From Newsgroup: comp.sys.mac.system

Hello.

Do you use standard level account instead of administrator for better security?

Thank you for reading and hopefully answering. :)
--
:) NY! Let's hope 2021 will be better, but it doesn't seem like it so far. :( Note: A fixed width font (Courier, Monospace, etc.) is required to see this signature correctly.
/\___/\ Ant(Dude) @ http://aqfl.net & http://antfarm.home.dhs.org.
/ /\ /\ \ Please nuke ANT if replying by e-mail.
| |o o| |
\ _ /
( )
--- Synchronet 3.18b-Win32 NewsLink 1.113

From Newsgroup: comp.sys.mac.system

On 2021-01-08 15:47, Ant wrote:

Hello.

Do you use standard level account instead of administrator for better security?

Yes. There's no reason to use an administrator account for day to day use.

André

--
To email remove 'invalid' & replace 'gm' with well known Google mail
service.
--- Synchronet 3.18b-Win32 NewsLink 1.113

From Newsgroup: comp.sys.mac.system

On 08-Jan-2021 at 2:47:26PM PST, "Ant" <Ant> wrote:

Hello.

Do you use standard level account instead of administrator for better security?

Thank you for reading and hopefully answering. :)

There are two camps for this discussion.

One says "two separate accounts" and the other says "one admin account and you authenticate when you need to".

The argument is that you won't accidentally provide a password to authenticate adding something to your system is you have to switch to the administrator's account. You might even, if you're really cautious, use a utility to unpack the pkg file and look at what it's installing. With the addition of signatures on packages and the OS requiring you to specifically allow something to modify the system from the System Preferences panel, having to login to another account to add or update software doesn't add value.

In my day job, I have a regular user's account that is granted admin access through powerbroker, a commercial version of sudo that provides companies session logging, audit, and global authentication through LDAP.

On a personal system that's not shared between multiple family members,
logging into the admin account is fine IMO. If you're sharing with others, go the extra step and create a separate admin account. It's an extra layer of security. The kid may get your credit card and password, log into your account, and try to install some on-line games, but without the admin access, they won't be able to.

--
DeeDee, don't press that button! DeeDee! NO! Dee...


--- Synchronet 3.18b-Win32 NewsLink 1.113

From Newsgroup: comp.sys.mac.system

On 2021-01-09 01:15:01 +0000, André G. Isaak said:

On 2021-01-08 15:47, Ant wrote:

Hello.

Do you use standard level account instead of administrator for better security?

Yes. There's no reason to use an administrator account for day to day use.

André

It's largely a matter of personal opinion combined with user experience.

For my own Mac I only use an admin account (unless testing something,
then I have a normal account which is deleted when no longer needed).

On Macs I set up for other people, I always make them a normal account.
For the more knowledgeable I will tell them the Admin account and
password to use when they need to, but for the novices I don't tell
them and get them to inform me when on the rare occasions something
needs to be done that actually requires admin access.

--- Synchronet 3.18b-Win32 NewsLink 1.113

From Newsgroup: comp.sys.mac.system

On Friday, January 8, 2021 at 6:15:04 PM UTC-7, André G. Isaak wrote:

On 2021-01-08 15:47, Ant wrote:

Hello.

Do you use standard level account instead of administrator for better security?

Yes. There's no reason to use an administrator account for day to day use.

André

--
To email remove 'invalid' & replace 'gm' with well known Google mail service.

It is as predicted that Jaimie Vandenbergh feigned indifference at the condition
of being assumed trustworthy... knowing that it's unlikely to ever materialize.
Jaimie Vandenbergh: <rqebpk$f4d$1@fretwizzer.eternal-september.org>
-----
> An "entire bot"? Meaning you are saying it is part of one?
That's all any of the code demos I've shown Shadow are, for years
now.
-----

But then Jaimie Vandenbergh flip flops:
Jaimie Vandenbergh: <rqk10g$j1c$1@fretwizzer.eternal-september.org>
-----
So... these are "parts" the size of "code snippets", written in
AS, in this thread, not "the past" (drop your bizarre narratives and dry
out)."
-----
Jaimie Vandenbergh starts with "for years now" but then denies that is
in the past. And Jaimie Vandenbergh insists the code from the past was not tied to bots... directly contradicting themselves. Shadow must have read
the Jaimie Vandenbergh pages and became ferociously jealous. I suspect this
is not our first demonstration of the improved Shadow. Jaimie Vandenbergh
must know Shadow knows he is just lying.
--
Get Rich Slow <https://www.truepeoplesearch.com/results?name=4234911448&Diesel&Gremlin&Dustin_Cook>
https://duckduckgo.com/?q=dustin+cook+the+functionally+illiterate+fraud https://swisscows.com/web?query=Dustin%20Cook%20%22functionally%20illiterate%20fraud%22
Dustin Cook the functionally illiterate fraud
--- Synchronet 3.18b-Win32 NewsLink 1.113

From Newsgroup: comp.sys.mac.system

On 2021-01-08 17:47, Ant wrote:

Hello.

