[thelist] More good news about Windows XP
Anthony Baratta
Anthony at Baratta.com
Tue Jun 26 00:33:57 CDT 2001
At 08:06 AM 6/25/2001, you wrote:
> >
> > **********
> > DDoS ATTACKERS RAISING THE BAR
> >
>
>I was on a MSFT investing message board where this was beaten to death.
>
>What those "security experts" (at the time, it was just one guy, actually)
>failed to mention was that Windows XP will come with a firewall turned on by
>default. So, this isn't as big of an issue as they're making it.
The expert in question is Steve Gibson. His article is here:
http://grc.com/dos/grcdos.htm . While he is a bit excitable, he is one of
the best computer programmers on the planet, IMvHO.
This issue while not as explosive as Steve makes it out to be, I don't
think that this is a trifling issue either. First off, according to what
I've read Raw Sockets will need "Admin" privileges. Second, the "free"
firewall. Between these two, if properly configured will help. But if
Mellisa or Kronikova are any indications of the gullibility of the average
user, then people who make a "living" setting zombie servers will have some
pretty powerful tools once they take over the unsuspecting user's PC. It's
just going to take some time.
Given the historic paucity of security in MS software it will be
interesting to see how strong by default the XP OS will be. Also it will be
interesting to see on how long it takes the real virus writers to exploit
holes and create trojans that take over the firewall as well as the OS and
remain in stealth mode until activated.
This could "slowly" grow to be a real problem. My hunches are also fueled
by how many people are still infected by the Sn*w Wh*te viri. XP will only
be as secure at the default install. (Note: for many years MS SQL server
was completely open by default after installation since the "sa" account
(root for the DB) was created WITHOUT a password. Many IIS boxes are open
to attack due to DEFAULT installations even today with Win2K. And this is
with Admins that should know better.)
Just think of the OS arena as a giant eco-system. As an eco-system
approaches a homogeny, a single virus can wipe out everything. MS OS's are
approximately 80% of ALL PCs in the world. Because of that we get these
"basic" viri running amok - and many of these machines are Win9x PCs
because that is what the newest user has. With XP and future OS's, virus
writers will have better plumbing to mess with and the same naive users
securing their boxes.
Yes it's not a tragedy right now, but it could grow into a serious problem.
It's a real problem right now. Heck as you can see with Steve's article -
pissing off a 13 year old can shut down your internet business. If that is
not a sad state of affairs, wait a few years. You ain't seen nothing yet.
---
Anthony Baratta
President
Keyboard Jockeys
Blatant Plug: Cool Jazz for a hot summer,
http://LisaMarie.Baratta.com
More information about the thelist
mailing list