Administrative access considered harmful

Silly me. I thought that, since I had built a Windows machine to run games, the new launcher wouldn't be a big deal.

Wrong.

The new launcher requires administrative access. Why? according to them, it's so it can update some registry entries.

This is... Not secure. Not sane. Not consistent with the very clear and consistent advice MS gives about developing for modern Windows.

Look, I know you guys don't get a vote in this crap. Just... if people are wondering why some of us log in less than we used to, or possibly never? Yeah, the thing where I now have to give a program written by a known-sleazy company unbounded admin privs in order to play the game is gonna be a factor there.

There is no excuse for this. If my game files are all writable by the user that actually runs the game, then we're done; the ncsoft launcher could keep its data in a location that doesn't require admin privileges to write. Then, in the absolutely certain event that there is a bug in the ncsoft launcher, it can't be used to escalate privileges.

Seriously, basic security concept: Don't run with privileges you don't need. If rewriting the program from the ground up in a different way lets you succeed without a privilege, you didn't need it; refer back to point A.

I dunno. I've been out a bit, and I'm actually sorta wanting to play again (kept my accounts active against such an eventuality...), but this launcher thing pretty much instantly killed my enthusiasm. Yeah, I know. You guys don't get a vote. Maybe you can pass on to the people who do get a vote. Of course, the way ncsoft is run, presumably there is no communication at all between the people mandating that you run the launcher and the people who are trying to find new ways every day to make it suck more.

A "known-sleazy" company?

What do you know that we don't?

Unfortunately, Microsoft's documentation also states that applications should be installed to the Program Files [(x86)] directory and that global (i.e. Not user-specific) settings should be placed either in the application directory or in HKLM (The All Users profile has been deprecated since Vista). These locations all require administrative rights (either directly or via elevation) to write to.

I would be genuinely interested to hear your suggestions for how else a mass-market application specifically designed to interact with frequently updated games, such as the NCSoft Launcher, could be designed so that it does *not* need administrative rights.

For those keeping track, I don't like the NCSoft Launcher, for several reasons, none of which are this

The launcher offers to take full ownership of any pertinent game directories, so that you do indeed fully own the files. If you were to install City of Heroes within C:\Program Files, then you would not own the City of Heroes directory. After taking ownership, no admin rights are required. The NCSoft Launcher asks for this privilege once, and fully explains what it is doing. After that, it never asks for admin rights again.

In contrast, the old launcher was written before UAC and limited user access existed.

Calling NCSoft shady is hearsay. If they are so shady, why do you give them your personal details and bank information?

User rights were never intended for security purposes, they were put in place so users would not be able to accidentally change something important.

A lot of games require admin rights. CoH is hardly unique in this aspect.

NCSoft Launcher does not request Ring-0 access, so no, it does not involve giving the program unbounded access.

That said, I don't experience your problem. It asked once and then shut up.

It asked once during install, explained why, never prompted again. Of course, my CoH directory is not even on my C drive, let alone anywhere near the Program directory.

The NCSoft Launcher also needs access to its own directory. You might want to take that into account.