Welcome to Vista Banter. You are currently viewing our boards as a guest which gives you limited access to view most discussions, articles and access our other FREE features. By joining our free community you will have access to ask questions and reply to others posts, upload your own photos and access many other special features. Registration is fast, simple and absolutely free so please, join our community today! If you have any problems with the registration process or your account login, please contact contact support. |
|
Security and Windows Vista A forum for discussion on security issues with Windows Vista. (microsoft.public.windows.vista.security) |
|
LinkBack | Thread Tools | Display Modes |
|
|||
can a key logger program steal admin password when you install program from limited user account
I have admin and limited user account on my PC. I always run in
limited user account, except when installing program and doing other system maintenance work. In limited user account, when I install a program, it will pop up a dialog to ask for admin password. Suppose that under limited user account, I by mistake downloaded virus/trojan, can this virus/trojan/key logger steal the admin password when I try to install a program? I know that I'll be safe if I switch to admin account to do the installation. And yes, there is a possibility that the virus will change the program I want to install. Let's ignore this possibility for now. I am running Win7. Thanks. |
|
|||
can a key logger program steal admin password when you installprogram from limited user account
|
|
|||
can a key logger program steal admin password when you install program from limited user account
In message FromTheRafters
was claimed to have wrote: wrote: I have admin and limited user account on my PC. I always run in limited user account, except when installing program and doing other system maintenance work. In limited user account, when I install a program, it will pop up a dialog to ask for admin password. Suppose that under limited user account, I by mistake downloaded virus/trojan, can this virus/trojan/key logger steal the admin password when I try to install a program? How does it work? If it can install a keylogger, it already has admin privileges. Keyloggers can run as a limited user but will only be able to intercept activity that happens within that user's context and won't see what happens in other contexts, including UAC elevated applications. Short answer: It should not be able to. The elevation prompt is not in your limited user account, but in the "secure desktop" instead (like your logon desktop). The system takes a snapshot of your current desktop, darkens it, and switches to the secure desktop and displays it there - and then displays the credentials prompt. Don't forget the number of folks who set UAC to not use a secure desktop, these people may not even have this level of protection. |
|
|||
can a key logger program steal admin password when you install program from limited user account
|
|
|||
can a key logger program steal admin password when you install program from limited user account
On Sun, 19 Dec 2010 18:56:37 -0800, Dave Warren
wrote: Don't forget the number of folks who set UAC to not use a secure desktop, these people may not even have this level of protection. How can I check to make sure that UAC is set to use a secure desktop? I only found one screen to control UAC setting, and there is no mention of secure desktop there. Thanks. |
|
|||
can a key logger program steal admin password when you installprogram from limited user account
|
Thread Tools | |
Display Modes | |
|
|