 linicxCaveat EmptorPremium
join:2002-12-03
United State | Ho Hum Much ado about nothing. I'd like to see a real improvement like changing the e-mail to a secure cross-platform system that can't be used to deliver destructive payloads.
--
Macintosh: no windows, no gates and the Apple inside |
|
 SteveI know your IP addressConsultant
join:2001-03-10
Yorba Linda, CA
kudos:5 | said by linicx:
Much ado about nothing.
Then you haven't been paying attention: XP/SP2 is an enormous improvement in security on many fronts, not just popup blockers. This should have happened long, long ago, but I don't know anybody who's really looked at this who says "it's nothing". Not even Microsoft haters.
Analysis here
--
Stephen J. Friedl * Security Consultant * Tustin, California USA * my web site |
|
wentlancYou Can't Fix Dumb..
join:2003-07-30
Maineville, OH | Who cares how improved this is? So MS incorporated something that you can get off the internet for free. And they did it two years too late. No thanks, I'll trust Ad-Aware, Spybot S&D, and 12-Ghosts. They've been doing it longer, and are already installed on my system. Combine those with a hardware firewall, and the obligatory lame MS firewall, and I'm pretty secure.
puritan |
|
 yockTFTCPremium
join:2000-11-21
Miamisburg, OH
kudos:3 | reply to Steve
I read your analysis a month or so ago, Steve, and I must say I like what's ahead for MS and Windows. I never knew that the NT security model was so complex, knowing that really brings light to the problems we all run into when trying to run programs as a non-administrator. With some of the features software developers will now be forced to use, hopefully we'll see better implementation on the part of software developers, rather than having to be an administrator to run everything.
Somewhat akin to all of those *nix docs telling you to 'chmod 777'  |
|
|
|
 trparkyApple... YUMPremium,MVM
join:2000-05-24
Cleveland, OH
kudos:1
 ·Time Warner Cable
 ·Time Warner VOIP
 ·AT&T U-Verse
2 edits | reply to wentlanc
The main problem here is that most users are dumb and that they need to have everything spoonfed to them.
said by wentlanc:
I'll trust Ad-Aware, Spybot S&D, and 12-Ghosts. Combine those with a hardware firewall, and the obligatory lame MS firewall, and I'm pretty secure.
Well, thats fine and dandy, but I dare you to ask "Joe Somebody" what these programs are, what they do, how much they cost, and how to get them. I guarantee that you will get nothing but a 'head-scratch' in reply.
Face it people, people are stupid and they need the stuff practically handed to them. This is what Microsoft is doing with SP2, making the stupid people wake up and take notice. They are handing the tools to them and making it so that it is going to be very difficult for "Joe Somebody" to forget to enable a firewall or update their antivirus program.
There are people out there that don't even know the difference between a USB port and the power button! Those are the people who Microsoft is targeting with SP2, not you and me who know that those programs are available.
--
WedgeAntilles250 |
|
yockTFTCPremium
join:2000-11-21
Miamisburg, OH
kudos:3 | Not even just the stupid. Why should I download 3 programs that do something my OS should be protecting me from? Simplicity is devine... |
|
linicxCaveat EmptorPremium
join:2002-12-03
United State Reviews:
·Cass Communicati..
 ·CenturyLink
| reply to Steve
"XP/SP2 is an enormous improvement"
I hope so because I did not like the original. However, this bypasses the original comment. What has this MS version done about the trojans and worms it attracts in email that is different from. or an improvement over, any other version of software that MS has released ... say .. in the last six years?
A computer, imho, was meant to turn on and use. It should not have to be jury rigged into a miniature Fort Knox so the user can surf and get email. When MS meets and beats this challenge then they will have a fine product. Until then ... caveat emptor: Let the buyer beware.
--
Macintosh: no windows, no gates and the Apple inside |
|
wentlancYou Can't Fix Dumb..
join:2003-07-30
Maineville, OH | reply to trparky
And these same dumb users are going to manage to patch their OS also, huh? It is too little too late. Most people who would do it, already have software loaded to eliminate popups, spyware, and other regular nuisances.
puritan |
|
wentlancYou Can't Fix Dumb..
join:2003-07-30
Maineville, OH | said by :
What the hell Ad-Aware, Spybot S&D, and 12-Ghosts have to do with security fixes and google like pop up blocker minus all bullshit it comes with and better activex options? Not everyone can afford or configure hardware firewall my freind.
Everything. SP2 implements the same types of security programs. And if you cannot take a $20 router out of the box and change the admin password on it, you've got issues.
puritan |
|
wentlancYou Can't Fix Dumb..
join:2003-07-30
Maineville, OH | According to the article, only 50% of internet users run XP. So even if they got 60% saturation for SP2, they would only cover 30% of the web users at the most.
Too little, too late.
puritan |
|
wentlancYou Can't Fix Dumb..
join:2003-07-30
Maineville, OH | NAT Firewalls come configured, with fairly decent security settings, out of the box. Change the password and put it online. I have not gotten a single virus or worm on an unpatched Windows 98 installation that has been up for months as a test with a simple firewall. $20
puritan |
|
wentlancYou Can't Fix Dumb..
join:2003-07-30
Maineville, OH | Never seen ppoe before. I have seen PPPOE though.
Like I said. Minimal configuration, $20. What is your point exactly?
Your average user does not even know that they are a problem. They run Win98, which is unpatched, on DSL or cable connections. I have fixed plenty of them, and when I install their firewalls, or tell them what to run to prevent their slowness and problems, they always say, ,"That's it!?"
puritan |
|
wentlancYou Can't Fix Dumb..
join:2003-07-30
Maineville, OH | My point is, and always has been, that Microsoft is 2 years too late with their deep concerns of spyware, popups, etc.
This is just another attempt, by Microsoft, to save face on their lack of security. It is also an attempt to remain a monopoly, by including more additional software, which they can claim is a functional part of the OS. Then they can charge more for the OS whether you use it or not.
They should spend more of their time fixing their OS, not branching into new arenas. They should work more with 3rd party software developers to ensure better functionality between the kernel and 3rd party software.
But hey, you can't get richer, and further lock in your monopoly, by helping someone else sell apps, can you?
I bet MS virus scan is next.
puritan |
|
SteveI know your IP addressConsultant
join:2001-03-10
Yorba Linda, CA
kudos:5 | reply to linicx
said by linicx:
What has this MS version done about the trojans and worms it attracts in email that is different from. or an improvement over, any other version of software that MS has released ... say .. in the last six years?
This is an absolutely fair question.
Outlook Express in XP/SP2 has an "Attachment Execution Service", which is much more fine-grained than the dopey "don't allow attachments" that OE used before. And if you do decide to open an attachment against its recommendations (by any of a half dozen ways), it is opened in a way that's guaranteed to trigger A/V software if it's installed.
The main beneficiaries are the n00bs who don't know anything - it will be much easier to be secure without knowing what you're doing. Those who want their own firewall or popup blocker or the like can still use them, but the default users is much more protected.
Really: this is not an incremental set of minor features. This is a complete overhaul of security, and I don't believe I've found anybody who has studied well who wasn't impressed.
Steve
--
Stephen J. Friedl * Security Consultant * Tustin, California USA * my web site |
|
