There are exceptions, but for the most part data is extremely sensitive.Quote:
Then I'm glad I'm not part of your world.
I am not disagreeing that home use is different and personal.
Printable View
There are exceptions, but for the most part data is extremely sensitive.Quote:
Then I'm glad I'm not part of your world.
I am not disagreeing that home use is different and personal.
Well I ask you what "www" stands for?.............. it is "World Wide Web" as it goes. A good proportion of it is made up of private or at least self-determining individuals and they all use the same internet. The two worlds are inexorably linked, and both affect eachother...............Quote:
Originally Posted by RoadClosed
The enterprise server with open relays spamming the home user, and the home user's computer recruited for a bot army to DoS the enterprise server?
Reminds me of the song:
"Your world was made up of things sweet and good.
My world could never fit it, I wish it could.
Two hearts lie in shambles and oh, how they've cried.
That's what happens when two worlds collide."
:cool::D
I understand there are two different viewpoints here. On the flip side there would be no bots because no one could connect. ;) "Cannot aquire IP address". And all my comments are referenced to Vista.Quote:
The enterprise server with open relays spamming the home user, and the home user's computer recruited for a bot army to DoS the enterprise server?
Hi there RoadClosed,
If I remember rightly you work in a high security environment? I have also done that in both the Defence and Finance sectors, so I do understand what you are saying :D
You have what I would describe as a "secure network", and it would be locked down just like you say. This is not really OS dependent as I remember it since Win NT4.0 :)
From the little I have seen of Vista (I have heard a lot more from guys testing it) it would seem much easier to implement such policies? what do you think?
My comments are very much focused on the home or small office user where the very concept of security is not well understood. "The other World" so to speak :D
In the "middle World" you have the thin client and metaserver environment?
Cheers
Good point. My initial point was Vista comes out of the box with protected mode turned on. Attached is an example of me clicking an email link on a website.Quote:
From the little I have seen of Vista (I have heard a lot more from guys testing it) it would seem much easier to implement such policies? what do you think?
In fact when I initially tried to upload these I kept getting an Access Denied error.
And as I stated you cannot even copy a folder without implicit approval or change any basic setting right out of the box. This tied with the inbound firewall defaulted to ON and Windows Defender turned On and Vista updating itself before ever booting into the installed OS ... is good enough for me. ;) In addition turning on the outbound firewall would make set up and deployment very difficult because a user would have to grant permissions to specific services. And again, not making a case not to use it, just when it should be turned on.
Oh and add to the pot, antiphishing filtering technology and pop-up blocking and Vista default installation is much more secure than XP with 3rd party firewalling technology. Add something like McAffee VirusScan with buffer monitoring to Vista and you are pretty tight. Although none of this is any good if a user is completely stupid and ignorant. "OMG click this email it's soo funny! Pass it on to 12 friends or you will die! This made me cry, click it and help a bunny, pass it on to as many people as you can! Click here to save a baby seal!!!! Click here to punch GWB!!!"
None of that will be stopped by a firewall. We often speak of security in layers, a client based outbound firewall is definitely a layer. So it's down to a philosophy and what component makes the best use of resources for your environment.
Siouxshie and the Banshees?
Good Lord! you must be almost as old as I am :p:D
LOL I didn't even notice. Love Souxsie. That's my Dark Wave channel on Slacker.COM. Slacker RULES! Its a beta service that will be launched in the US later this year. It includes a portable that will stream radio through open wi-fi and even satellite when no open wi-fi connection is available. Kind of store and go bursting the channel when in range and storing up. Heck it may launch/clone overseas too since it uses KU band and Sky is KU. Who knows. But it RULEZ.
Oh how familiar is that "Access Denied" message! Accessing files and folders in anything but the Public folder on a network PC invariably leads to such a wrangling with NTFS permissions that I usually give in and just copy the file over to Public and move it from the destination PC.
I'm afraid I turned UAC off - it was just too irritating, particularly when I was short of time.
No and no - why switch to vista? It is still brand new so it will give a bit of trouble I assume at first. I am happy with XP and won't change it as long as it keeps working like it is now!
Karl
I think Vista will be a lot better when they've rolled out a service pack. Even the first few updates were an improvement - before that, my USB keys didn't work for a start. They still don't work on the laptop, but Vista doesn't now either until Moduslink actually get round to sending out my upgrade.