Windows 7 UAC Fix Doesn't Address UAC's Fatal Flaw

pooch

pooch

MIA
Guru
VIP
Local time
11:48 AM
Messages
1,518
Location
Appelhülsen Germany
ashley_thumb.jpg

Converging on Microsoft

by Mitchell Ashley

Wow, that was a fast turn around from Microsoft, something we're definitely not used to. Microsoft quickly changed their position on the UAC notification default setting issue in Windows 7, due to the vulnerability River and Zheng found where malware could change the notification setting on a compromised computer without the user's knowledge. Rather than going back to the same setting Vista used, which would have created the Vista UAC nightmare all over again (resulting in users disabling UAC altogether), Windows 7 will require user prompting whenever this notification setting is changed. Microsoft is being less specific about a second change to Windows 7 that "prevents all the mechanics around SendKeys and like from working". The two changes effectively renders the problem River/Zheng found moot. But this solution doesn't solve the core user experience flaw with UAC, as I'll talk about in a moment.


More;Windows 7 UAC Fix Doesn't Address UAC's Fatal Flaw | NetworkWorld.com Community
 
Last edited by a moderator:

My Computer My Computer

At a glance

Windows 7 Ultimate x64Intel Core i7-2600K16 GB G Skill F3-10666 CL9D-4GBRLATI Radeon HD 6870
Computer Manufacturer/Model Number
Something I threw together
OS
Windows 7 Ultimate x64
CPU
Intel Core i7-2600K
Motherboard
Asus P8P67
Memory
16 GB G Skill F3-10666 CL9D-4GBRL
Graphics Card(s)
ATI Radeon HD 6870
Sound Card
ATI Radeon HDMI / Realtek ALC892
Monitor(s) Displays
2 x 22" standard monitors / LG32LC56v TV to watch films
Screen Resolution
1920 x1080
Hard Drives
2 x OCZ Vertex2 111.79GB
3 x Samsung103SJ
1 x Samsung103UJ
1 x WD3200BEVT
1 x Hitachi5K320-160
PSU
Thermaltake Toughpower Cable Management 750W
Case
Antec 300
Cooling
Noctua NH-U12P SE2 and 5 120mm Case fans
Keyboard
Microsoft Comfort Curve Keyboard 2000
Mouse
Hama M3110 / Logitech M305
Internet Speed
16000
Other Info
I have also used Fedora, Suse, Ubuntu Linux
And all other Windows from 95 to date except ME
If they want users to keep UAC turned on Microsoft will need to have a program approval system for the programs we use most often. This would keep us from having to click a program once to open then click again to approve. If they don't do that UAC will continue to be turned off by users. I like the idea of UAC but it needs to have some type of program approval system or it will always be too much trouble to use.
 

My Computer My Computer

At a glance

Windows 7 Ult, Windows 8.1 Pro,Q9650-4.275GHz, E8600 4.5GHz, E6750-3.8GHzG.Skill PC2 9600 1200Mhz 5 5 5 15 2TGTX480
Computer type
PC/Desktop
Computer Manufacturer/Model Number
Home built
OS
Windows 7 Ult, Windows 8.1 Pro,
CPU
Q9650-4.275GHz, E8600 4.5GHz, E6750-3.8GHz
Motherboard
Evga 780i FTW
Memory
G.Skill PC2 9600 1200Mhz 5 5 5 15 2T
Graphics Card(s)
GTX480
Sound Card
Asus Xonar D2
Monitor(s) Displays
HannsG
Screen Resolution
1680X1050
Hard Drives
GSkill Phoenix Pro 120GB SSD
PSU
ThermalTake Toughpower 1000Watt modular
Case
ThermalTake XaserV
Cooling
Xigmatek S1283
Keyboard
Logitech G15
Mouse
Logitech G9
Internet Speed
T1

My Computer My Computer

At a glance

XP Pro, Windows 7 Ultimate 64 & 32 Build 70226600 2.40 Ghz Intel Core 2 Duo4096 GB DDR2512 MB Nvidia GeForce 8400 GS PCI E
Computer Manufacturer/Model Number
Custom
OS
XP Pro, Windows 7 Ultimate 64 & 32 Build 7022
CPU
6600 2.40 Ghz Intel Core 2 Duo
Motherboard
Nvidia nForce 650i Ultra
Memory
4096 GB DDR2
Graphics Card(s)
512 MB Nvidia GeForce 8400 GS PCI E
Hard Drives
2 x 250 GB Western Digital SATA
1 x 500 GB Western Digital SATA
1 x 250 GB Western Digital SATA USB
1 x 80 GB Western Digital IDE
PSU
600 Watt
Case
Custom
Cooling
Zalman
Keyboard
Logitech Wireless Keyboard
Mouse
Logitech MX 700 Wireless Optical Mouse
Internet Speed
Fios
Other Info
Also a Dell Inspiron E1505 1.6 Core Duo with 2GB DDR2, 320GB HDD running dual boot Windows 7 32 build 7057 & XP Pro 32 SP3.
I can handle having to confirm that i want that crap turned off . Better than having to confirm every other thing i do. Probably a good thing for the Noobs though .

