UAC, the warning that your progamming sucks
3.11 and 95. Brings back a great many memories. Most of which involved a large amount of swearing. Back in those days, I did a huge amount of graphics and multimedia work, including a large portion of 3D raytracing, which meant there was only one serious platform, the Amiga.
My Amiga 4000 tower, with its 40Mhz Motorola 68060 wiped the floor with both the IBM compatibles and the Macs due to the ahead-of-their-time custom chipsets. I had a plethora of software for it, most of which was delivered full-fat, unrestricted and free on the monthly cover discs.
You can imagine then my seething bitterness and hatred when Commodore died, and I needed the raw cpu horsepower of the Pentiums if I was going to progress with my raytracing.
Windows 95 sucked Sweaty Dead Donkey Dick(tm) by comparrison. Printing was a risky enough business ("You didn't save before you hit 'Print'? You moron!") but being a seriously heavy duty user, I spent more time staring at blue screens than a BBC weatherman. Needless to say, my opinion of Wee Willy Gates and his Mickey Mouse OS was not exactly shining.
12 years later, and how things have changed. I'm a sysadmin now, primarily developing enterprise management solutions, and boy, was this career choice a real eye opener.
Cutting my teeth in schools that had experienced an explosive IT growth, remote application deployment is now the only viable method of keeping on top of things. For me, this meant a great deal of time re-packaging software into unattended MSI files, and it was here that I unearthed all the software industries dirty little secrets.
Has anyone yet noticed that an application designed for Vista works perfectly under XP, but not the other way round? Obviously excluding those that utuilise Vista specific features, but surely it should be the complete opposite?
The student machines had to be locked down tight as a drum. None of this woolly "freedom for the user" rubbish. The understaffed, underpaid technicians have enough on their plate with printer jams, password resets and broken keyboards without having to constantly clean systems of rogue apps designed to get around their content filtering software.
And here is the rub. Any linux fanboi will tell you then when you are USING a computer, you should only be logged on as a USER, but you can't do that under XP. This isn't a failing of the OS itself, but the software developers who still haven't come to terms with the concept of basic user rights.
The more I locked down the system, the more exceptions I discovered needed making. Not because it was hampering the user, but because the installed software was trying to do something it should have no right to do. I won't go into massive detail, but the most common mistake is assuming that it should have write access to its own program folder.
If you want to write a self update utility, that utility should be installed as a windows service with specific permissions to your programs folder ONLY. This is just one example of thousands that I could list where software developers go about things the WRONG way. Whenever you see that UAC message in Vista while not actually installing something, the developer has made a mistake.
These are not Vista specific issues. This is how it should have been done under XP in the first place. Unfortunately, it's been a vicious circle. Because of the poorly designed software ported from 95, users started running as admins, because everybody ran XP as admins, newcomers to software design assumed that was the way it was meant to be.
When you run XP under a restricted account (which by all rights you should be able to do without adverse effects) 99% of security issues suddenly vanish, with individual applications neatly sandboxed away from each other. Don't forget, the vast majority of modern malware targets 3rd party apps, not the actual windows platform these days.
This could be almost forgiven in small software houses, but Google, Mozilla and Adobe are some of the worst offenders. Adobe repeatedly shoot themselves in the foot when it comes to their installers. Despite massive academic discounts, schools would only buy a handfull of photoshop copies, simply because there was no way to automate the install and registration until CS2, and even then you really need a software deployment system to do it properly. The schools simply couldn't afford the labour involved.
I'm sure I'm not the only one who sees the irony that the UAC was Microsofts attempt to bitch-slap the rest of the software industry into implementing correct security and usage methodologies which they should have done 8 years ago for XP.
After 8 years of hair pulling over badly designed software, I'm certainly hoping that the warm(er) reception to win7 will act as a wake-up call to software developers who haven't really moved on since their days in C and VB6.
Biting the hand that feeds IT
