Windows 10: Windows Admin token power - malwares

Hello,1: recently, coding a program in C#, i noticed a thing: if you open a program {System.DiagnosticS.Process.Start"PATH";} as administrator, that program will be able to run other programs as administrator without user account control.Isn't this too over powered?2: There exists a key in Win registry. If you create that key, taskkill.exe won't kill anymore processes. I found that key testing a malware. Once you've created that key, when you open cmd, type taskkill /IM random.exe and run the command, you'll notice an error like: taskkill.exe wasn't found. This is very over powered. I have

:)

 

admin password?

You can reset the Admin Password using Windows XP repair; See Here for step by step.

*Toast :toast:

 

Login with the One Username, but have the option to select Admin or user.

Grant,

The user account & security models are significantly different now and have been since Windows 7 [I think the major change was actually introduced with Vista].

• When an Admin user account logs in, the user account is only granted the rights [the "tokens"] of a Standard user account.
  
• To grant Admin permission [to grant the Admin token] for an individual task, "Elevation UI" dialogs are used to give permission to proceed. They elevate the single approved task only.
• Windows does not provide any means of selecting Admin / Standard tokens at login. All logins assign Standard tokens only.

The ability for an Admin user account to run as an Admin [i.e. with the Admin token] at all times was removed deliberately.

• Malware or a hacker could make use of the Admin token of a logged on Admin user [if Admin tokens were permanently assigned] to do whatever they wanted on the system without hindrance & without necessarily being noticed.
• You could emulate having permanent Admin tokens by turning off UAC but doing so on a network-connected computer would be hazardous both to you and to other network users [unless you had done a complete malware scan after your last connection to the internet,
  to any external drives or to anything else].
• Speaking personally in an attempt to convey the gravity of the situation, I allow temporary visitors to connect their computers to my network but I wouldn't let them anywhere near it or any of my peripherals / removable hardware if they had UAC turned off.

As you might guess, I disagree strongly with the comment that this would be a "great recommendation". The current user account & security models are major components of the overall security system that has made Windows 10 so well-defended against malware.

- - - - - - - - - - - - - - - - - -

By the way, you can always get to a list of all the threads you are involved with in this forum by clicking on your username

GrantDaly anywhere that it appears. So you can, if you wish, just save

GrantDaly in your Favorites and use that as your staging post for all visits to the forum.

Denis

 

How do I import RSA Token on Windows Phone 8?

Hi,

Probably it might be helpful for those who may not be using sdtid file.

In my case, the normal process of RSA seeding (for windows desktops) was as below:

• Generating an activation code in the online portal.
• Along with the activation code, the portal used to display the URL for importing tokens from web as https://custom.url.com/tokens
• In the desktop RSA application, select 'import tokens from web' option
• Paste above URL and then activation code in the specified fields to import the tokens

However, when I installed RSA app in my windows phone (Windows-10), the app was expecting import URL in com.rsa.securid:// format. Finally it turned out that I need to enter the URL in following format:
com.rsa.securid://ctkip?scheme=https&url=custom.url.com/tokens

Once I pasted the link in this format, it was pretty simple. App asked for activation code, which was already available with me (as per step-1 above). The import was successful.