Re: lets vote for better security

From: Michael Pelletier (mjpelletier_at_mjpelletier.com)
Date: 04/10/05 

Date: Sun, 10 Apr 2005 01:47:19 -0700

Robert Moir wrote:

> Michael Pelletier wrote:
>
>> Say what? Frontpage is not a security risk? Outlook express either?
>
> Frontpage the program? Not in a default XP install it isn't, because it
> doesn't exist in a default install. That '\program files\Microsoft
> Frontpage' directory you're about to reply and mention, calling me an
> idiot for not noticing? - Empty

Actaully, the OP said he would like to be able to uninstall some stuff. TRhe
quote is below:
> 1. let me uninstall junk (outlook, frontpage, .net, others)

You said:
You can. You might be thinking of Outlook Express. You can but I wouldn't
and in any case it's not a security issue. Neither is FrontPage.
 
I then comment on your comment by question the statement about outlook
Express and FrontPage not being a security risk. I did not say anthing
about it being installed or not. And I was not about to call you an
idiot :-)

> Outlook Express? Not such a good record but the most recent versions are
> doing better. Which of course doesn't matter, if you're not using it then
> it still shouldn't be there.

Still history considered, I would feel better about NOT having outlook
express installed by default.

>> If you are not using them you should be able to delete them.
>
> Agreed there. I'd much prefer not to have a bunch of crap installed that I
> don't plan to use, as this pushes up the cost of securing a system, with
> zero returns if I don't even use the stuff i'm securing.
>
>> Outlook/Outlook express are in the top 5 MS applications with the
>> worse security problems.
>
> Outlook and Outlook Express are totally different applications despite the
> similar names, and Outlook is *not* installed as part of Windows. If we're
> gonna talk about what Windows does wrong, can we please be clear about
> what it is that Windows does?

Sure. I was not saying they have the same code (or code base). An yes, I
know that outlook usually gets installed with office, blah, blah, blah.
This comment again is adding to the statement about outlook express and
frontpage NOT being a security risk.

>>Frontpage extentions are not even allowed on
>> most web sites, again because of the problems....
>
> Agreed again, but totally irrelevant to the debate at hand. Again, if
> we're gonna talk about what Windows does wrong, can we be please be clear
> about what it is that Windows does.
>

...and again this is adding on the comment you made about these two apps NOT
being a security risk.

>>>> 2. the os shouldnt install it back after i delete the junk
>>>
>>> It doesn't. Except for Outlook Express it might. That's because it
>>> is an integral part of your OS. I suggest changing OS's if you
>>> don't want it.
>>
>> Lame. Lame excuse...The only reason you CAN NOT delete it is because
>> MS WANTS you to have it...period.
>
> Quite.
>
>>>> 3. easier way to uninstall or dont install stuff i dont need/want
>>>
>>> Well this one I actually agree with but not broadly as you have
>>> stated.
>>
>> They sure should allow this. Will they? Depends on how much money is
>> involved...and marketing money is involved.
>
> What is so difficult about the current procedure for uninstalling
> software? Do you mean that more Windows components should be included in
> the current uninstall method, so that we could properly remove WMP, IE, OE
> in this way? I'd agree with that. If you mean something else then please
> tell us what exactly is wrong with the current uninstall method?

Honestly, my comments were about your security comments and have nothing to
do with the debate on uninstalling software in a windows environment...

Michael 

-- 
"Microsoft isn't evil, they just make really crappy operating systems." -
Linus Torvald

Relevant Pages

  • ms email recieved?? Or a hoax? How do we let Microsoft know?
    ... resolves all known security vulnerabilities affecting MS ... MS Outlook and MS Outlook Express as ... Recommendation Customers should install the patch at the ... Microsoft Product Support Services and Knowledge Base ...
    (microsoft.public.windowsxp.security_admin)
  • Re: Outlook email -- A program is trying to automatically send e-mail on your behalf .
    ... Also, the security warning only comes up once per session, not once ... To use Outlook Redemption first go to this site:- ... The easiest option is to use the Install ... txtAttachments field holds the full pathname to any attachments to be ...
    (microsoft.public.access.forms)
  • Re: email being sent by someone else
    ... Close Outlook holes or change mail handling program. ... Install security updates from Microsoft ... tools from Norton and it still ...
    (comp.security.misc)
  • Security issue
    ... all known security vulnerabilities affecting MS Internet ... MS Outlook and MS Outlook Express as well as ... Recommendation Customers should install the patch at the ...
    (microsoft.public.windowsxp.security_admin)
  • Re: lets vote for better security
    ... Not in a default XP install it isn't, ... Frontpage' directory you're about to reply and mention, ... Outlook and Outlook Express are totally different applications despite the ... and Outlook is *not* installed as part of Windows. ...
    (microsoft.public.security)