Hacker News new | past | comments | ask | show | jobs | submit login

I think this is a valid concern, and perhaps verifiable. How many Windows user actually create a non-admin account to use for their everyday work? I find, anecdotally, that a helluva lot of them don't; in fact, the very idea is foreign to them.



I'd argue this is largely a question of defaults and ergonomics.

Most users will leave the default settings if they don't have an active need to change them. Easily usable (and understandable) tools and interfaces prevent most needs from arising in the first place.

Concrete example: The root account on many Linux distros is disabled by default. I've never felt the need to enable it, because sudo does everything I need. Secure default, useful tools, unlockable system.

Historically we haven't had either of those things. Poor design and implementation led to bad choices by clueless users. The resulting mess is used as an excuse to restrict freedoms. The cure is arguably worse than the poison.


I agree with you. However, my point is that these people don't see the need to create the non-privileged account, even though there is a strong one.




Guidelines | FAQ | Support | API | Security | Lists | Bookmarklet | Legal | Apply to YC | Contact

Search: