Tip: Turn off swith to secure desktop UAC

By MMaster23
in The Fast Ring (Insider Previews)

 Share

Recommended Posts

Experienced

MMaster23

Posted
Posted

You should use UAC! Not disable it!

Do you find it annoying whenever UAC pops up and your screen flikkers when using Glass Areo?

This is because it switches back to "secure desktop" wich does not feature Areo offcourse. The flikker you see, is the swith from Areo to Areo basic.

You can turn this off (with an possible security hazard?) using the Policy editor.

Goto control panel --> administratieve tools --> Local Security Policy

(UAC kicks in again ^^)

Browse to Local policies --> Security Options.

Find "User Account Control: Switch to the secure desktop when prompting for elevation" and disable it by double clicking it and choosing Disabled. (it's the one-to-last option in the listing).

Close the Policy editor and launch something that kicks in UAC. Just run the policy editor again. You'll see UAC again but this time with the glass theme and no switch in UI.

This really speeds up the whole Vista expierence.

Just a note: They built Secure Desktop for a reason (i guess). Turning it off will increase the speed of your UI when using UAC but I cannot say at what cost. For all I know you may break the entire security layer of UAC. Use at own risk!

post-36793-1157240562_thumb.jpg

Proficient

GeeZuZz

Posted
Posted

Just disable UAC and disable the computer unsafe notification. Prefect!

Yup. Theres no way i will ever use a feature that is that fantastic annoying. As if it wasn't anyoing out of the box, the latest Nvidia drivers makes both my monitors TURN OFF for 7 seconds, before they turn on again and the dialog is shown.

Thats 10 seconds wasted every time that dialog appears! Which it does every 10 seconds if you are trying to configure your computer :wacko:

Proficient

kl33per

Posted
Posted

Please use UAC. The people turning it off are thr ones MS are trying to protect. It is an important security feature that is implemented by virtually every other OS out there.

I8PP is right, switching to secure desktop is used to prevent any faking of the mouse pointer.

Grand Master

Malisk

Posted
Posted

I would use it were it not it's ubiquity. I create folders and move files a lot and there's no way I'm going through the UAC rigmarole everytime.

But that has to be system or non-user folders in that case?

Can't you start working in your home folder like Windows wants you to? :-/

I have a feeling the UAC is as much of a problem as the users' traditions are.

Working in home folders to avoid security hazards (and prompts) is a given in many other operating systems than Windows.

Apprentice

Fatman

Posted
Posted

Just a note: They built Secure Desktop for a reason (i guess). Turning it off will increase the speed of your UI when using UAC but I cannot say at what cost. For all I know you may break the entire security layer of UAC. Use at own risk!

...Secure Desktop runs with reduces privileges, doesn't it? Surely that's the ideal context for a UAC-triggering event. If I understand this correctly you'd be compromising the integrity of the UAC feature by using this tweak.

Collaborator

aristofeles

Posted
Posted

Please use UAC. The people turning it off are thr ones MS are trying to protect. It is an important security feature that is implemented by virtually every other OS out there.

I8PP is right, switching to secure desktop is used to prevent any faking of the mouse pointer.

People who turn it off normally knows what they are doing, and knows how to use the OS without a problem. I think they are trying to protect the rest of the users...

Grand Master

Stonkwell Bogtrotter

Posted
Posted

Please use UAC. The people turning it off are thr ones MS are trying to protect.

Rubbish. The ones turning it off are the ones who know about security.

The ones not turning it off are the bozos of the World who actually need something like this!

Grand Master

Evolution

Posted
Posted

UAC is incredibly helpful. If you're going to turn off UAC, you may as well turn off your antivirus and firewall while you're at it since you are effectively increasing your chances of being attacked or infected.

The reason a lot of worms and viruses create so much destruction is due to the fact that most users are on an admin account, and therefore are giving all rights/permissions to the virus/worm. If you really hate UAC, please only disable some of the features and not all of them - this can be done via the group policy editor.

