12

What does User Account Control on Windows offer in terms of security? It's just an extra click to potentially run a virus.

AviD
  • 72,138
  • 22
  • 136
  • 218
Moshe
  • 1,721
  • 3
  • 16
  • 22
  • The main thing UAC achieved was to reduce the number of applications that simply take it for granted that they will be running with administrator privilege. Speaking as a sysadmin, before UAC that was a major problem for me: there were *lots* of applications that wouldn't run out of the box because my users weren't admins. Nowadays this is extremely rare. Never would have happened without UAC. – Harry Johnston Jul 14 '18 at 23:27

2 Answers2

6

Basically, there are two kinds of protection. First is user - such window prompt makes the user think about what he is doing and if this action was really intended. With UAC it is simpler to guide users in regards to what should be accepted and what must be restricted. Second protection is the system itself - even with administrator rights there are many limitations on running processes.

For those who want to delve into details, here is a link to the blog of renowned security expert Joanna Rutkowska: http://theinvisiblethings.blogspot.com/2007/02/running-vista-every-day.html. In this post she explains UAC and a vulnerability that was found back in 2007.

TheHidden
  • 4,265
  • 3
  • 21
  • 40
  • Also good to read is Russinovich's UAC isn't a security feature blog post. http://blogs.technet.com/b/markrussinovich/archive/2007/02/12/638372.aspx – surfasb Aug 13 '11 at 21:24
6

There is always a limit to how much the OS can protect the user from himself.

But UAC is firstly concerned with blocking processes from performing potentially destructive actions without your knowledge, so it asks for your explicit approval. Yes, you might still run a virus because you wanted to see the dancing pigs - but that's YOUR choice to ignore the warning (and basically, thats what it is: Continue at your own risk).

But there is a tradeoff here: You can set UAC to require a password for EVERYTHING, but that would be so invasive and disruptive that everyone would either ignore it or shut it off completely. This way, if you WANT, you CAN pay attention to when it really matters (apparently), or you can consistently and explictly choose NOT to.
It's like when you get in your car and start driving - the car starts beeping because you're not wearing a seatbelt, which you should. But you can ignore that if you want to, at your own risk.

AviD
  • 72,138
  • 22
  • 136
  • 218