Home Security
PC Matic
PC Matic VPN
More Products
Support Unlimited
Identity Theft Protection
PC Magnum
Threat Awareness
How PC Matic Protects You
SuperShield Whitelist
Compare PC Matic
Norton
McAfee
Avast
AVG
Business Protection
PC Matic Pro
PC Matic MSP
Solutions
Allowlisting
Script Enforcement
Device Control
Patch Management
Remote Tools
Integrations
Server Security
Learn More
Resellers
Affiliates
Resources
Case Studies
Compare PC Matic Pro
ThreatLocker
Airlock Digital
VMware Carbon Black
AppLocker
For Federal
Partner Programs
Managed Service Providers
Channel Partners
Affiliate Partners
OEM Partners
Resource Center
All Resources
Case Studies
Data Sheets
User Guides
White Papers
Blog Resources
PC Matic Blog
Business Security
Home Security
Cyber News
Scam Alerts
Customer Service
Home Support
Business Support
Learn More
Getting Started
Knowledgebase
Tech Support Scams
Fake Virus Scams
Tools & More
Ransomware Center
Internet Speed Test
PC Matic
About
Careers
Learn More
Industry Recognition
Leadership
Commercials
Stay Up-to-Date
Newsroom
Blog
Events
TechTalk Podcast
Home Customers
My Account
PC Matic App
Add a Device
Renew Subscription
Business Customers
Business Login
Business Support
Search

Ask Leo: Is it safe to run as admin now that Windows 7 has UAC?

askleo

By Leo Notenboom

What are your recommendations regarding User Account Control and operating a PC as an administrator in Windows 7? I’ve read many times that one shouldn’t routinely operate a computer while logged in as an administrator, but when you set up Windows on a new computer, the first user that you create is automatically an administrator on that PC. That makes it easy to get through User Access Control prompts by just clicking Yes. Is that risky? If you create a non-administrator user and log in as that user, UAC quite often prompts you for the user name and password of an administrator. Is there a benefit to that?

You’ll get a variety of opinions on this one.

I tend to fall on the side of pragmatism. What that means is that it depends
on just how much you trust the user of your computer.

And it’s probably not the type of “trust” that you think.

User Account Control

User Account Control

UAC was added in Windows Vista and made more palatable (meaning less
annoying) in Windows 7.

There are two principals at play:

“Because you know the password, you’re empowered to make mistakes either way.”

  • Even when logged in with an account that has administrative privileges,
    you do not actually run “as” the administrator by default.

  • When something needs to happen that requires administrative privileges,
    you are prompted for permission. If you’re logged in as an account with
    administrative privileges, it’s a simple OK/Cancel choice. If you’re not
    logged in with an administrative-enabled account, you must also provide the
    administrator password in order to be able to choose OK.

This is extremely similar to security measures on other operating systems,
including both MacOS and Linux.

The reasoning is simple: by not truly running as administrator, malware
that you encounter will have a more difficult time infecting your machine. In
general, they have to fool you into saying OK to the UAC prompt before they can infect the deeper levels of your system.

In addition, it can also be helpful in preventing accidental or non-malicious changes from happening to your system.

Article continued here

This post is excerpted with Leo’s permission from his blog.

FaceBook URL: Leo’s Facebook

Twitter URL: http://twitter.com/askleo

Stop Responding to Threats.
Prevent Them.

Get Protected

Want to get monthly tips & tricks?

Subscribe to our newsletter to get cybersecurity tips & tricks and stay up to date with the constantly evolving world of cybersecurity.

Related Articles