Re: Win xp sp2 firewall
- From: "Mr. Arnold" <"Mr. Arnold"@Arnold.COM>
- Date: Mon, 19 Mar 2007 01:16:00 GMT
Sebastian Gottschalk wrote:
Mr. Arnold wrote:
Volker Birk wrote:
Hexalon <Hexalon@xxxxxxxxx> wrote:
Microsoft would have a lot less security problems if people would stop
running as admins. I really doubt if that is going to happen anytime
soon. People tend to be resistant to change unless change is forced on
them.
Beside that all "Leythos" said is nonsense (as usual from him), the best
way Microsoft could stop people to work as Administrator would be not to
have this as a default.
Well, it's not and there is no sense crying over it. The XP FW does have some issues in it that it will allow FW rules to be set for an application that the end-user has no clue about upon installation of the application.
This requires Administrator rights. And then it applies to any Personal
"Firewall".
I have seen this with some .NET Windows applications that were using .NET remoting that I have developed and installed on XP with the FW active.
Yeah, actually one should be happy that Microsoft offers an explicit
interface for adding appropriate rules.
I am suppose to have some kind if warm and fuzzy felling about that, with MS track record? I don't think so.
For typical PFWs you either have to
use some dirty tricks (while risking that some idiots will scream "HACK
ATTEMPT !!!11")
At most, the application would say that an unauthorized program was trying to access the Internet, that you the user didn't approve. I am not a proponent of Application Control in PFW(s) but at least ask me.
If I don't want to be asked, then I'll disable it. But don't *you* the PFW start making rules, because I installed an application on the computer.
or you'll have to ask the user to add the rules (which
they're usually incapable of).
And MS and its PFW somehow knows the intent and knows the correct decision to make? MS has no business making any rules that the user doesn't know about, period. PFW, will you please prompt someone about what you're about to do?
I don't want MS with some FW to be making any rules without user permission about anything. I would say I don't want this and I would say that most wouldn't want it either.
There is no way that the XP O/S or the XP FW knew the intent of that application good or bad as a client or server. And yet rules were set for the applications to punch through the FW. You name another PFW that allows this kind of rule setting, which is ridiculous.
Any does. By design.
We are not talking about any. We are talking about the XP FW that will set rules dead in your face, if one knew to go check.
Unfortunately, Windows Vista makes it worse on total.
That's what I read.
.
- Follow-Ups:
- Re: Win xp sp2 firewall
- From: Volker Birk
- Re: Win xp sp2 firewall
- References:
- Win xp sp2 firewall
- From: Laura25
- Re: Win xp sp2 firewall
- From: Leythos
- Re: Win xp sp2 firewall
- From: Hexalon
- Re: Win xp sp2 firewall
- From: Volker Birk
- Re: Win xp sp2 firewall
- From: Mr. Arnold
- Win xp sp2 firewall
- Prev by Date: Re: Win xp sp2 firewall
- Next by Date: Re: Win xp sp2 firewall
- Previous by thread: Re: Win xp sp2 firewall
- Next by thread: Re: Win xp sp2 firewall
- Index(es):
Relevant Pages
|