Microsoft is trying their best to make it as unintrusive as possible i.e. if you delete a file in documents, UAC won't prompt you. If you really hate all the prompts when deleting files, then at the very least disable the confirmation to delete from the recycling bin since UAC will ask you again :)

Grand Master

primexx

Posted
Posted

Please use UAC. The people turning it off are thr ones MS are trying to protect. It is an important security feature that is implemented by virtually every other OS out there.

I8PP is right, switching to secure desktop is used to prevent any faking of the mouse pointer.

You'd expect people turning it off to know a decent ammount about computers since they could turn it off in the first place...

People complain that there isn't enough security. When more of it is put in place they b*itch about that too. Go figure.

Well, instead of using things that are counter intuitive, they could have just built the windows core to be more secure...

UAC is incredibly helpful. If you're going to turn off UAC, you may as well turn off your antivirus and firewall while you're at it since you are effectively increasing your chances of being attacked or infected.

The reason a lot of worms and viruses create so much destruction is due to the fact that most users are on an admin account, and therefore are giving all rights/permissions to the virus/worm. If you really hate UAC, please only disable some of the features and not all of them - this can be done via the group policy editor.

Microsoft is trying their best to make it as unintrusive as possible i.e. if you delete a file in documents, UAC won't prompt you. If you really hate all the prompts when deleting files, then at the very least disable the confirmation to delete from the recycling bin since UAC will ask you again :)

Uh, no. UAC just asks for your confirmation for every little action, a Firewall blocks unauthorised access and anti virus protects against, detects, and removes viruses. VERY large difference.

Community Regular

GamblerFEXonlin

Posted
Posted (edited)

Can't you start working in your home folder like Windows wants you to? :-/

What kind of power-user are you? My "home folder" can't easily span over several partitions and drives. Also recent games and applications love to put their settings and savegames right there, under "My Documents." In Vista "My Documents" seem to have become "Home Folder."

That why I let D:\ act as "My Documents" or "Home Folder," just not associated as "My Documents" so games doesn't mess it up with savegames.

Microsoft hasn't been any good at this part. Someone at work lost all his email because a friend forgot to copy Application Data folder before a reformat. That folder is hidden too... In my opinion Windows is one big mess.

http://jooh.no/programs_on_d.html

Oh and the start menu also gets good and messy after a while, I have a friend where it covers his entire screen. I whish they could have a "Start - Games - Battlefield 2.lnk" standard and force developers to use it. Ubuntu has something similar.

Edited by GamblerFEXonlin
Proficient

GeeZuZz

Posted
Posted (edited)

Uh, no. UAC just asks for your confirmation for every little action, a Firewall blocks unauthorised access and anti virus protects against, detects, and removes viruses. VERY large difference.

You are absolutely right.

With a firewall, the attacker will in 99% of the cases not be able to attack without the user's help.

To attack a firewalled PC you need the users to start the application/virus. This is where UAC really comes into play. And i can explain to you why UAC is not that effective: Ok, you have Mr. stupid is sitting on his computer when the screen suddenly flashes with a message. Here is what Mr. Stupid thinks:

What is this? Unauthorize blablablebla security? I don't understand, or want to understand - i just want to continue. From previous experiences, clicking Yes on dialogs lets me continue, so i'll do that.

Conclusion: UAC won't help the really stupid people. And it will not help the experienced people, because they already know what they are about to do.

I understand why MS is doing this, it's because the stupid media is making fun of them because of their stupid users. They want to prove that they do think about security.

In my eyes, XP is rock solid - as long as you know how to use it.

BTW: I really don't understand why MS is not teaching their users how to do stuff right, instead of only stopping them when they are about to do it wrong.

How hard would it be to include a serious interactive learning guide that teaches the users about the most common security threats, and how to avoid it? I mean - why can't they just learn the users that an attachment in an email IS 100% SURE A VIRUS, unless you know what it is? MS rather choose to warn the user with a silly dialog every time.

Edited by GeeZuZz
Experienced

MMaster23

Posted
  • Author
Posted

Can't you start working in your home folder like Windows wants you to? :-/

What kind of power-user are you? My "home folder" can't easily span over several partitions and drives. Also recent games and applications love to put their settings and savegames right there, under "My Documents." In Vista "My Documents" seem to have become "Home Folder."