Do you use standard level account instead of administrator for better security?

Best practice is to use a non admin account for day to day and admin for maintenance and so on.

That said, I've been admin on this account for years because I set it up
that way last time I re-installed the OS to make the immediate few days
less of a hassle but never bothered to change it to a non admin account.

Still requires pw permission for some actions such as installing apps or making changes to iCloud linked accounts and so on. But always requires 'pause' to think before doing anything that might allow malware to get in.

--
"...there are many humorous things in this world; among them the white
man's notion that he is less savage than the other savages."
-Samuel Clemens
--- Synchronet 3.18b-Win32 NewsLink 1.113

From Newsgroup: comp.sys.mac.system

Ant <ant@zimage.comant> wrote:

Hello.

Do you use standard level account instead of administrator for better security?

Thank you for reading and hopefully answering. :)

Yes always. It's easy to switch. Just make a new admin account, and then change your current account from admin to standard. You'll find that you rarely if ever need to log in to the admin account, you can do
everything you need from the standard account by supplying the admin username/password when prompted.

Console.app is one of the only apps that actually requires you to be
logged into an admin account for full functionality, you can't use it to
read the system log otherwise. But there's a workaround even for that,
by running this applescript in a non-admin account:

do shell script
"/Applications/Utilities/Console.app/Contents/MacOS/Console > /dev/null

&1 &" with administrator privileges

--
K.

Lang may yer lum reek.
--- Synchronet 3.18b-Win32 NewsLink 1.113

From Newsgroup: comp.sys.mac.system

In message <CkiKH.60995$Vj2.48311@fx16.iad> Alan Browne <bitbucket@blackhole.com> wrote:

On 2021-01-08 17:47, Ant wrote:

Hello.

Do you use standard level account instead of administrator for better security?

Best practice is to use a non admin account for day to day and admin for maintenance and so on.

That was certainly true, but the constant inconvenience of having to
authorize as an admin has made that practice largely untenable.

--
'They say that whoever pays the piper calls the tune.' 'But,
gentlemen,' said Mr Saveloy, 'whoever holds a knife to the
piper's throat writes the symphony.' --Interesting Times
--- Synchronet 3.18b-Win32 NewsLink 1.113

From Newsgroup: comp.sys.mac.system

Ant wrote:

Hello.

Do you use standard level account instead of administrator for better security?

Thank you for reading and hopefully answering. :)

No. I'm the only person who uses my computer, though.

--
The generation of random numbers is too important to be left to chance.


--- Synchronet 3.18b-Win32 NewsLink 1.113

From Newsgroup: comp.sys.mac.system

On 1/8/21 5:47 PM, Ant wrote:

Do you use standard level account instead of administrator for better security?

I've always used an administrative account.

No problems since 2003 -- works fine for me.
--- Synchronet 3.18b-Win32 NewsLink 1.113

From Newsgroup: comp.sys.mac.system

Lewis <g.kreme@kreme.dont-email.me> wrote:

That was certainly true, but the constant inconvenience of having to authorize as an admin has made that practice largely untenable.

Untenable how? Have you tried? I use a non-admin account for everything
and do not find authenticating as admin to be much more frequent than
if I were logged in as an admin user.

--
K.

Lang may yer lum reek.
--- Synchronet 3.18b-Win32 NewsLink 1.113

From Newsgroup: comp.sys.mac.system

In message <rtfeth$k6r$1@dont-email.me> Király <me@home.spamsucks.ca> wrote:

Lewis <g.kreme@kreme.dont-email.me> wrote:

That was certainly true, but the constant inconvenience of having to
authorize as an admin has made that practice largely untenable.

Untenable how?

There's far too much nromal day-to-day opeartions that requires admin
access to make it feasible.

Have you tried?

For years.

