posted by Thom Holwerda on Thu 5th Jan 2006 18:46 UTC, submitted by zanek
"As every network manager knows, you should never run your computer as administrator, especially if it has access to the Internet. Malware often depends on admin rights to disable firewalls, delete registry entries and download or create files. Without those rights, malicious code must find another path to your destruction. That bit of insight led Microsoft Security Engineering's Michael Howard to create DropMyRights [.msi] for Windows XP and up. Once DMR is added to a web application's shortcut, the app starts with Normal User Rights instead of Admin rights. Users get the freedom of movement they've always enjoyed, with a little extra protection." In related news, there's now another unofficial patch for the WMF flaw.