Re: Non-administrator advantages / disadvantages

[Jason Gates <jasongates () SOUTHERN EDU>]

Kevin was probably referring to offsite users unable to perform a necessary (admin) task?
I think Microsoft has a good summary of LUA: http://technet.microsoft.com/en-us/library/bb456992.aspx
Windows 7 has also tried to help the least privilege principle with UAC..
--
Jason Gates
Southern Adventist University

From: The EDUCAUSE Security Constituent Group Listserv [mailto:SECURITY () LISTSERV EDUCAUSE EDU] On Behalf Of Morrow 
Long
Sent: Tuesday, November 27, 2012 3:31 PM
To: SECURITY () LISTSERV EDUCAUSE EDU
Subject: Re: [SECURITY] Non-administrator advantages / disadvantages

> Disadvantages
> User cannot install or update some software immediately - have to wait for desktop support.

This is a disadvantage :-?

From: The EDUCAUSE Security Constituent Group Listserv [mailto:SECURITY () LISTSERV EDUCAUSE EDU] On Behalf Of Shalla, 
Kevin
Sent: Tuesday, November 27, 2012 3:24 PM
To: SECURITY () LISTSERV EDUCAUSE EDU<mailto:SECURITY () LISTSERV EDUCAUSE EDU>
Subject: [SECURITY] Non-administrator advantages / disadvantages

I'm trying to highlight the advantages and disadvantages of prohibiting administrator access for users of Windows 
computers.  Can you provide feedback on what I have below?  By the way, what's an example of software that is generally 
prohibited?  Is BitTorrent an example?  Is it common?

Advantages
Most malware stays on one user profile, so other users on same machine are unaffected.  Deleting the profile can remove 
the malware. Prohibited (by policy) software doesn't get installed.  Combinations of software known to be problematic 
are not installed (like multiple active versions of antivirus).

Disadvantages
User cannot install or update some software immediately - have to wait for desktop support.

Kevin Shalla