Greg Rozelle said:
Kerry,
I am not sure but shouldn't Vista have a switch to turn of some
features without turn of the whole UAC?
Moving an ICON, seem ridiculous to ask for permission.
I am thinking that is what davey want. Maybe some will develop a
tweak program to do this.
Greg Rozelle
I agree this would be nice but given the intent of what UAC does it's very
hard to implement. The intent of UAC is to determine if you have instigated
an action. There is no intent to check what the action actually is. Checking
what the action actually is doing, testing to see if it matches a whitelist,
testing programs to see if they have been modified, testing to see if a
physical user instigated the action, etc. would add a lot of code and
possibilities for exploits. UAC is very simple. Did you instigate this? It
would be nice if it did more but the programming involved would be
considerable and reduce the security of UAC itself to the point where it
wouldn't be worth it. UAC or something like it actually has a lot of
promise. It could be developed into a new security model altogether where
user accounts are not used for security boundaries. Security could be
controlled by something like an uber-UAC and user accounts would be for
privacy and data separation. I don't think this will happen in Vista. It may
not even be Microsoft who develops this. It may be some other OS. The point
is user accounts as a security boundary is an outdated concept. We are stuck
with it for now. UAC is an attempt to force users and programmers to get
back to the basics of user account security. As Vista matures and programs
are written specifically for Vista and UAC you should see UAC prompts almost
disappear. Very few programs actually need system wide privileges. Windows
users and programmers have gotten lazy and expect it but it's not needed.
In the example you mentioned where is the icon? If it's a public icon that's
on all user's desktops then you are making a change that affects the system
not just your account. If any old process could edit an icon on the public
desktop then malware would have an in to every user account. The problem is
caused by programs creating icons on the public desktop rather than the
user's desktop. This is rude and lazy programming. It's exactly what UAC is
intended to discourage.