Should We Give Users Local Admin Rights?


Có nên cấp quyền Local Admin cho các Users trong hệ thống ?

A common debate in cyber security is “can a user have admin rights to their machine?”
Personally, I’ve always been on the side of no but recently been I’ve been torn.
Hence why I’m now brain dumping on my blog.

For the past couple of months, during my vendor “engagements”, I’ve been trying to get a sneak peak into how other companies handle the idea. These aren’t just run of the mill companies, I’m talking Microsoft level and each of them answered “yes, my account is admin to my machine”.

When you start to hear “yes” more and more, you start to think that maybe you’ve got it wrong.

Now when I answer “no” it’s because my first thought is that the majority of malware and ransomware based attacks thrive on the user having local admin rights. This is because they need to write to certain directories or inject/modify registry…

View original post 1,620 more words

Thank you so much

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s