Re: Online Arrmor

G <geoff915@xxxxxxxxx> wrote:
Log files isn't usually the primary reason someone uses a software
firewall.

That's true. The primary reason most commonly seen is that people
don't understand that they make their PC more insecure with "Personal
Firewalls" instead of making it more secure.

Rather than continue this back & forth, why don't you just share exactly
how an average Windows user on an internet-connected computer can fully
protect himself?

He has nearly no chance to "fully protect". In spite of all these
"Personal Firewalls" and virus scanners, have a look on all those
botnets. Probably your PC is a zombie, too. What do you think why
they're here? What do you think how Spam is sent today, how the DDoS and
blackmailing attackes are carried out?

Microsoft had the chance to make Windoze much more secure by not
offering network services in the default configuration instead of
filtering, by not using ActiveX as a browser plugin concept because
depending on IUnknown is hara-kiri, by not using the worst browser ever
named "Internet Explorer", by making a sensible concept for privilege
separation the default instead of everyone being "Administrator" and
by not opening useless popups like with Windows Vista.

By becoming sensible.

The user has no chance. People like you are telling him, that he can buy
security in boxes. And he wants to beleive that, he does believe.

The opposite is true.

Security is nothing, which can be added to a system in any way. It is
an aspect in the design of a system, which has to be regarded while
system design and implementation.

People who are using Windows can only try to fix the worst of the design
flaws - deactivating network services instead of filtering like Torsten
is telling on <http://www.ntsvcfg.de>, not using Internet Exploder,
being very careful with Java Applets, JavaScript and Flash because of
their b0rken security concept which relies on DNS, not believing too
much in HTTPS because of the b0rken design of depending on DNS for
certificate assigning, too, and being conscious of how to handle
certificates and how to manage keys properly.

Most people are not able to do this. And this is the reason for the
millions of Windows PCs which are all zombies.

Probably like your Windows PC, too.

Yours,
VB.
--
Bitte beachten Sie auch die Rückseite dieses Schreibens!
.

Relevant Pages

  • Re: A 6% fix from Microsoft Security Bulletin MS03-040 - 828750
    ... >> the vendor knows of a defect that's being exploited In The Wild, ... That's why I see prudent modular design as being as much in MS's ... complete the job before Windows starts writing to disk. ... ignoring personal data scope; that's what SR tries to do. ...
    (microsoft.public.security)
  • Re: A 6% fix from Microsoft Security Bulletin MS03-040 - 828750
    ... >> the vendor knows of a defect that's being exploited In The Wild, ... That's why I see prudent modular design as being as much in MS's ... complete the job before Windows starts writing to disk. ... ignoring personal data scope; that's what SR tries to do. ...
    (microsoft.public.security.virus)
  • Re: A 6% fix from Microsoft Security Bulletin MS03-040 - 828750
    ... >> the vendor knows of a defect that's being exploited In The Wild, ... That's why I see prudent modular design as being as much in MS's ... complete the job before Windows starts writing to disk. ... ignoring personal data scope; that's what SR tries to do. ...
    (microsoft.public.win2000.security)
  • Re: Linux Photoshop
    ... Many Windows applications do use them. ... Which has absolutely nothing to do with application design so again I ... Most Microsoft apps have 180 day time bombed versions. ...
    (rec.photo.digital)
  • Re: OT: Another Microsoft Back Door Is Discovered
    ... You design a piece of programming code to accomplish some specific ... The main problem with Windows and these hack attacks is NOT that it is ... same time design that lawn mower with the above criteria in mind. ... routines within Windows. ...
    (misc.survivalism)