Keith Combs' Blahg

Ramblings from another nerd on the grid

Windows Vista 30, Rootkits 0

Windows Vista 30, Rootkits 0

  • Comments 4
  • Likes

I’m glad to see some positive press on Windows Vista.  Security is a tough business and when you’re on the desktops of millions of computers, everything is magnified to the Nth degree.  A couple of recent articles and postings are getting a lot of attention.  See “Vista's Despised UAC Nails Rootkits, Tests Find” by John E. Dunn.  This of course got picked up on the popular site Neowin.

Since a lot of you aren’t yet running Windows Vista, here’s a quick refresh on the tech.  In Windows Vista, there are two types of user accounts: standard user accounts and administrator accounts. Standard users are equivalent to the standard user account in previous versions of Windows. Standard users have limited administrative privileges and user rights—they cannot install or uninstall applications that install into %systemroot%, change system settings, or perform other administrative tasks. However, standard users can perform these tasks if they are able to provide valid administrative credentials when prompted. With UAC enabled, members of the local Administrators group run with the same access token as standard users. Only when a member of the local Administrators group gives approval can a process use the administrator’s full access token. This process is the basis of the principle of Admin Approval Mode.

See the TechNet article, “Understanding and Configuring User Account Control in Windows Vista” for a detailed review of UAC.  If you want to see it in action, see the following 4 minute screencast.

Your comment has been posted.   Close
Thank you, your comment requires moderation so it may take a while to appear.   Close
Leave a Comment
  • People that complain about uac and turn it off deserve what they get!

  • Now now Tony!!!  We don't want them to turn it off.  UAC is a good thing and we'll continue to improve the way it works.

  • UAC make hackers and Malware writers angry. If someone told you turn it off then may be he or she is a hacker or Malware writer and want to access to your PC easier. :)

  • My first experience with the UAC prompt, I like many users found it annoying. However, after doing some studies and watching a few webcast, I must say I love it. I look forward for my prompt.