I use a non-admin account for everything and do not find
authenticating as admin to be much more frequent than if I were logged
in as an admin user.

I do. And my wife always ran as a normal user and mostly didn’t notice,
but anymore it is much more annoying, especially since she can
authenticate most actions with TouchID if she is an admin, but must type
in both the admin user and password every time otherwise. Installing a
new utility may require multiple authentications on a standard user
account and only one on a admin account, and that one using TouchID.

Also, it is really not needed anyway as the system is much more resistant
to various bullshit malware. For example, no sensible Mac user has to
worry about ransomware since Time Machine backups are immutable to
scripts or programs trying to access them, so nothing can encrypt your
backups. The system itself cannot be modified either, so no risk there.

--
You know what they say about paradigms: Shift happens.
--- Synchronet 3.18b-Win32 NewsLink 1.113

From Newsgroup: comp.sys.mac.system

On Jan 9, 2021, Lewis wrote
(in article <slrnrvk724.1ibm.g.kreme@m1mini.local>):

In message<CkiKH.60995$Vj2.48311@fx16.iad> Alan Browne<bitbucket@blackhole.com> wrote:

On 2021-01-08 17:47, Ant wrote:

Hello.

Do you use standard level account instead of administrator for better security?

Best practice is to use a non admin account for day to day and admin for maintenance and so on.

That was certainly true, but the constant inconvenience of having to authorize as an admin has made that practice largely untenable.

I agree. Back when I was administering Unix systems, we always logged in as root. That is against best practices, but since almost everything we did required root privileges, it didn’t make sense to do anything else.

—
-=Elden=-

--- Synchronet 3.18b-Win32 NewsLink 1.113

From Newsgroup: comp.sys.mac.system

On Sunday, January 10, 2021 at 11:13:08 AM UTC-7, Lewis wrote:

In message <rtfeth$k6r$1...@dont-email.me> Király <m...@home.spamsucks.ca> wrote:

Lewis <g.k...@kreme.dont-email.me> wrote:

That was certainly true, but the constant inconvenience of having to
authorize as an admin has made that practice largely untenable.

Untenable how?

There's far too much nromal day-to-day opeartions that requires admin
access to make it feasible.

Have you tried?

For years.

I use a non-admin account for everything and do not find
authenticating as admin to be much more frequent than if I were logged
in as an admin user.

I do. And my wife always ran as a normal user and mostly didn’t notice, but anymore it is much more annoying, especially since she can
authenticate most actions with TouchID if she is an admin, but must type
in both the admin user and password every time otherwise. Installing a
new utility may require multiple authentications on a standard user
account and only one on a admin account, and that one using TouchID.

Also, it is really not needed anyway as the system is much more resistant
to various bullshit malware. For example, no sensible Mac user has to
worry about ransomware since Time Machine backups are immutable to
scripts or programs trying to access them, so nothing can encrypt your backups. The system itself cannot be modified either, so no risk there.

--
You know what they say about paradigms: Shift happens.

Shadow claimed the verbiage were entirely consistent with many of the forgeries.
Well, why is he having such a struggle backing his claim up when asked to
do so? In other words, if his statement was even mostly correct, and not
just a dishonest attempt to come to Char Jacksons rescue? Folks who have
known Shadow for quite some time, and also have experience with him highly advise avoiding him to get him to dox someplace else. As long as Char Jackson and anyone else continues to tickle his belly, he won't seek to be the focus of every thread someplace else.
Shadow: <rqebpk$f4d$1@fretwizzer.eternal-september.org>
-----
> An "entire bot"? Meaning you are saying it is part of one?
That's all any of the code demos I've shown Char Jackson are, for years
now.
-----

But then Shadow flip flops:
Shadow: <rqk10g$j1c$1@fretwizzer.eternal-september.org>
-----
So... these are "parts" the size of "code snippets", written in
AS, in this thread, not "the past" (lock the medicine cabinet and DRY out)."
-----
Shadow starts with "for years now" but then denies that is in the past.
And Shadow insists the code from the past was not tied to bots... directly contradicting themselves. Linux offers the least choice. Do you have a Network+
certification?
-
Do not click this link! https://www.bing.com/search?q=dustin+cook%3A+functionally+illiterate+fraud <https://www.truepeoplesearch.com/results?name=4234911448&Diesel&Gremlin&Dustin_Cook>
Dustin Cook the functionally illiterate fraud
--- Synchronet 3.18b-Win32 NewsLink 1.113