Security Boot Camp Series Day 6 Print
Thursday, 31 December 2009 09:50

Day 6: Use UAC for good, not evil

Microsoft UACSECURITY BOOT CAMP, WEEK TWO

This week, we'll be focusing on improving your defenses.

YOUR ASSIGNMENT TODAY

Use UAC for good, not evil.

WHY DO IT

UAC tries to prevent the situation where too many Windows users are logged on with elevated user accounts all the time, when they do not need to be elevated for much of what they were doing. Not being logged on with elevated access all the time would significantly reduce the risk of current client-side attacks.

HOW TO DO IT

Read through Roger Grimes’ guide on which privileges UAC strips from un-elevated sessions compared to elevated user accounts. (The link is below.)

RECOMMENDED READING

"User Access Control in a nutshell," Infoworld.com

Microsoft's User Access Control (UAC) can be a powerful tool to protect systems from malicious software, but many people misunderstand what it can and cannot do. Knowing the power (and limitations) of UAC will let you better decide on the right way to use Least User Privilege to protect your systems and users.
< Prev   Next >
Last Updated on Thursday, 31 December 2009 09:56
 

Follow Me On ...

RSS Feeds I Tweet

I am in the process of fixing some minor problems in my website and if you are having some problems in this article such as not showing the graphics files and broken links, kindly email ME the title of the article. Thank You.