Re: Beating Up On Microsoft...

From: Ed >:-) (Prog611752_at_aol.com)
Date: 09/16/03 

Date: Tue, 16 Sep 2003 11:33:10 -0400

While i agree we have to take our own precautions. I have to ask how
can we when the incompitent smucks at M$ can't even give us a program
that doesn't have it's own flaws making our jobs harder and then
putting their opwn spy crap in there that hides it's doing just like
any virus so when we block it from getting out take away our ability
to use the net or in general screws up the entire system.

On Thu, 11 Sep 2003 17:58:43 -0700, "Allen Robins"
<Allen.Robins@woodbine.com.au> wrote:

>I totally agree. While we expect MS to do their best, we
>all have the responsibility for security.
>Love your work
>Allen Robins
>Melbourne Australia

>>-----Original Message-----
>>While everyone is busy beating up on Microsoft...
>>
>>It might be a good idea to look at the Internet as a
>whole. Taking Microsoft
>>to task isn't going to accomplish as much as we might
>like to believe.
>>
>>Email is INSECURE BY DEFAULT.
>>FTP is INSECURE BY DEFAULT.
>>Just About Everything on the Internet is INSECURE BY
>DEFAULT.
>>
>>This is everyone's problem! We are in this together!
>>
>>We got into this Internet thing because it was obviously
>a good idea.
>>Unfortunately, we never bothered to take security
>seriously (until lately).
>>Now we are paying the price. The proper term
>is "diseconomy."
>>
>>Common Sense is what we need now. Common Sense must be
>backed up by simple,
>>affordable measures that are universally adopted.
>>
>>By now, several basic measures have been identified as
>absolutely necessary.
>>
>>1. Every Computer should run an anti-virus program.
>>
>>2. Every Computer that is connected to the Internet
>should be protected by
>>a firewall.
>>
>>Unfortunately, this stops short of what is really needed
>to put an end to
>>the present nightmare we are living and working in.
>>
>>Additional steps should be adopted universally.
>>
>>3. Every Computer that is connected to the Internet must
>have at least one
>>Verifiable Certificate to properly identify the owner. By
>default ignore any
>>computer that is not properly identified.
>>
>>4. Every Computer offering services on the Internet must
>have a Verifiable
>>Certificate that identifies the service provider and, if
>necessary, protects
>>the service using some form of authentication,
>encryption, digital
>>signature, etc. By default ignore any service that is
>not properly
>>identified and, if necessary, protected.
>>
>>5. Every Person who sends email over the Internet must
>have a Verifiable
>>Certificate that digitally signs the email. This digital
>certificate must
>>positively identify the sender. By default, any email
>that is not digitally
>>signed is rejected as SPAM.
>>
>>6. All email-related services should be Secured by
>Default using some form
>>of Authentication, Encryption, etc. to protect the
>communication.
>>
>>7. All other internet-related services should be Secured
>by Default, using
>>an appropriate level of Authentication, Encryption, etc.
>to protect the
>>communication.
>>
>>8. There are probably more steps that I do not know
>about which should be
>>taken.
>>
>>We have been responding to security issues by closing the
>gate after the
>>cows have gotten out. Moooooooo People! This is not the
>best way. Security
>>is best handled by a proactive approach that identifies
>threats and responds
>>to them BEFORE THEY ARE REALIZED.
>>
>>We can do better than we have been doing, but we are only
>going to make real
>>progress if our efforts are universal and proactive.
>>
>>I don't think that running Microsoft out of business is
>going to accomplish
>>anything.
>>
>>Gerard Marshall Vignes
>>
>>
>>
>>
>>
>>
>>
>>
>>.
>>

Relevant Pages

  • Re: Beating Up On Microsoft...
    ... > While everyone is busy beating up on Microsoft... ... > It might be a good idea to look at the Internet as a whole. ... > Verifiable Certificate to properly identify the owner. ... > of Authentication, Encryption, etc. to protect the communication. ...
    (microsoft.public.security)
  • RE: Inet Delivery
    ... > I'm running Ad-aware 6.0 to protect my computer and the last scan the soft ... > file and it's located in the program files inside the folder Inet Delivery. ... > When I check the digital signature I found that the certificate already ... > I try to find in Internet the source of the certificate and I found that ...
    (microsoft.public.windowsxp.help_and_support)
  • Beating Up On Microsoft...
    ... all have the responsibility for security. ... >Just About Everything on the Internet is INSECURE BY ... >Verifiable Certificate to properly identify the owner. ... >of Authentication, Encryption, etc. to protect the ...
    (microsoft.public.security)
  • Beating Up On Microsoft...
    ... While everyone is busy beating up on Microsoft... ... Just About Everything on the Internet is INSECURE BY DEFAULT. ... Verifiable Certificate to properly identify the owner. ... of Authentication, Encryption, etc. to protect the communication. ...
    (microsoft.public.security)
  • Re: My words
    ... Internet Connection Firewall for SP1 and Windows Firewall for SP2 ... download all the security updates - Critical updates with Express ... Get into Safe Mode and password protect it. ...
    (microsoft.public.windowsxp.newusers)