On TechRepublic: 10 lame phrases to cut from your resume
BNET Business Network:
BNET
TechRepublic
ZDNet
TalkBack 36 of 71:
Next »
« Previous
PatchGuard is somewhat reactionary, but it protects the user from themself
You're right, PatchGuard protects the system from malicious kernel drivers, so it is somewhat reactionary in nature.

But how do kernel drivers get installed? Only by someone with administrator privileges. PatchGuard protects against mistakes made by administrative users.

A properly configured system won't have you running as admin, so you won't be able to install malicious kernel drivers. In other words, if you were using the already-existing security mechanisms provided by NT since version 3.1 (the secure and robust user security model), you wouldn't need PatchGuard.

(I'm not making a statement about the *practicality* of using those security mechanisms, though in Vista they have made significant improvements via UAC.)

Remember, the primary purpose of such reactionary anti-malware products is to protect the user from themselves, not to protect against random security flaws in the OS. And I'd wager that the majority of all security-related problems people have with Windows, fall under the "protect the user from themselves" category.
Posted by: PB_z   Posted on: 10/24/06 You are currently: a Guest | Members login | Terms of Use
Reply to Story Reply to Message

Alert moderator to an offensive message

Subscribe to this discussion via Email or RSS

Windows Defender. Are you serious?  rondev | 10/24/06
It's possible...  Anton Philidor | 10/24/06
It's possible...  rondev | 10/24/06
I've yet to find any AV software does't cause problems  voska | 10/24/06
Ditto!! My latest nightmare...  techboy_z | 10/24/06
Also, this has actually changed my position on MS' kernel debate....  techboy_z | 10/24/06
Sorry but,  jacec | 10/24/06
HEY YOU  DemonX | 10/24/06
The problem is detection  zmud | 10/24/06
The problem is detection  rondev | 10/25/06
Easily forgotten  clockmendergb@... | 10/24/06
NIS 2007  gforbes@... | 10/24/06
Symatic Internet Security ROCKS!  tecwrite@... | 10/24/06
Proofreading  Ole Rellik | 10/25/06
Proofreading-2  Non Compos Mentis | 10/25/06
Microsoft Defender: Are you serious?  rondev | 10/25/06
"Analysts" having an off day.  Anton Philidor | 10/24/06
Message has been deleted.  opensourcepro | 10/24/06
Images  ddagolfr | 10/24/06
Got it, deployed it, love it!!!  Mike Cox | 10/24/06
Microsoft's free anti-spyware hits market  Loverock Davidson | 10/24/06
Defender  ddagolfr | 10/24/06
I think I know why that option doesn't exist  Zeppo9191 | 10/24/06
It will ask, if you want  mdemuth | 10/24/06
It will ask...  ddagolfr | 10/24/06
Malfunction or misconfiguration?  soporte@... | 10/29/06
windoze defender against what?  Linux Geek | 10/24/06
Will you ever make a psot worth reading?  No_Ax_to_Grind | 10/24/06
Maybe he's waiting for you to provide an example. (nt)  Zeppo9191 | 10/24/06
Funny.......  linux for me | 10/25/06
Linux Geek  ddagolfr | 10/24/06
Linux Geek  rondev | 10/24/06
Makes a valid point....  techboy_z | 10/24/06
Because when they try to secure the OS, competitors whine  PB_z | 10/24/06
I think you will find that  zkiwi | 10/24/06
PatchGuard is somewhat reactionary, but it protects the user from themself  PB_z | 10/24/06
PatchGuard protects against mistakes made by administrative users  Ole Man | 10/24/06
Ole Man: legitimate adminstrative use is different than patching the kernel  PB_z | 10/24/06
Shut up, fool.  James T. Kirk | 10/25/06
I wonder how long it will be...  zkiwi | 10/24/06
i just hope for a severe lawsuit  Quebec-french | 10/24/06
Why?  voska | 10/24/06
Microsoft is sure handing out the freebies these days aren't they?  Shelendrea | 10/24/06
They had out lots of freebies  Confused by religion | 10/24/06
Dang it  Confused by religion | 10/24/06
You get exactly what you pay for, don't you.  msolgeek | 10/25/06
You get exactly...  rondev | 10/25/06
Well, as long as you are Gen-u-wine.  James T. Kirk | 10/25/06
Windows Defender Update  rondev | 10/24/06
I might go for it  Richard B | 10/24/06
Windows Validation and Linux  AlexiHelligar | 10/24/06
I'm very much satisfied with MS Defender  parvez@... | 10/24/06
Satisfaction is assured when...  msolgeek | 10/25/06
Micro$oft Windoze Defender  benf_z | 10/24/06
Fed up with spyware, viruses, spam  paulw@... | 10/25/06
Right on  TN-Limey | 10/25/06
Windows Defender = Mac OS/X  scole3@... | 10/25/06
Again just the same old drivel.  derekgore | 10/25/06
It's ok for free...  BitTwiddler | 10/25/06
It's ok for free...  rondev | 10/25/06
PB_Z RE: Ole Man: legitimate adminstrative use is different  Ole Man | 10/25/06
from one ole man to another...  Castanet | 10/25/06
Johnny On The Spot  Ole Man | 10/29/06
Bill Gate$  derekgore | 10/25/06
Oh grow up....take the blinkers off  Castanet | 10/25/06
Create, donate, or get out of the way.  derekgore | 10/26/06
Oh no... I'm an observer, not a doer.  Castanet | 10/26/06
We agree on Ghandi!  derekgore | 10/27/06
OK - I sort of apologise, no problem. 8-)  Castanet | 10/28/06
Defender does work, how effectively we'll see over time.  derekgore | 10/28/06
Windows Defender  brianheup | 10/27/06

What do you think?

SponsoredWhite Papers, Webcasts, and Downloads

advertisement
advertisement
Click Here
  • Smart Tech Expert advice on innovations in healthcare and the green technologies that make it happen. Find out more
  • Smart Business Discussion and advice on management issues that revolve around making your world smarter and more useful. More Smart Advice
  • Smart People The best and worst moves in the management and strategy trenches. Learn More