That why I let D:\ act as "My Documents" or "Home Folder," just not associated as "My Documents" so games doesn't mess it up with savegames.

Microsoft hasn't been any good at this part. Someone at work lost all his email because a friend forgot to copy Application Data folder before a reformat. That folder is hidden too... In my opinion Windows is one big mess.

http://jooh.no/programs_on_d.html

Oh and the start menu also gets good and messy after a while, I have a friend where it covers his entire screen. I whish they could have a "Start - Games - Battlefield 2.lnk" standard and force developers to use it. Ubuntu has something similar.

Go steal someone else's topic! This topic is about UAC and secure desktop. Not about user profiles of userdata storage. You can easily set your other drives to be your own folder.

Btw start menu thingy --> did you even bother to open "Games" in Vista. Completely revamped with seperate folders and rating tools. It has it's own "center".

Your start menu is just like everything on your PERSONAL computer your responsibility! if YOU let your start menu become a mess, YOUR fault. Just order it yourself into apps/games/porn/warez/etc etc. Look at how small your start menu is. Plus uninstalling some apps from time to time will help solve this problem.

Or buy a bigger screen haha

Grand Master

Dashel

Posted
Posted
Can't you start working in your home folder like Windows wants you to? :-/

Yea, not really happy with that solution when I use multiple drives/partitions.

Plus, after one of your 'users' has clicked 'Proceed' 20-30x do you really think they are reading it anymore? The average user is generally so lazy as to be illiterate. They see a button, they click OK. Maybe, just maybe, if it was as annoying as *nix/X and made you type in the password you might be on to something but it doesn't.

Grand Master

»X«

Posted
Posted

Heres what I thought of UAC from another thread.

Well heres my thoughts on UAC (those annoying confirmations popups when you do anything).

Its just insane. As an experienced user like most on here, the thought of having to wade through boxes of yes's and no's is lunacy. Wouldnt mind so much if it was done only in certain situations like trying to delete system files and such. But simply deleting something or trying to copy a file over another like it, causes the popups to commence.

so imagine what it will be like for new users, or users like my dear old mother who is right at the bottom of the computer literacy chain. She can browse and play card games, but if she used vista im sure she would ask of a way of disabling it. And my dad? He would throw the computer out the window.

Any security feature that interferes with the UI and interupts the end users work is just plain ANNOYING and should be removed. Im sure there are other ways of improving computer security. Besides, never had a single security problem in xp, so why change what isnt broken? First thing I do on a fresh vista install is disable UAC and I have no intention of turning it on, no matter how many people bang on about the security it brings blah blah. For those that have stated "You all moan about not enough security but when you get it you complain!" I say this. We didnt ask for this. Simple. We wanted safer browsing (mainly for IE) we wanted a better firewall and perhaps spyware protection. We didnt want a dialog telling us if we are sure we want to move a file, 3 times!

This topic is now closed to further replies.
 Share
Go to topic listing

  • Recently Browsing   0 members

    • No registered users viewing this page.

  • Posts

    • Browser vendors pen open letter to Microsoft saying "enough is enough"

      By Snake Doc · Posted

      What pushed me away from edge was the massive enshitification, constantly adding more and more bloat. Coupled with the constant changes in UI, and especially in the settings. Want to change the default search from Bing to whatever, you would have use search to know the three places to go and change. Then 6 months down the road, the Edge settings area gets a major update/change and doing the same task, changing the default search is now moved to three new locations. This never stops. They do this in Azure and its so insanely irritating. I am a huge OneNote user and they have effed it up so many times in the last 5 years....same for Outlook. People walk away from Microsoft products out of exhaustion.
    • Browser vendors pen open letter to Microsoft saying "enough is enough"

      By Snake Doc · Posted

      Mac does nothing of the sort. You can change the default browser very easily it does not nag you and when you do this, it does not open something still in Safari....like Windows does with Edge.
    • Browser vendors pen open letter to Microsoft saying "enough is enough"

      By Shun Tao · Posted

      I do not remember anything happening to Apple and Google for bribing people not to make Apps for Windows Phone. Edge barley has a foot print to matter. If the other browser companies want more of the Pie, they need to do better. I use Brave on all my personal device. However in industry, Edge of default, as we can manage it easier with MS tools.
    • Browser vendors pen open letter to Microsoft saying "enough is enough"

