True story

If each user has a limited account, everyone's data is more secure.

Country: United States

Year: 2009

Background: According to FaceTime Communications Inc., a U.S.-based Internet security company, the popular children's website Neopets was the target of an attack. A hacker enticed children to download a tool which, in reality, was malicious software designed to collect sensitive data from their parents' online transactions.

Consequences: If parents and children use the same account on the same computer, their actions affect the security of each other's data. When each individual uses a dedicated (and limited) account, the data of other users is more difficult to access and therefore more secure.

Read the article

Shared computer security

A computer does not necessarily have only one user. It often happens that several individuals use the same computer, as may be the case in a family. 

A shared computer needs appropriate security. In fact, when several individuals use the same computer differently, the security risk for all users increases.

Caution

If users are less careful when they use the shared computer, they may make it vulnerable to an attack from the Internet. Here are a few examples of high-risk uses: 

  • Installing and using file sharing software
  • Downloading from software, file sharing websites, or websites with illegal content
  • Surfing on websites with illegal, slanderous, discriminatory or questionable content
  • Voluntarily disabling the antivirus software, firewall and/or spyware blocker
  • Failing to update the following software: antivirus, spyware blocker, operating system and browser

When users later use this computer, their files, information and, ultimately, their identity could be at risk.

How can you protect yourself?

  • Create a limited use account for each user of the shared computer
  • Use a safe password for your account and ask other users to do the same for their account
  • When you have finished using the computer, log off your account
  • Appoint an individual to manage the Administrator's account
  • The manager of the Administrator's account must: 
    • Use a safe password for the Administrator's account
    • Create and manage limited use accounts
    • Ensure that the computer is secure
    • Make sure that all of the installed software is safe
    • Ensure that the following software is regularly updated: antivirus, spyware blocker, operating system and browser
    • Activate the password request after putting your computer on stand by and exiting the idle screen

IMPORTANT: The manager of the Administrator's account must not use this account for daily activities! Instead, this account is intended for limited use.

What is the difference between an Administrator's account and a limited account?

The Administrator's account has all the rights on a computer. Its owner is thus able to carry out a wide range of tasks, from installing, using and updating software, to changing operating system settings and managing user accounts.

However, using this account involves greater risk, because, while its users may carry out several tasks, malicious software can do likewise. For example, a Trojan horse would have everything it needs to cause serious damage.

Also, if Administrator account users are inexperienced and try to change certain operating system settings with which they are not familiar, they may make irreparable mistakes.

The limited account is designed to more safely use a computer, since its rights are limited. If malicious software infiltrates, just like limited account users, its actions will be restricted. There is therefore less risk of incorrect or improper use.

Haut de page