Vista Security Tested
Page 1 of 3 123 LastLast
Results 1 to 10 of 28

Thread: Vista Security Tested

  1. #1
    Super Moderator: GMT Zone nihil's Avatar
    Join Date
    Jul 2003
    Location
    United Kingdom: Bridlington
    Posts
    17,178

    Vista Security Tested

    It appears to have out performed earlier Windows versions?

    Interesting that a lot of the improvement seems to rely on you re-booting.......... so much for "up time" bragging rights

    http://www.snpx.com/cgi-bin/news55.c...0850710?-11434
    If you cannot do someone any good: don't do them any harm....
    As long as you did this to one of these, the least of my little ones............you did it unto Me.
    What profiteth a man if he gains the entire World at the expense of his immortal soul?

  2. #2
    Senior Member
    Join Date
    Feb 2003
    Location
    Memphis, TN
    Posts
    3,747
    Interesting....but I freaking hate it kinda.

    I put vista on my laptop and its always asking "Are you sure you want to Continue?"


    If I click on device manager, I get that popup....change network settings, change the time, open a properties window, connect to a network, uninstall a program.

    Hell, if I go to a command prompt and type
    ipconfig /release

    it tells me I need to have administrator privilges to execute that command, but my account is the adminstrator account!

    Its pretty, but I don't like it...to much hassle for a power user i believe.
    =

  3. #3
    Super Moderator: GMT Zone nihil's Avatar
    Join Date
    Jul 2003
    Location
    United Kingdom: Bridlington
    Posts
    17,178
    Yes, I can imagine that it all seems rather alien to people who are used to using the command line, and having an all omnipotent account.

    Microsoft have always been criticised for producing insecure operating systems. Actually they were mostly insecure out of the box and could be hardened by changing the settings and/or installing third party software. Now they have changed their approach.

    I have been running a variety of third party software since the days of Win 95 that do pretty much the same thing

    I don't think our Royal Navy will be adopting it (see "Windows for Warships" thread) as I can just imagine the scenario..................

    PWO: "Action stations! Action stations! air alert red! incoming! incoming! don antiflash"

    Vista: "Launch countermeasures? are you sure you want to continue?"

    This is a true story from my days in Electronic Warfare and Countermeasures:

    Two Strathclyde (Scotland) police officers were out with their shiny new hand held radar speed trap hoping to bag a few motorists.

    Along came a Convair Tornado GR4 all weather, all terrain, low level strike fighter going to his live firing practice.....................

    One of the police officers wondered how fast he was going so turned his radar on him..............

    My mob's ECM detected this "unmapped" radar with an unknown "signature" that was similar to those of shoulder launched surface to air missiles.........

    It jammed the radar in the "on" mode and prepared to automatically launch a Maverick air to ground missile at the offending signal............

    The pilot was warned of this and aborted the launch..........."are you sure you want to continue?"

    The real problem was that it was a Royal Dutch Airforce Tornado and did not recognise the new British radar.

    The moral of the story:

    Always keep your signature/pattern files up to date, and your OS and applications patched.

    And if you are a traffic cop and your radar suddenly locks at 350mph .............. throw it away and run like hell!
    If you cannot do someone any good: don't do them any harm....
    As long as you did this to one of these, the least of my little ones............you did it unto Me.
    What profiteth a man if he gains the entire World at the expense of his immortal soul?

  4. #4
    Senior Member Syini666's Avatar
    Join Date
    Aug 2001
    Posts
    551
    Ahahah, that is the most entertaining thing I have read here nihil in ages, and it gives me lots of ideas that were I to entertain them beyond my mind and into the real world would probably wind me up with a lot of 20mm holes in my body.

    Back on topic that has to be a very annoying feature to be asked every time if you are sure about something, reminds me of the joys of being asked by w2k3 why i was rebooting or shutting down, damn annoying when you are trying to get the server shut down to get the hell out of class in a reasonable amount of time.
    You're not your post count, You're not your avatar or sig, You're not how fast your internet connection is, You are not your processor, hard drive, or graphics card. You're the all-singing, all-dancing crap of AO
    09 F9 11 02 9D 74 E3 5B D8 41 56 C5 63 56 88 C0

  5. #5
    Super Moderator: GMT Zone nihil's Avatar
    Join Date
    Jul 2003
    Location
    United Kingdom: Bridlington
    Posts
    17,178
    Well I am sure you will think me cynical here, but I suspect that this is very much a case of Microsoft "covering their six"...........

    They have had a lot of criticism over the years over the "poor security" of their systems. If you look at the history, you will see that this was never an issue back in the days of DOS? computers were damn expensive back then, and generally only people who were knowlegeable and needed them spent the money. They were also unconnected, and there was no real "internet" as such.

    Malware tended to spread through sharing infected media between machines. So, if anyone got infected, it was their fault for putting the infected media in the machine?

    Now MS are going back along this route. "If you got infected you must have clicked yes, and you don't reboot your machine often enough to let Vista clean itself" that is your problem not ours.

    The real problem is that I would suggest at least 75% of purely Windows computer users are neither computer literate nor security aware.

    We just know that they are going to click "yes" don't we? and that they will always log on as administrator

    Whilst I would say that Vista has greatly improved security capabilities, and certainly seems more secure "out of the box", the only way you will actually improve the overall security picture is by user education or giving them a dumb terminal

    Naturally, these "improved" security features are annoying to computer professionals, but that seems to be the price you have to pay?

    As for your W2K3 experience, I would say that it was quite reasonable behaviour. The majority of servers are not in a classroom environment and are not shut down that regularly? This is a Win 2000 client box, and when I tell it I want to power down it throws a popup and asks me what I want to do. Log off, shut down, restart, standby?

    I just checked my Wife's Win ME box and even that asks if I want to:

    Shut down
    Restart
    Standby
    Hibernate

    I believe that Win 98SE does the same but I haven't got one of those powered up at the moment.

    If you cannot do someone any good: don't do them any harm....
    As long as you did this to one of these, the least of my little ones............you did it unto Me.
    What profiteth a man if he gains the entire World at the expense of his immortal soul?

  6. #6
    Senior Member RoadClosed's Avatar
    Join Date
    Jun 2003
    Posts
    3,834
    Back on topic that has to be a very annoying feature to be asked every time if you are sure about something,
    Welcome to linux when running in user mode.
    West of House
    You are standing in an open field west of a white house, with a boarded front door.
    There is a small mailbox here.

  7. #7
    Some Assembly Required ShagDevil's Avatar
    Join Date
    Nov 2002
    Location
    New Jersey
    Posts
    718
    I don't mind the Shutdown Event Tracker in Server 2003. It can come in handy if you're looking to analyze downtime (via server shutdowns). Also, if it's that annoying, you can just disable it via Group Policy.

    Open group Policy
    Computer Configuration --> Administrative Templates --> System
    Disable "Display Shutdown Event Tracker"
    The object of war is not to die for your country but to make the other bastard die for his - George Patton

  8. #8
    Member
    Join Date
    Sep 2004
    Location
    Netherlands
    Posts
    63
    The same goes for the constant "press to continue" in Vista. If it bothers you, just turn it off (It bothered me, so I did... :P)

    Just go to your usersettings and disable UAC.

    I do use the shutdown event tracker, btw... I find that it can be handy at times to be able to know why a server has rebooted.

  9. #9
    Senior Member RoadClosed's Avatar
    Join Date
    Jun 2003
    Posts
    3,834
    Shutdown event tracker is cake. Meaning I like it.
    West of House
    You are standing in an open field west of a white house, with a boarded front door.
    There is a small mailbox here.

  10. #10
    Agony Aunty-Online Moira's Avatar
    Join Date
    Jun 2003
    Posts
    1,063
    Yes, you don't have to endure UAC - turning it off was about the first thing I did in Vista. I also stopped it giving me balloon messages about less than ideal security settings.
    77 111 105 114 97

    My PGP signature

Similar Threads

  1. Windows Pc Data Security
    By nihil in forum The Security Tutorials Forum
    Replies: 6
    Last Post: December 24th, 2003, 02:04 AM
  2. CISSP Notes: Security Models: Access Control Models
    By MrLinus in forum The Security Tutorials Forum
    Replies: 4
    Last Post: October 11th, 2003, 03:22 AM
  3. Internet Security for the "newbies"
    By .:|Mymx|:. in forum AntiOnline's General Chit Chat
    Replies: 4
    Last Post: May 24th, 2003, 10:37 AM
  4. NEWS: This Week in Security
    By xmaddness in forum Miscellaneous Security Discussions
    Replies: 1
    Last Post: July 18th, 2002, 04:36 AM
  5. Latest SANS Update
    By xmaddness in forum Miscellaneous Security Discussions
    Replies: 0
    Last Post: May 29th, 2002, 09:27 PM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

 Security News

     Patches

       Security Trends

         How-To

           Buying Guides