In a dual-boot Windows7/Windows 8 system with Hyper-V I disabled UAC to simplify system management and improve overall performance (otherwise you'll have to add permissions specifically for both users on all your drives in order simply tlo have access and
ability to manage your own files and folders) I hope that Windows 8 (as well as Windows 7) is not designed for people or PCs who have just a single C drive and manage all their files within that %userprofile% folder)
Prior to disabling UAC (it was more difficult to disable it in Windows 8) since you have to manually disable the "Run all admins in admin-approval mode" rule) I set DEP to be always on (not OptIn as is suggested for client syhstems), early malware detection
to load only good drivers (not good and unlknown as is WDP default), enabled integrity services in both systems, turned on HAL detection in both systems and set last known good configuration to be on at a bootmanager level. I have also changed sharing permissions
from everyone to guest.
Now I have improved system performance and better manageability BUT the only thing that's not working is Metro Style apps. I suppose they are not managed locally and that's OK.
The only thing I can't understand why UAC has become this "sacred cow" and we are all now being treated as little kids who are given just choices with respect to Metro Style APPS: either don't be a master of your own PC or you won't have any Metro style
apps.
I believe this a major issue. If these apps are so unsafe that one can't run them as Admin without own approval, then why offer them? If not, let's better make disabling DEP not an option instead of it being disabled by default in client systems while this
monstrosity of childish UAC enabled.
Windows 8 is the greatest OS I've seen, but it may fail just because of this stupidity that current Metro Apps settings entail. Then give it to kids and let them play.
T
Vladimir Shipitsyn
