I am a one man IT shop here, we are a non-profit with 65 XP SP3 PCs on a Windows 2003 domain. We (I) will have to implement a policy of not running as Administrator - of course it seems everything I touch needs admin privaleges.
How do other people do this practicaly without logging in and out a dozen times a day?
Part two - does anyone use a software solution? There must be something less painful than runas! (And no, Linux doesn't count, sorry...)
Unfortunately using better authentication (tokens) would not mitigate the risk of reading email as administrator...