Microsoft Employees May Lose Admin Rights 502
daria42 writes "As Microsoft moves its internal desktop systems to Windows Vista, the company is contemplating whether to change a long running tradition and take away admin rights from its employees in order to improve security." From the article: "'We haven't made that final determination yet. We would like to absolutely look at scenarios where we can look at elements of User Access Control -- that is the feature in Vista -- so that we can start moving in that direction ... It is a tough balance and every company has to decide what is right for them,' said Estberg. However, Estberg said that for the moment, the company will continue to leave the responsibility of installing software with its employees."
Re:It'll turn out just fine (Score:2, Informative)
>> Runs for cover
Re:"Unusual practice" ... wtf. (Score:3, Informative)
Re:"Unusual practice" ... wtf. (Score:2, Informative)
Re:"Unusual practice" ... wtf. (Score:1, Informative)
Re:Stop perpetuating the myth ... (Score:3, Informative)
Re:Stop perpetuating the myth ... (Score:3, Informative)
Re:Stop perpetuating the myth ... (Score:3, Informative)
I run Kodak Share on about 40 of our Windows boxes, none of them have admin rights.
I run AutoCAD on all of our Engineer's windows boxes (about 25), only one has admin rights.
I run PowerDVD on over 1,000 windows boxes, less than 20 have admin rights.
I run Windows Media Player on every machine we have, around 1,5000, and only a few have admin rights.
And these machine run the software as well as you can expect windows to work.
Re:Stop perpetuating the myth ... (Score:5, Informative)
Here is a more complete list: http://www.pluralsite.com/wiki/default.aspx/Keith
Not running as admin should have been eliminated back when multiple users were first introduced with NT.
But hey, from what I hear this new Vista OS will have new features like using config files instead of the registry, shell scripting, regular updates to keep the thing working via a paid subscription, and other nifty new things.
What's next? A web browser that is not integrated with the entire operating system?
Re:Actually (Score:2, Informative)
http://portableapps.com/apps/internet/browsers/po
It comes with me everywhere I go (well, almost
Re:Won't fly (Score:4, Informative)
There's two debug privileges on Windows: the "Debugger Users" group that the Microsoft Debug Manager checks before allowing you to call through it, and the SeDebug priv that allows you to attach to non-.NET processes that you don't own. See this article in MSDN [microsoft.com]: