Is it safe to run as administrator now that Windows 7 has UAC?

Helping people with computers... one answer at a time.

Ask Leo! » Windows » Windows Configuration

There are situations where running a limited user account is the right thing to do, but running as an administrator is often more practical.

What are your recommendations regarding User Account Control and operating a PC as an administrator in Windows 7? I've read many times that one shouldn't routinely operate a computer while logged in as an administrator, but when you set up Windows on a new computer, the first user that you create is automatically an administrator on that PC. That makes it easy to get through User Access Control prompts by just clicking Yes. Is that risky? If you create a non-administrator user and log in as that user, UAC quite often prompts you for the user name and password of an administrator. Is there a benefit to that?

•

You'll get a variety of opinions on this one.

I tend to fall on the side of pragmatism. What that means is that it depends on just how much you trust the user of your computer.

And it's probably not the type of "trust" that you think.

•

User Account Control

UAC was added in Windows Vista and made more palatable (meaning less annoying) in Windows 7.

There are two principals at play:

"Because you know the password, you're empowered to make mistakes either way."

Even when logged in with an account that has administrative privileges, you do not actually run "as" the administrator by default.
When something needs to happen that requires administrative privileges, you are prompted for permission. If you're logged in as an account with administrative privileges, it's a simple OK/Cancel choice. If you're not logged in with an administrative-enabled account, you must also provide the administrator password in order to be able to choose OK.

This is extremely similar to security measures on other operating systems, including both MacOS and Linux.

The reasoning is simple: by not truly running as administrator, malware that you encounter will have a more difficult time infecting your machine. In general, they have to fool you into saying OK to the UAC prompt before they can infect the deeper levels of your system.

In addition, it can also be helpful in preventing accidental or non-malicious changes from happening to your system.

Who do you trust?

The question is simply this: do you trust whomever is using your computer to answer the UAC prompt correctly?

Will they know when to say no?

If not, then a limited-user account - without knowledge of the administrator password - is the way to go. That way, anything that might potentially affect the system will require not just confirmation, but confirmation by someone who would presumably understand the risks.

Put another way, it's perfect for the kids in the house who keep wanting to install and/or download all sorts of questionable software. A common example might be those who might not understand that the codec that's supposedly required to view the video that they just downloaded from a questionable site isn't a codec at all and that saying Yes won't play the video, but will instead install malware on your machine.

You might as well trust yourself

I'll probably get some flak for this, but if you know the administrator password and particularly if you're the only person who routinely uses the computer, I see no reason to annoy yourself with a limited account. The only practical difference is whether or not you'll need to supply that password in order to say OK. Because you know the password, you're empowered to make mistakes either way.

More important than using a limited account or not is to adopt a skeptical mindset.

Don't be in such a rush to get whatever it is that caused the UAC pop-up that you fail to take the time to look closely at it, understand it, and even research it, if necessary.

UAC as a reminder

Personally, I love the UAC pop-up.

It's an important notification that whatever it is that I'm about to do has the potential to impact the overall security of my machine.

That's a great reminder.

And yes, even though I'm supposed to know what I'm doing, I've absolutely said No to UAC prompts that were unexpected, something that I clearly didn't want, or something that I just didn't understand.

Skepticism and education as a way of life

Purveyors of malware are turning to social engineering and phishing more and more because of these types of barriers that technology can put in place. By tricking you into somehow thinking that a UAC prompt is appropriate, safe, or required, they can bypass any barrier and wreak all sorts of havoc.

Skepticism and education are the only answer.

As has been said time and time again, there is no software, no tool, no scanner, no operating system, no technique that can protect you from yourself.

Article C4829 - May 27, 2011

Leo A. Notenboom has been playing with computers since he was required to take a programming class in 1976. An 18 year career as a programmer at Microsoft soon followed. After "retiring" in 2001, Leo started Ask Leo! in 2003 as a place for answers to common computer and technical questions. More about Leo.

Not what you needed?