I have been running XP for about 4 years without installing a single MS security update and never have security probs. My third party software has always been up to the job .
 

My Computer My Computer

At a glance

7068 64 bit + XP Pro[email protected]4x1Gb Geil Ultra 800MhzGigabyte 9600GT
Computer Manufacturer/Model Number
Home made.
OS
7068 64 bit + XP Pro
CPU
[email protected]
Motherboard
Gigabyte GA-P35-DS3L
Memory
4x1Gb Geil Ultra 800Mhz
Graphics Card(s)
Gigabyte 9600GT
Sound Card
Onboard
Monitor(s) Displays
ViewSonic 22" 5000:1 2ms
Screen Resolution
1680x1050
Hard Drives
Samsung Sata 300, 320Gb,
Western Digital 200Gb IDE
PSU
Cheapo 430w Thermaltake
Case
Antec Performance2
Cooling
Standard Intel for CPU, various others for case+ Hardcano.
Keyboard
Microsoft , wired
Mouse
Microsoft, wired Optimouse
i know the perfect fix for this and MS would only have to change a little thing...

it would be to force a UAC prompt when changing the UAC...
and it has to make the message more reasonable...

something like it has been detected that are changing the UAC...
unless your are changing it yourself you should not allow this unless your are changing the UAC (and for a bonus [unless you know what UAC even means you shouldn't change it as this a security measure that is there to protect you without getting in your way])....

something like that...;)

which is what they did and this breaks the flaw...
now that cake flaw....:sarc:
 

My Computer My Computer

At a glance

Windows 7 Ult x64(x2), HomePrem x32(x4), Serv...Turion X2 ultra (oh well came with laptop)/P4...OCZ Dual Channel 4GB kit/ 1gb Dual ChannelHD 3200 graphics /GMA x3100 (yay for intergra...
Computer Manufacturer/Model Number
Tx2500z Tablet Pc/Homemade Server
OS
Windows 7 Ult x64(x2), HomePrem x32(x4), Server 08 (+VM), 08 R2 (VM) , SuSe 11.2 (VM), XP 32 (VM)
CPU
Turion X2 ultra (oh well came with laptop)/P4 @3.2 (yes P4)
Motherboard
IDK HP Motherboard / Intel DG965SS
Memory
OCZ Dual Channel 4GB kit/ 1gb Dual Channel
Graphics Card(s)
HD 3200 graphics /GMA x3100 (yay for intergrated!!)
Sound Card
Realtek HD Audio(mic working, well sort of)/Siig IC-70012
Monitor(s) Displays
built-in Hp 12" laptop screen/ Acer 19"
Screen Resolution
1280x800 /1440x900
Cooling
All Air Cooled
Mouse
Logi MX Rev. /MS Wheel Optical 1.1A /Logitech Optical Mouse
Internet Speed
College baby but its still routed through vpn to 1536k...
Other Info
love my wacom pen and pressure sensitivity...
wished it worked in 7, SUSE for that matter though
Cake, did someone mention cake?
 

My Computer My Computer

At a glance

XP Pro, Windows 7 Ultimate 64 & 32 Build 70226600 2.40 Ghz Intel Core 2 Duo4096 GB DDR2512 MB Nvidia GeForce 8400 GS PCI E
Computer Manufacturer/Model Number
Custom
OS
XP Pro, Windows 7 Ultimate 64 & 32 Build 7022
CPU
6600 2.40 Ghz Intel Core 2 Duo
Motherboard
Nvidia nForce 650i Ultra
Memory
4096 GB DDR2
Graphics Card(s)
512 MB Nvidia GeForce 8400 GS PCI E
Hard Drives
2 x 250 GB Western Digital SATA
1 x 500 GB Western Digital SATA
1 x 250 GB Western Digital SATA USB
1 x 80 GB Western Digital IDE
PSU
600 Watt
Case
Custom
Cooling
Zalman
Keyboard
Logitech Wireless Keyboard
Mouse
Logitech MX 700 Wireless Optical Mouse
Internet Speed
Fios
Other Info
Also a Dell Inspiron E1505 1.6 Core Duo with 2GB DDR2, 320GB HDD running dual boot Windows 7 32 build 7057 & XP Pro 32 SP3.
I don't understand this.... People will install third party security anyways. It's not like XP had UAC...
 

