Microsoft plugs Windows worm holes

TalkBack 14 of 33:

Next »

« Previous

• Thread View
• Flat View

Where is my apology?

Reread my post and quote me where I said that or be a grown up and reply to this post with an apology/i]

Guess you aren't grown up.

what you're saying is that you, and you alone, don't need to install Microsoft's endless patches, because you've taken PRO-ACTIVE measures.

Nope, not me alone, many people have performed these simple steps. And I will apply MS's patches just like I apply patches on my 3 Linux boxes. Oh, or are you suggesting that no one should apply Linux patches when they come out? There just isn't any need for panic because any exploits built to take advantage of these vulnerabilities won't work.

If only you'd let all those millions of other, long suffering Windows users in on your secret!

It's not a secret and MS makes it very clear in their vulnerability details exactly what system settings would have mitigated the issue. I'll never hold back and say that MS has good defaults but it is easy to change those bad defaults if you used the exact same common security sense you would use with Linux.

If only you could let Microsoft themselves know how to protect Windows PCs from exploits for which Microsoft haven't yet released a (retrospective) patch.

Sure! I personally don't run IE which right there means I'm safe from about 90% of exploits. However, read a couple of the mitigating factors and you will quickly see that defaulting all sites to the restricted zone will protect you from all drive-bys. Personally speaking though, Firefox has better functionality so security isn't the only reason I use. Second, I use restricted rights accounts. Since most malware authors are idiots and can't write code that requires the least amount of privileges to get the job done, pretty much all malware chokes and dies at the first "Permission Denied". Finally, I have an external NAT router which will keep out everything but a determined and dedicated hacker. Even that isn't necessary though since the built in Windows Firewall has yet to be breached from the outside.

Can you explain why, if "hardening" is an option, Microsoft have just had to release yet another slew of fixes?

Sure, right after you tell me why my Linux boxes get megabytes of patches every week and Apple also releases huge numbers of patches when holes are found. Patches should always be supplied by the manufacturer and applied by the customer. All I'm saying is that there needn't be a panic to install them if you've taken common sense, OS agnostic security measures to defend yourself.

So... where's my apology or are you too childish to give me one?

Posted by: NonZealot   Posted on: 11/15/06 You are currently: a Guest | Members login | Terms of Use

Alert moderator to an offensive message

Subscribe to this discussion via Email or RSS

SponsoredWhite Papers, Webcasts, and Downloads

• Why Isn't Server Virtualization Saving Us More? A Few Small Changes May Dramatically Increase Your Efficiency VMware Companies have rapidly adopted server virtualization over the past few ... Download Now
• Three Steps You Need to Know to Stop Data Loss Varonis Sensitive data exposed to misuse or loss... it is the stuff of nightmares ... Download Now
• The Impact of Virtualization Software on Operating Environments VMware Today's use of virtualization technology allows IT professionals to ... Download Now