you better know what you're talking about.
Either you suck at reading comprehension or you don't know what *you're* talking about. I consider a user with sudo access to be an admin user, because they can administer the machine. Is that so damn hard? Rather than simply getting the point you have to tell us what an admin user is and is not. FYI, admin in Linux != administrator on Windows XP. The Windows XP administrator is more like root in Linux. You knew this, of course, but if I don't spell it out for you, you will pretend I don't understand.
So getting back to the point: A user without sudo is actually usable, but a standard Windows user is not. Your counter example of a 1000 data entry monkeys all using the same application(s) does not impress me. You go on to say the mode is not important because grandma's don't use it? Which is it? We're talking security. It's a security advantage to be able to run in that mode more often? Yes, so it counts. Microsoft itself will admit this point, but you won't. Fine!
Yes, sudo is a security warning. It warns you that your action will require elevated privilege, with the security risk that entails. You're bitching about terms again, probably because you don't really care. It's not a Slashdot myth that UAC is often invoked unnecessarily - that's another weasel debating tactic - labeling that which you disagree with. I've seen security prompted for deleting files I created, and for apps that had no business getting elevated access. I can browse without sudo in Linux, the MS solution is less secure.
"It's the reason to not think of UAC as a security boundary."
AND it's the reason that it's a very bad idea to invoke it for everything under the sun, like Vista does! Then there are the processes themselves. Which elevated apps are more likely to have those holes you speak of? Survey says... Windows. To recap, I run fewer processes with sudo, and those processes are more secure. Deny it if you want. Did you know that sudo can be allowed only for those executables you trust. Oh, what am I saying? I'm sure none of this counts. So Window is the same as Linux after all, in your mind. Congrats.
BTW, we haven't even touched on PolicyKit and SELinux. MS had a hard enough time bolting UAC onto it's architecture. How will they go forward with their "state of the art" UAC and still champion ease of use and backward compatibility? Hint: They probably won't.
I liked the article I quoted, I just think that Convenience beat Security in order to get UAC working. Still it's a step in the right direction and miles better than XP. I hope that external security is similarly improved. Only time will tell.
"Think for a second that one single linux distro has 95% of the market."
Do we have to assume that Linux loses it's diversity as it grows in popularity? Why? I guess if it doesn't fit with your world view, we'll have to throw it out.
Oooh, threat model. I've never heard of that before. Ok, I'll concede the point... wait, what point? You haven't made one. Are you claiming that people aren't choosing Linux for it's security. Based on what?
"Anecdotal evidence does not count."
Count whatever you want. My first reply was to two people contributing their Windows anecdotes. I can add mine too... unless you don't like it, of course. Just let me know.
So you know, I am not gating access to my network with XP. Those machines are for testing security in a lab, but not OS security. Do you object that I don't fork out more to MS when it's not necessary? What will your next uninformed assumption be?
"I make my living as a dev on windows."
Color me not surprised, you independent thinker you.
"The word finally is never used in security."
Reading comprehesion, again. Windows security has sucked since DOS. You're trying to say that it has finally improved to decency. That "finally" doesn't mean it won't improve further. It means it's "at last", and "just now" reaching parity. Well that assertion is unproven, and requires some time to validate. History would have you be more skeptical, but feel free to champion Vista early and feel special.
Try to notice that I was the one telling you not to use the "swiss cheese vs. vault" argument. It's easy to meet an arbitrarily small standard, or to show that your less favored OS is not perfect. Now you're saying that no security is perfect, as if it's a revelation? Wake up! That was already a given.
I'm sure you disagree with or are still misinterpreting everything I've said, so I'm willing to leave that all behind. I'll just take one parting shot at the assertion that I took exception to: Linux is only more secure because it's less of a target. Since that's untestable, I'm sure you'll go spouting that to anyone who says something bad about Windows - even if it's just their true anecdote. I've given you some counterpoints, but since you deny even the ones that are demonstrably valid, there's no reason to carry on the sham that you are an independent thinker. That's an agenda.