You may also be interested in:

How do I know when it's safe to allow programs that cause the User Account Control (UAC) notification to occur? User Account Control or UAC asks when programs need special permissions to do something. I'll look at when those are, and are not appropriate.
Why does my computer say I need to be administrator, when I am? In Windows Vista and Windows 7, your account may be administrator but you still may be denied access, saying you need to be administrator. I'll show why and what to do.
How do I turn off User Access Control (UAC) in Windows Vista? User Access Control, or UAC, is new in Windows Vista and prompts you each time an application requires administrative access. Annoyance, or feature?

Recent Comments

12 Comments

Agree 100% with your observations Leo. I am an experienced user, nobody else gets anywhere near my machine. I run a single user account with administrator privileges.

@David Powell - David, you are waaay too observant!! LOL

Posted by: Jim Hillier at May 31, 2011 1:42 PM

I run an administrator account (without a password) as I'm the sole user of my home PC and I have disabled UAC, I wouldn't recommend this approach to everyone, particularly novices, but I found it annoying and intrusive (although apparently its not as intrusive as it was with Vista - I use Windows 7), I use other methods to keep my PC safe. My take on the matter is I never had UAC with XP and managed just fine so I don't see that I need to use it with Windows 7 either.

Posted by: Saetana at May 31, 2011 8:01 PM

When I was using XP, I used separate administrator and limited user accounts.

With Vista I still did the same at first but, then changed to just UAC. Very annoying but, safer in my opinion.

Windows 7 UAC is still annoying but, not quite as much.

I can put up with annoyance, as long as it makes my computing safer.

Thanks for a great article.

Posted by: sefcug at June 1, 2011 3:59 AM

The following link takes you to the
Norton User Account Control tool
, which is, to the best of my knowledge, applicable to Vista users only... Windows 7 users probably don't need it anyway:

Norton Labs UAC tool link

With this tool I've retained UAC access only for specific files... the safe ones are permanently let through without further botheration. Microsoft should have done this right at the outset!!!!

Posted by: Jayaram at June 1, 2011 5:08 AM

I disabled UAC completely and use Winpatrol instead. Been using it for awhile now. It just warns you when programs are trying to change your startup entries.

I've actually got a recommendation for WinPatrol coming up soon.

03-Jun-2011

Posted by: Terry Hollett at June 1, 2011 8:56 AM

See all 12 comments...

Post a comment on "Is it safe to run as administrator now that Windows 7 has UAC?":

Name: (Required - will be included when your comment is published.)

Email Address: (Required - will not be published.)

Remember Me? YesNo

Comments: (You may use HTML tags for style)

Before commenting, please...

READ THE ARTICLE. A comment that shows you didn't will be deleted and ignored.
Comment only on the article. Use the search box at the top of the page if you have a question about something else.
NO PERSONAL INFORMATION in the comment. No email addresses. No phone numbers. No physical addresses.

Anything that looks the least bit like spam will be deleted. Links to unrelated sites or links that appear to be primarily promotional will be deleted, or the comment will be deleted.
Don't ask me to recover lost passwords or hacked accounts. I can't. Those comments will be deleted.
I can't respond to every comment. And I can't vouch for the accuracy of others who do.

Read Why didn't you answer my question? for hints on getting an answer.
By posting a comment you agree to the Terms of Service. Don't agree? Don't post.
READ THE ARTICLE. A comment that shows you didn't will be deleted and ignored. Yes, I'm saying this twice; you'd be amazed.

Please wait. Your comment is being processed ...

Question? Ask Leo!
The Tip Jar: Buy Leo a Latte!

Categories | Full Archive
By Date | Business Card | About

Advertisements do not imply my endorsement of any product or service.

Copyright © 2003-2012 Puget Sound Software, LLC and Leo A. Notenboom
Ask Leo! is a registered trademark ® of Puget Sound Software, LLC
Terms, Conditions & Privacy
Product Reviews, Recommendations and Affiliate Links Disclosure

http://ask-leo.com/is_it_safe_to_run_as_administrator_now_that_windows_7_has_uac.html