Posted on 12/10/2006 3:30:58 PM PST by Zakeet
NEW YORK - Microsoft Corp. took great pains to improve security in its newly released computer operating system, Windows Vista, redesigning it to reduce users' exposure to destructive programs from the Internet. Outside researchers commend the retooled approach yet they also say the changes won't make online life much safer than it is now.
Why not? Partly because of security progress that Microsoft already had made in its last operating system, Windows XP. Also because a complex product like Vista is bound to have holes yet to be discovered. And mainly because of the rapidly changing nature of online threats.
Sure, Microsoft appears to have fixed the glitches that used to make it easy for viruses, worms and other problems to wreck PCs. But other avenues for attack are always evolving.
"Microsoft has made the core of the operating system more secure, but they've really solved, by and large, yesterday's problems," said Oliver Friedrichs, director of emerging technologies at antivirus vendor Symantec Corp.
That claim would not please Microsoft, which touts Vista's improved security as a big reason why companies and consumers will want to upgrade to the new operating system.
(Excerpt) Read more at news.yahoo.com ...
And of course, Microsoft disagrees.
How soon will you begin using Vista? Probably never 14% I'm using it now 1% 0-3 months 1% 3-12 months 19% Not until I'm forced to 65%There were 3,519 responses.
My prediction: security will be a problem for Vista out of the box. Then, by about the middle of 2008, Microsoft will have battened down the hatches and Vista will be pretty solid.
Of course, you could install linux... Ubuntu is supposed to be pretty cool (ROFL - my "you could install linux" comment got some vehement opposition in the last Vista thread).
One FReeper (I think it could have been Rush Limbaugh in disguise) suggested that you buy a daggone Mac and be done with it. But, and I say this with all sincerity, friends don't let friends use Macs.
I just spent the best part of a day patching an old XP laptop up to current levels (unused for about a year) .. Vista is built on the same modules as XP and 2000 and NT4 , just some fancy graphics and the latest security patches ... anything that can suck up 200 times the ram as the first mainframe I worked on just to load the OS means that there are a TON of holes to exploit ... I would actually pay for a OS from MS if they could fit it onto 1 CD (not DVD) and it was solid and fast I don't want big bulky and flaccid I just need compatibility and support.
if you think rewritting a TCP/IP stack is a good idea, you know *nothing* about security. as an example, the Vista stack became immediately succeptible to the ancient "Land" attack which was fixed in Windows 95!
Microsoft has painfully had to clean up their present stack (which they *STOLE* from openBSD for Window2000) over a period of years. Given that they are revisiting each and every TCP/IP stack weakness from the last 10 or 15 years, things do not bode well for Vista *at all*
"Show me just what Mohammed brought that was new, and there you will find things only evil and inhuman, such as his command to spread by the sword the faith he preached." -Manuel II Paleologus
"Show me just what Mohammed brought that was new, and there you will find things only evil and inhuman, such as his command to spread by the sword the faith he preached." -Manuel II Paleologus
On the other side of the equation, consider this:
90% of all email running across Earthlink's mail servers is spam. Of the spam, 90% of it comes not from real mail servers (regardless of OS) but from compromised Windows machines.
So, while you may not have had trouble, there are millions out there who have and it costs us all.
Sounds like a correct regurgitation of a Security Now podcast from earlier this year. Good job!
Disclaimer: Opinions posted on Free Republic are those of the individual posters and do not necessarily represent the opinion of Free Republic or its management. All materials posted herein are protected by copyright law and the exemption for fair use of copyrighted works.