UAC를 굳이 무력화 시키거나 할필요없는것을 알았다...젠장 이거 악성코드에서 처음보는데 UAC 알림 기능을 OFF시키는 방법이란다; 거의 자료는 없군요;
예로 다음과 같이 쓸수 있다고 한다.
set __COMPAT_LAYER=RunAsInvoker
start regedit.exe
악성코드에서의 쓰이는 방법
UAC - Is it better to use RunAsInvoker or to give Admin rights to the application users
Hi, I am working on migration of applications from XP to WIndows 7 environment. We have set of UAC non complaint applications which need to be migrated to win7. The issue is whether to use a shim (RunAsInvoker) or to give the users of these non complaint apps admin rights. My querries are : 1. Will it be a security breach if RunAsInvoker shim is applied to applications that are UAC non complaint?(We do not have manifest files to all the applications in this set to make changes and to make the apps understand UAC) 2. On applying the shim the user will no longer be prompted and so the basic functionality of the uac is changed and so it could be a security breach. Instead is it better to give the users of all these applicaitons be given admin rights, so that the prompt comes before launching the app and they still go on working? As any decision would affect a large number of users or would require a major change in the group policies, could you please suggest the most feasible and long term feasible solution to this issue. Thanks in Advance..
