Can we get the UAC prompt to show only once?

by

The answer to your question is: No, you cannot do that.

Microsoft specifically is forbidding such behavior. If a applications could add themselves to an exclude list, then we get back into the mess we had before.

What you need to do is make your program not require administrative access.

Ask yourself: What did you do on Windows XP?

  • am i not allowed to run your software?
  • does your software crash when i’m a standard user?
  • does your software provide no value, and have no absolutely no functionality when run by a standard user?

Windows XP doesn’t have the convince of the UAC. The only way for a user to run your program as an administrator is to logon with another user. And that’s a much worse user experience than clicking “Continue”.

If you don’t want to write software that is standard user friendly, then you’re part of the problem. UAC is not the problem, UAC is a convience. i can turn off UAC, run as a standard user full time, and your software still won’t work.

Microsoft considered

  • white-lists
  • Remember my preference
  • Don’t ask me again.

If you had a white-list, then every program would just add itself to such a list at install time.

If such a white-list existed, then your app would be the target of malware. It would love to modify the binary to execute what it wants; since it knows the program will be silently elevated.

Malware would love to poke at your application with SendMessage, trying to pass invalid data or structures, trying to get your, administrative, application to execute the code it wants.

If the user had the option to disable future prompts on programs, then they would just do it, and every program would run as an administrator, and we’ll be back to the way things were.

All those ideas don’t solve the problem: almost no program actually requires administrative access.

The time has finally come to force developers to come to terms with that fact.

Whitelists cannot work

Some people want to come up with ways to make whitelists work.

  • Have a checkbox where the user can say, “Don’t prompt me for this file anymore”
    If you store that filename, then other programs with the same name will silently run as administrators.

  • Okay, then we’ll record the full path, or use the hash of the file, as the whitelist entry.
    If there’s a whitelist then other programs will add themselves to that list when they install, and have programs running with administrative access that the user didn’t want.

  • What if only signed applications are allowed, that way we know they’re safe. Applications are not safe because they’re signed. An application doesn’t have to be malware for it to be abused into doing bad things. (e.g. buffer overruns in flash, firefox, ie, chrome, safari, opera, word, photoshop, Yahoo image uploader tool).

You have to store list of valid code-signers in a list somehwere. And no matter how you slice it, having any white-list will mean that applications will just add themselves to that list.

  • Well, then don’t allow them access to the list. Not even administrators are allowed to add items to the list. If not even administrators can add items to the list, then how can the user add items to the list in the first place? You can’t add items to the whitelist if you’re not allowed to add items to the whitelist!

And how do you manage the white-list? Lets say the user has changed their mind, or Dad has changed his mind, or IT has changed its mind, or corporate has changed its mind, or the software publisher changes their mind: how do you remove items from the list – especially when nobody is allowd to modify the list.

Summary: White lists cannot work.

More Related Contents:

  1. Making WPF applications look Metro-styled, even in Windows 7? (Window Chrome / Theming / Theme)
  2. How to run NOT elevated in Vista (.NET)
  3. Global Keyboard Hook from windows service
  4. Windows 7 .net Excel .SaveAs() Error Exception from HRESULT: 0x800A03EC
  5. Determine if windows is currently playing sound
  6. Memory randomization as application security enhancement?
  7. How do I use WPF bindings with RelativeSource?
  8. How do you configure an OpenFileDialog to select folders?
  9. What is the point of DBNull?
  10. Is it safe just to set CheckForIllegalCrossThreadCalls to false to avoid cross threading errors during debugging?
  11. Single objects still limited to 2 GB in size in CLR 4.0?
  12. How to change stack size for a .NET program?
  13. How Random is System.Guid.NewGuid()? (Take two)
  14. I need a event to detect Internet connect/disconnect
  15. Why is the Visual Studio 2015/2017/2019 Test Runner not discovering my xUnit v2 tests
  16. System.UnauthorizedAccessException: Retrieving the COM class factory for Word Interop fails with error 80070005
  17. Inheritance security rules violated while overriding member – SecurityRuleSet.Level2
  18. How to perform a binary search on IList?
  19. What is the best way to convert between char* and System::String in C++/CLI
  20. How do I install .NET Framework only when it’s not already installed?
  21. TSQL md5 hash different to C# .NET md5
  22. LINQ, can’t join to string
  23. Could not load file or assembly ‘Antlr3.Runtime (1)’ or one of its dependencies
  24. Differences between .NET 4.0 and .NET 4.5 in High level in .NET
  25. Which is faster: clear collection or instantiate new
  26. Change the Target Framework for all my projects in a Visual Studio Solution
  27. WCF Disable Deserialization Order Sensitivity
  28. How to prevent value changed events from firing on form initialization in .NET?
  29. Get SOAP Message before sending it to the WebService in .NET
  30. Exclude certain pages from using a HTTPModule

Leave a Comment