My Computer My Computer

At a glance

Windows 7 RCPentium Dual Core E52002 GB DDR2-800 @ dual ChannelGalaxy Nvidia Geforce 9500GT
OS
Windows 7 RC
CPU
Pentium Dual Core E5200
Motherboard
Asrock G31M-S
Memory
2 GB DDR2-800 @ dual Channel
Graphics Card(s)
Galaxy Nvidia Geforce 9500GT
Sound Card
Realtek ALC662 Audio
Screen Resolution
1158x864 @ 72 Hz
aeriolewinters said:
I don't understand this.... People will install third party security anyways. It's not like XP had UAC...
Click to expand...

True but XP has serious security flaws, if it wasn't for 3rd party software XP would have died a long time ago. The UAC is making security a little tighter & more reliable but it has its flaws that M$ denies are there & we know, I mean come on. What I'm trying to say is that even though we still install 3rd party antivirus, try living without any AV for a week with the UAC turned all the way up & then give me your results.

BTW, welcome aeriolewinters, nice to have you.

Mike :)
 

My Computer My Computer

At a glance

XP Pro, Windows 7 Ultimate 64 & 32 Build 70226600 2.40 Ghz Intel Core 2 Duo4096 GB DDR2512 MB Nvidia GeForce 8400 GS PCI E
Computer Manufacturer/Model Number
Custom
OS
XP Pro, Windows 7 Ultimate 64 & 32 Build 7022
CPU
6600 2.40 Ghz Intel Core 2 Duo
Motherboard
Nvidia nForce 650i Ultra
Memory
4096 GB DDR2
Graphics Card(s)
512 MB Nvidia GeForce 8400 GS PCI E
Hard Drives
2 x 250 GB Western Digital SATA
1 x 500 GB Western Digital SATA
1 x 250 GB Western Digital SATA USB
1 x 80 GB Western Digital IDE
PSU
600 Watt
Case
Custom
Cooling
Zalman
Keyboard
Logitech Wireless Keyboard
Mouse
Logitech MX 700 Wireless Optical Mouse
Internet Speed
Fios
Other Info
Also a Dell Inspiron E1505 1.6 Core Duo with 2GB DDR2, 320GB HDD running dual boot Windows 7 32 build 7057 & XP Pro 32 SP3.
True but XP has serious security flaws, if it wasn't for 3rd party software XP would have died a long time ago.
Click to expand...
I understand, but I think it's an overreaction on the part of the end-users.... As switching off UAC is the problem, which requires the user to do it. And this is actually key, since as we said... XP has no UAC... but 3rd party software is the reason XP was afloat. This issue is a non-issue, since you can probably install 3rd party software on top of Windows 7 for security. And anyways, It's the vista whiners society that caused this problem in the first place, It's not like UAC isn't in Linux...
 

My Computer My Computer

At a glance

Windows 7 RCPentium Dual Core E52002 GB DDR2-800 @ dual ChannelGalaxy Nvidia Geforce 9500GT
OS
Windows 7 RC
CPU
Pentium Dual Core E5200
Motherboard
Asrock G31M-S
Memory
2 GB DDR2-800 @ dual Channel
Graphics Card(s)
Galaxy Nvidia Geforce 9500GT
Sound Card
Realtek ALC662 Audio
Screen Resolution
1158x864 @ 72 Hz
I think a lot of people feel they need the same security as financial institutions etc, or large networks with lots of people yapping to their friends on Messenger .

Nobody is going to bother trying to use some exploit to hack me when they would be better off trying it on the local grocery store.

The security industry, just like the weapons makers, have made zillions of dollars by exploiting peoples fears.

I'm not playing their game.
 

My Computer My Computer

At a glance

7068 64 bit + XP Pro[email protected]4x1Gb Geil Ultra 800MhzGigabyte 9600GT
Computer Manufacturer/Model Number
Home made.
OS
7068 64 bit + XP Pro
CPU
[email protected]
Motherboard
Gigabyte GA-P35-DS3L
Memory
4x1Gb Geil Ultra 800Mhz
Graphics Card(s)
Gigabyte 9600GT
Sound Card
Onboard
Monitor(s) Displays
ViewSonic 22" 5000:1 2ms
Screen Resolution
1680x1050
Hard Drives
Samsung Sata 300, 320Gb,
Western Digital 200Gb IDE
PSU
Cheapo 430w Thermaltake
Case
Antec Performance2
Cooling
Standard Intel for CPU, various others for case+ Hardcano.
Keyboard
Microsoft , wired
Mouse
Microsoft, wired Optimouse
You must log in or register to reply here.

Similar threads

Windows 7 UAC Feature Still Vulnerable
2
Replies
26
Views
6K
ken9122
ken9122
Windows 7 UAC Flaw Silently Elevates Malware Access
Replies
1
Views
3K
Mark
Mark
Back
Top