead of inventing layers of obfuscation that doesn't actually do anything for the user and is really only to protect the OS from itself. Plenty of articles have been written to show that a user exposed to a recurring prompt clicks it without thought after only a few times. So what has UAC actually done at that point? Nothing. We did a blurb on it as part of a presentation for Black Hat last year (08). We showed that a user who is exposed to the recurring pop-up eventually just clicks it mindlessly and when our malicious code is injected into the stream of clicks... gets run just fine.

I disagree completely and do not feel that UAC is completely useless. According to your profile, you are a Gentoo user...and as a Linux user I would expect you to better understand the UAC system as it's similar to the use of sudo under Unix/Linux.

Microsoft "HAS" improved on the # of prompts that the end user gets. And even as an educated and certified Windows/Linux systems admin..I find value when
1). An application wants admin privs and I don't have any idea why. Makes me reconsider using said application
2). Something pops up in the middle of nothing that I am doing and wants to run. Gotta wonder about what is going on here.

While average or below average users won't consider the consequences or wonder what is actually happening...simply not including UAC because of these lessor users would be a massive step in the wrong direction.
 

My Computer My Computer

At a glance

Windows 7 Ultimate x64Intel Q9550 2.83Ghz OC'd to 3.40Ghz8GB G.Skill PI DDR2-800, 4-4-4-12 timingsEVGA 1280MB Nvidia GeForce GTX570
Computer Manufacturer/Model Number
Self-Built in July 2009
OS
Windows 7 Ultimate x64
CPU
Intel Q9550 2.83Ghz OC'd to 3.40Ghz
Motherboard
Gigabyte GA-EP45-UD3R rev. 1.1, F12 BIOS
Memory
8GB G.Skill PI DDR2-800, 4-4-4-12 timings
Graphics Card(s)
EVGA 1280MB Nvidia GeForce GTX570
Sound Card
Realtek ALC899A 8 channel onboard audio
Monitor(s) Displays
23" Acer x233H
Screen Resolution
1920x1080
Hard Drives
Intel X25-M 80GB Gen 2 SSD
Western Digital 1TB Caviar Black, 32MB cache. WD1001FALS
PSU
Corsair 620HX modular
Case
Antec P182
Cooling
stock
Keyboard
ABS M1 Mechanical
Mouse
Logitech G9 Laser Mouse
Internet Speed
15/2 cable modem
Other Info
Windows and Linux enthusiast. Logitech G35 Headset.
Alternatively Micro$loth could get their asses in gear and create an OS that is actually safe to use instead of inventing layers of obfuscation that doesn't actually do anything for the user and is really only to protect the OS from itself...

So you are running on your Linux box as root and never have to elevate to do administrative task?
 

My Computer My Computer

At a glance

Windows 10 Pro (x64)Intel Core i7-3930K (3.2GHz - 4.5GHz)4x Samsung 4GB PC3-12800 DDR3 (16GB 1600MHz)Nvidia Geforce GTX 690
Computer type
PC/Desktop
Computer Manufacturer/Model Number
Alienware Aurora ALX R4
OS
Windows 10 Pro (x64)
CPU
Intel Core i7-3930K (3.2GHz - 4.5GHz)
Motherboard
Alienware Aurora-R4 x79
Memory
4x Samsung 4GB PC3-12800 DDR3 (16GB 1600MHz)
Graphics Card(s)
Nvidia Geforce GTX 690
Sound Card
SteelSeries Siberia Elite
Monitor(s) Displays
Dell UltraSharp U3011
Screen Resolution
2560x1600
Hard Drives
Samsung 850 Pro 256 GB, Seagate 1TB Desktop Hybrid HDD, 2x Western Digital 4TB Green HDD
PSU
875W Some Dell PSU <.<
Case
Alienware Aurora ALX
Cooling
Custom Liquid Cooling (EK CPU & GPU blocks) dual EK 480RAD
Keyboard
Logitech G710+ Mechanical
Mouse
Logitech G700s
Internet Speed
Verizon Fios (50 mbps average)
Other Info
Server: Intel NUC D54250WYK: i5-4250U, 16GB, 256 GB mSATA, Windows Server 2012 R2
If you are a domain admin and you let your end users have administrative rights over their local machines, you have already failed basically. I'm not going to tell you to turn UAC off or give them admin rights because thats just a plain bad practice.

EDIT: I was hoping some nix/OSX fanboy would open their mouth and then not realize that UAC is actually very much on the same page as SUDO (only better actually).

EDIT2: Sorry if i seem harsh in this post, but no relf respecting domain admin should be on this forum, which is more home users/beginners, asking such basic questions about their job. There are some pretty common sense best practices to follow in a domain environment and if someone can't meet those then I have little reason to try and help them circumvent them.
 

My Computer My Computer

At a glance

Windows Vista Business / Windows 7 Ultimate
OS
Windows Vista Business / Windows 7 Ultimate
If you are a domain admin and you let your end users have administrative rights over their local machines, you have already failed basically. I'm not going to tell you to turn UAC off or give them admin rights because thats just a plain bad practice.

Well I have to agree to a large extent, but that is why I run a domain at home, so that I can debug these issues on my own terms without exposing users at the office to unnecessary security hazards.

It is difficult to find the right mix of security that still allows the end users to be safe and still get their work done without having to call me every time they need to install some piece of software. I've tried being strict before, and it just doesn't work, so I let them do pretty much anything they want on the workstations, and just warn them that I reserve the right to restore their computers to a default configuration if it gets screwed up. All important data is stored on the server, so this is not a problem.

