Since I’m not familiar with how Windows handles user privileges in detail:
How big of a risk is it to remove the CURRENT_SESSION flag? Don’t have all programs I start or have running on Windows have the right to access my files anyway?
PS: I’m referring to a use case where I’m the only one with a user account on the machine.