Vista Guest Account Has Unrestricted Access to the Registry?

M

musicmanrdu

New Member
I enabled the Guest account on my Vista PC today just for kicks and decided to see exactly what the Guest account had access to. I tried to delete program files, etc. and each time I got a prompt to enter the Administrator password. OK, this is good so far. Then I type regedit in the Search bar and regedit opens up with no UAC prompt and I enter the registry with no problems whatsoever. I even edit the registry and the settings are saved! What's up with this? Is this just happening on my computer? Can anyone else confirm or refute this anomaly?

Thanks
 

My Computer

System One

I just tried it myself and regedit opened right up (no prompt). However, whenever I try to change a reg. entry I get a window saying something like 'No can do', which is what I would expect. Hmm, where you changing entries in the current user Key. I was in the local machine key. Not knowlegable enough to know if that matters, but I just had that thought. Funny that I have to go through UAC to get to regedit as an admin., but not as a guest.

Gary
 

My Computer

System One

  • Manufacturer/Model
    Dell XPS420
    CPU
    Intel Core2 Quad Q6600
    Memory
    Crucial Ballistix 4x2GB PC2 6400
    Graphics Card(s)
    NVIDIA GeForce 8600 GTS 256 MB
    Sound Card
    Creative SB X-Fi
    Monitor(s) Displays
    HP w2207 + HPvs15
    Screen Resolution
    1680x1050 + 1024x768
    Hard Drives
    2-WD5000AAKS-500 GB
    WD 5000AAV-500 GB external
    Keyboard
    Microsoft Comfort Curve
    Mouse
    MX Revolution
    Other Info
    Wacom Intuos 2 Graphics Tablet
    Experience Index=5.5
OK. Wow. I thought I was losing it there for a minute. Yeah, it does give me an error message when I try to edit anything in HKey Local Machine, etc. But shouldn't it at least give a UAC prompt before entering? Is it possible they avoided this so that a guest user could make simple edits to his user profile?
 

My Computer

System One

I doubt that would be the reason death

I think its more likly an oversight by microsoft
However as no one ever enables or uses the guest account no one has ever enouctered it so it was never submited to microsoft to fix however i suppose if u contact them they will make a quick patch.
 

My Computer

System One

  • CPU
    QX9650
    Motherboard
    Nvida 790i
    Memory
    8GB DDR3 1333Mhz
    Graphics Card(s)
    2x8800GT 512
    Hard Drives
    2x15.6k Cheetah 300GB

    1x Barracuda 7200.11 1TB
UAC virtualizes all read/write requests made to the entire system and saves them under user specific locations...Unless its a bug on your registry or you disabled UAC then it might allow the changes but they are not system-wide changes.
 

My Computer

System One

That explains it. Thanks, dmex.
 

My Computer

System One

  • Manufacturer/Model
    Dell XPS420
    CPU
    Intel Core2 Quad Q6600
    Memory
    Crucial Ballistix 4x2GB PC2 6400
    Graphics Card(s)
    NVIDIA GeForce 8600 GTS 256 MB
    Sound Card
    Creative SB X-Fi
    Monitor(s) Displays
    HP w2207 + HPvs15
    Screen Resolution
    1680x1050 + 1024x768
    Hard Drives
    2-WD5000AAKS-500 GB
    WD 5000AAV-500 GB external
    Keyboard
    Microsoft Comfort Curve
    Mouse
    MX Revolution
    Other Info
    Wacom Intuos 2 Graphics Tablet
    Experience Index=5.5
seriously I don't know why anyone would disable UAC with its enormous potential to secure the most insecure system :cough: Windows...

Microsoft was 10 years behind industry security standards and other systems like Apple and Linux until they included this feature, It might not always be accurate informing you if a program needs elevation to run correctly or if a program legitimately requires it but for anyone who keeps an eye on PC security it gives them the power to deny anomaly programs (and users) the ability to make system-wide changes without the admin`s permission in a way thats perfectly balanced between user-user and user-system and thats just NOT possible under any previous Windows version...

Two good examples...The Guest user changing the registry in specific locations on XP and earlier windows can cause the entire computer to blue-screen permanently while on vista the changes crash just the guest user until they logout, the other good example is IE`s protected mode since it runs IE under a lower privileged user than your own so any exploit code ran inside the web browser can only affect the current user not the entire system.
 

My Computer

System One

I haven't disabled UAC. I agree as to it's potential. Only time I turn it off is while I'm setting things up and then I kill the internet connection till I'm done and restart UAC. That's also why it seemed so odd to not have it come up for a guest account to get to regedit.

Thing I use UAC for most is when I go to install something and forget to right click and run as admin, I can click cancel and not have to wait for the setup prog to get all loaded before I can cancel. Saves me some time LOL.

Gary
 

My Computer

System One

  • Manufacturer/Model
    Dell XPS420
    CPU
    Intel Core2 Quad Q6600
    Memory
    Crucial Ballistix 4x2GB PC2 6400
    Graphics Card(s)
    NVIDIA GeForce 8600 GTS 256 MB
    Sound Card
    Creative SB X-Fi
    Monitor(s) Displays
    HP w2207 + HPvs15
    Screen Resolution
    1680x1050 + 1024x768
    Hard Drives
    2-WD5000AAKS-500 GB
    WD 5000AAV-500 GB external
    Keyboard
    Microsoft Comfort Curve
    Mouse
    MX Revolution
    Other Info
    Wacom Intuos 2 Graphics Tablet
    Experience Index=5.5
Yeah people make such a big deal about them and how annoying they are

I get a prompt less than once a week and i mean once a week is that a big deal?
 

My Computer

System One

  • CPU
    QX9650
    Motherboard
    Nvida 790i
    Memory
    8GB DDR3 1333Mhz
    Graphics Card(s)
    2x8800GT 512
    Hard Drives
    2x15.6k Cheetah 300GB

    1x Barracuda 7200.11 1TB
You must log in or register to reply here.
Back
Top