Source: TechTarget
In the past, I talked about running programs in the administrator account. To develop the habit of using computers safely, it is a good idea to operate as an administrator. For new users, your data and computers are vulnerable to attacks from the Internet. Unexpected (or malicious) intrusion can make irreparable changes.
Then, there is a gap between understanding and execution, because it is not easy to process many daily tasks as an administrator unless you log on as an administrator.
But if you want to work in the network as an administrator, but you need to have fewer privileges to run some important programs (such as Web browsing) than usual, what should you do?
To meet the needs of this group, Microsoft launched the tool named DropMyRights. After it is used in Windows XP and Windows Serve 2003, this tool allows you to cancel part of the key tokens and privileges when running a program. For example, create a file in the % systemroot % system32 directory, stop or cancel the program, and change the registration value. All these tasks usually require access to work as administrators, and DropMyRights can revoke these privileges based on program processes.
This program is very simple to execute. Create a shortcut for DropMyRights and use the safe running executable path as the command line parameter. For example, if you install DropMyRights under c: dmr and want to run internet search securely, you can set C: dmrdropmyrights.exe "c: program filesinternet inclueiexplore.exe" as a shortcut. Three other command line parameters can be provided at the end of the command line. N is used as a common user (by default) to run applications. C is used as a user with Limited (customer level) to run applications. U is used as a non-trusted user to run applications. (The last one is not applicable to many applications .)
DropMyRights can be used as the MSI installation package from the slave (originally an example of running the program safely ).