Slashdot is quoting from ZDNet Australia that MS IT has considered restricting employees from having admin rights on their work PCs. Thank God they decided against it.

I actually had a conversation about this with Tomas Vetrovsky last year while we were both at Mobile & Embedded DevCon 2005 (Checkout MEDC 2006 here). Tomas told me then that maybe 10K MS PCs are already running with low-rights to their users. He thought it was only a matter of time before MSIT expands the practice to engineering staff as well.

However, LUA (Limited User Access)—or what is now called User Access Control—is already taking us in this direction. 100% unfettered access was great in the early days of the PC because it gave any amateur programmer the tools to build the next cool app. In todays world of worms and spyware, it could be a nightmare. Most users don’t ever download anything to their PCs, at least not knowingly. If only we could get all the apps to play along.