Re: Microsoft Firewall vs ????

Kayman wrote:


The best defenses are:
1. Do not work in elevated level;


Doesn't matter; in Windows Vista it's trivial to elevate with any consent.

Day-to-day work should be
performed while the User Account Control (UAC) is enabled.


UAC is trivial to spoof, and since it doesn't apply to all administrative actions it's trivially insecure. Even further, since there's no need to approve administrative actions if an elevated program is running in the desktop context of an unprivileged, it's even more insecure.


4. Reconsider the usage of IE.


There is nothing to reconsider. IE is a perfectly fine ActiveX Rich Platform Client, a wonderful platform to implement complex software clients in a trusted environment.
The only problem is that some people seem to understand it a webbrowser, and consequently abuse it as such. Obviously a stupid idea.

7a.If on high-speed internet use a router as well.


Huh? Why?

9. Regularly back-up data/files.


And why isn't this #1?

11.Utilize a real-time anti-virus application


Wonderful idea. Introduce a horribly buggy and pretty useless piece of software....
.