If you've ever used M$'s WinXP-SP2 firewall, you'll have noticed that when it pops up a window asking you if you want to allow or block an application (done when that app opens a socket) during that time that the pop up window is open, that app can still freely talk over the socket! 8O
If M$'s firewall is that insecure, why on earth would I trust their antivirus or any other security app? Hell, has M$ even stopped using that highly insecure C$ share yet? :roll: M$ doesn't know didly squat about security.
So thanks, but I'll continue to use ZoneAlarm, Grisoft AVG, etc. and actually have security. :mrgreen:
And the cost to me for actually being secure using freeware? Nothing.
Okay, so that would what, theoretically fix the buffer overflows that were supposedly already fixed by the non-execute blocks?
What about that big target, the C$ share used on every Windows box by default, that Windows needs to run properly, that you can't change the security options of, that 'hides' itself ever so poorly, and that every hacker knows about?
What about a firewall that when detecting a program using a socket communication will allow it to communicate while it pops up a window asking you if you want to block it?
What about the million and one services turned on by default, that almost no one uses a ton of, that are just waiting for a hacker to connect to?
Need I go on?
M$ knows security like McDonald's knows filet mignon.
Maybe Windows Vista really will be different, but I doubt it. They might fix a few things, but I doubt they'll really make it all that secure.
Services by default will be disabled in Vista. You go through a wizard and tell it what you use and it will enable/disable services for you.
I believe he mentioned the C$ and IPC$ are going away.
Vista is supposed to be as stable as win2k3 server, which is damn good.
The firewall has been completely redesigned from what he was saying (he was not a microsoft guy, but MCSE 2k3 and he did bash M$ a lot). It's not a end all solution, nor perfect, but it's a step inthe right direction.
Microsoft - "More secure, less useable. More useable, less secure." What's the happy medium?
Vista is more based off win2k3 server.. he named off a bunch of things that were big concerns.
Vista is supposed to be the most secure out of box Windows home OS.. like Win2k3. Win2k3, by default, has a lot of services disabled.
If Vista comes out anything like 2k3, I'll be impressed.