This is really my first time in on 7, so I'm still experimenting with finding that mix of security/functionality. I know that I should remove my domain admin status, but it always seems to cause problems when I do.

So, yes, I recognize that this is not the best forum for my "true" question, but it is Win 7 specific, and indeed, I am finding useful info here.
 

My Computer My Computer

At a glance

Win 7 64 bitIntel Core i34GB
Computer Manufacturer/Model Number
Dell Inspiron
OS
Win 7 64 bit
CPU
Intel Core i3
Memory
4GB
If you are a domain admin and you let your end users have administrative rights over their local machines, you have already failed basically.

If you are a domain admin and self proclaimed Windows Guru,
then I don't have to tell you, there are scenarios where best practice is to give them admin rights on their own machines.
Maybe when I say laptops, it rings a bell?

EDIT: I was hoping some nix/OSX fanboy would open their mouth and then not realize that UAC is actually very much on the same page as SUDO (only better actually).
If you are in the mood for picking a fight, relax, get a nice cup of tea, and remember where you are.
We are here to help, not to talk down to the lesser experienced.

EDIT2: Sorry if i seem harsh in this post, but no relf respecting domain admin should be on this forum, which is more home users/beginners, asking such basic questions about their job.
You say sorry for a harsh remark and then you make an even harsher one.
Who are you to tell who can or can't be on this forum?
Take another cup of tea.

There are some pretty common sense best practices to follow in a domain environment and if someone can't meet those then I have little reason to try and help them circumvent them.
You made that last point painfully clear.

Luckily the OP is not scared away easily, even though you tried your best at it.

You have a poweruser badge, you should set a better example.
 

My Computer My Computer

At a glance

Win7 Build 7600 x86Pentium II 300MHz32mb EDO RAMDiamond Viper
OS
Win7 Build 7600 x86
CPU
Pentium II 300MHz
Motherboard
Asus
Memory
32mb EDO RAM
Graphics Card(s)
Diamond Viper
Sound Card
Soundblaster 16
Monitor(s) Displays
14" AOC CRT 16K color
Screen Resolution
800x600
Hard Drives
300mb Quantum fireball
PSU
110 Watts
Cooling
Passive
Keyboard
Trust Ergonomic
Mouse
Generic
Internet Speed
256K u 128K d
If you are a domain admin and you let your end users have administrative rights over their local machines, you have already failed basically. I'm not going to tell you to turn UAC off or give them admin rights because thats just a plain bad practice.
Well I have to agree to a large extent, but that is why I run a domain at home, so that I can debug these issues on my own terms without exposing users at the office to unnecessary security hazards.

It is difficult to find the right mix of security that still allows the end users to be safe and still get their work done without having to call me every time they need to install some piece of software. I've tried being strict before, and it just doesn't work, so I let them do pretty much anything they want on the workstations, and just warn them that I reserve the right to restore their computers to a default configuration if it gets screwed up. All important data is stored on the server, so this is not a problem.

This is really my first time in on 7, so I'm still experimenting with finding that mix of security/functionality. I know that I should remove my domain admin status, but it always seems to cause problems when I do.

So, yes, I recognize that this is not the best forum for my "true" question, but it is Win 7 specific, and indeed, I am finding useful info here.


Hi CoastalData,

Please feel welcome and don't mind Jordus.

He was probably having a bad day.

Greetings,

Michel
 

My Computer My Computer

At a glance

Win7 Build 7600 x86Pentium II 300MHz32mb EDO RAMDiamond Viper
OS
Win7 Build 7600 x86
CPU
Pentium II 300MHz
Motherboard
Asus
Memory
32mb EDO RAM
Graphics Card(s)
Diamond Viper
Sound Card
Soundblaster 16
Monitor(s) Displays
14" AOC CRT 16K color
Screen Resolution
800x600
Hard Drives
300mb Quantum fireball
PSU
110 Watts
Cooling
Passive
Keyboard
Trust Ergonomic
Mouse
Generic
Internet Speed
256K u 128K d

My Computer My Computer

At a glance

Win7 x64 + x86Intel i7 920, other Intel chips, and the Atom...12 gB; 4 gB Lenovo; 1 gB Samsung netbookATI 4870
Computer Manufacturer/Model Number
Home built (x64), Lenovo x61s Tablet, Samsung Netbook
OS
Win7 x64 + x86
CPU
Intel i7 920, other Intel chips, and the Atom in the netbook
Motherboard
Asus P6T Deluxe
Memory
12 gB; 4 gB Lenovo; 1 gB Samsung netbook
Graphics Card(s)
ATI 4870
Sound Card
Yes, I have one of these
Monitor(s) Displays
32" Sharp Aquos TV
Screen Resolution
800x600 - I have vision issues
Hard Drives
4 - 150 gB Velociraptors in RAID 5
Promise controller
PSU
1000 watt (can't recall the brand)
Case
Antec 300
Cooling
Big honking cooler that was rated highly at Toms Hardware
Keyboard
Microsoft Natural
Mouse
Logitech Trackman
Internet Speed
Cable
Other Info
GeekSquad UPS
CyberPower UPS
DLink DNS-323 NAS (2 tB)
Netgear wireless router as an access point
Netgear wired router FSV-318
Home network consists of
4 desktop computers (2 Vista, 2 Win7)
1 netbook (Win7)
4 laptop computers (XP, 2-Vista, Win7)
Wii and XBox 360
Back
Top