blog postsPracticing Best PracticesJun 28, 2010 2:16 pm231 views For the past week and counting, I've been using a best practice for IT security and administration: not being an administrator. It's never been a secret that I oppose making individuals administrators at their request. It makes things much more involved to troubleshoot and usually just leads to more complicated work in resolving the problem. Admin rights can also make a malware infection so much worse since the entire computer can get infected instead of just the responsible person's profile. Given the state laws that require even free software to have campus approval, individuals do not have the knowledge available to know whether they can install a particular software title. In most cases, that removes what Admin rights are requested for.