|
People using administrator accounts can change almost anything, anywhere, at any time. (Certain folders remain off-limits, even to administrator accounts, and you have to jump through some very difficult hoops to get around the restrictions.) Standard account users, on the other hand, are pretty effectively limited to only looking at their own files.
Administrator accounts and standard accounts aren't set in concrete. In fact, Vista helps you shape-shift between the two as circumstances dictate:
- Even if you are using an administrator account, Vista normally runs as if you had a standard account, adding an extra hurdle when you try to run a program that can make substantial changes to your PC — substantial being a subjective term. Before running a program that can make substantial changes, Vista usually requires you to click a security warning box that asks for your permission. You have to clear the same kind of hurdle if you try to get into folders that aren't explicitly shared. That extra hurdle helps prevent destructive programs from sneaking into your computer and running with your administrator account, doing their damage without your knowledge or permission.
- Conversely, even if you are using a standard account, Vista gives you an opportunity to run programs that would normally require an administrator account. When you try to run such a program, Vista asks you to provide the password for an administrator account.
 | If the person using the standard account selects an administrator account without a password, simply clicking the Submit button allows the program to run. |
Most experts recommend that you use a standard account for daily activities and only switch to an administrator account when you need to install software or hardware or get at files outside the usual shared areas. However, most experts ignore their own advice: It's the old do-as-I-say-not-as-I-do syndrome.
In addition, an inherent problem with passwords appears in spades right here. Those running with a standard account need an administrator username and password to "elevate" their security clearance high enough to make substantial changes to the PC. But if you give a standard user an administrator password, that standard user can basically do anything an administrator can do — including simply logging off and logging on with that administrator account.
After you've given away an administrator password (or created an administrator account without a password), you've given away the keys to the executive washroom. The only way to get them back is to log on with that administrator account and change the password.
 | Here's a good compromise: Stick with administrator accounts on PCs that will be used by people who are moderately aware of the dangers of running unknown programs, and are sufficiently jaded to question the wisdom of running any program they don't understand. But if you have users who might not be so circumspect — or if folks use your computer who don't have any business digging around in other users' files — give them standard accounts and lock out any administrator accounts with passwords. Then jealously guard the passwords. |
|