      By Nick H. · Posted

      On the one hand, it shouldn't be difficult. You buy a computer, you decide what OS you want, which browser etc. Simple enough. But that's the techie side of things. My sister, my mother, wouldn't bother with such a thought. And I'm pretty sure that if you presented a window asking them what to pick they would say, "I don't care! I just want to access my Email!"
    • CPU-Z 2.20.2

      By Copernic · Posted

      CPU-Z 2.20.2 by Razvan Serea CPU-Z is a freeware utility that gathers information on some of the main devices of your system. CPU-Z does not need to be installed, just unzip the files in a directory and run the .exe. In order to remove the program, just delete the files. The program does not copy any file in any Windows directory, nor write to the registry. CPU Name and number. Core stepping and process. Package. Core voltage. Internal and external clocks, clock multiplier. Supported instructions sets. All cache levels (location, size, speed, technology). Mainboard Vendor, model and revision. BIOS model and date. Chipset (northbridge and southbridge) and sensor. Graphic interface. Memory Frequency and timings. Module(s) specification using SPD (Serial Presence Detect) : vendor, serial number, timings table. System Windows and DirectX version. CPU-Z 2.20.2 changelog: Intel Arc G3 and G3 Extreme (Panther Lake)(2.20.2). AMD Ryzen 7 7700X3D (Raphael) (2.20.1). AMD Ryzen AI Max+ 495, 492, 488 (Gorgon Halo). AMD Ryzen AI Max 490, 485 (Gorgon Halo). AMD Ryzen AI Max PRO 495, 490, 485, 480 (Gorgon Halo). AMD Ryzen 9 9950X3D2 (Granite Ridge). AMD Ryzen 9 PRO 9965X3D, PRO 9945 (Granite Ridge). AMD Ryzen 7 PRO 9755, PRO 9745 (Granite Ridge). AMD Ryzen 5 PRO 9645 (Granite Ridge). AMD Ryzen AI 7/PRO 450G/GE (Gorgon Point 2). AMD Ryzen AI 5/PRO 440G/GE (Gorgon Point 2). AMD Ryzen AI 5/PRO 435G/GE (Gorgon Point 3). AMD Ryzen AI Max+ 392 (Strix Halo). Intel Core Ultra 5 250KF Plus (Arrow Lake Refresh). Intel Core 7 360 and 350 (Wildcat Lake). Intel Core 5 330, 320 and 315 (Wildcat Lake). Intel Core 3 304 (Wildcat Lake). Intel Core 9 273PQE, 273PTE, 273PE (Bartlett Lake). Intel Core 7 253PQE, 253PTE, 253PE, 251TE, 251E (Bartlett Lake). Intel Core 5 223PQE, 223PTE, 223PE, 221TE, 221E, 213PTE, 213PE, 211TE, 211E (Bartlett Lake). Intel Core 3 201TE, 201E (Bartlett Lake). Intel Arc Pro B70 and B65 (BMG-G31). Intel Arc Pro B60 and B50 (BMG-G21). Support of HUDIMM and HSODIMM memory modules. Download: CPU-Z 2.20.2 | Portable ~5.0 MB (Freeware) View: CPU-Z Website | Screenshot Get alerted to all of our Software updates on Twitter at @NeowinSoftware

  • Recent Achievements

    • Conversation Starter
      mobandz earned a badge
      Conversation Starter
    • Apprentice
      fernan99 went up a rank
      Apprentice
    • One Month Later
      nothanks earned a badge
      One Month Later
    • One Month Later
      B2Proxy earned a badge
      One Month Later
    • One Year In
      MadMung0 earned a badge
      One Year In

  • Popular Contributors

    1. 1
      +primortal
      469
    2. 2
      PsYcHoKiLLa
      245
    3. 3
      Skyfrog
      79
    4. 4
      FloatingFatMan
      75
    5. 5
      Michael Scrip
      60
    Show More

  • Tell a friend

    Love Neowin? Tell a friend!