Comment Re:UAC is tagged on. (Score 1) 321
But, in practice, most users on a typical Windows system are basically administrators (=root, or close enough - there's always TrustedInstaller etc), and so when UAC produces a token with their original privileges restored, the net effect is the same as sudo. So, when your average user sees a UAC prompt, the end result is the same as when he does sudo whatever.
That is correct for home- and individual users. But users in a corporate (or school) setting should *not* be allowed to elevate to full admin privileges, if at all. Users can still install per-user apps and policies can still restrict which apps can be allowed to start (based on hashes, digital signatures, vendor etc).
And so it comes to this. It's not the fault of Windows, but the ignorance of those configuring the systems. Color me surprised!