| ActiveMac | Anonymous | Create a User | Reviews | News | Forums | Advertise |
|
|
|
User Controls |
|
New User |
|
Login |
|
Edit/View My Profile |
|
|
|
|
|
|
|
ActiveMac |
|
Articles |
|
Forums |
|
Links |
|
News |
|
News Search |
|
Reviews |
|
|
|
|
|
|
|
News Centers |
|
Windows/Microsoft |
|
DVD |
|
ActiveHardware |
|
Xbox |
|
MaINTosh |
|
News Search |
|
|
|
|
|
|
|
ANet Chats |
|
The Lobby |
|
Special Events Room |
|
Developer's Lounge |
|
XBox Chat |
|
|
|
|
|
|
|
FAQ's |
|
Windows 98/98 SE |
|
Windows 2000 |
|
Windows Me |
|
Windows "Whistler" XP |
|
Windows CE |
|
Internet Explorer 6 |
|
Internet Explorer 5 |
|
Xbox |
|
DirectX |
|
DVD's |
|
|
|
|
|
|
|
TopTechTips |
|
Registry Tips |
|
Windows 95/98 |
|
Windows 2000 |
|
Internet Explorer 4 |
|
Internet Explorer 5 |
|
Windows NT Tips |
|
Program Tips |
|
Easter Eggs |
|
Hardware |
|
DVD |
|
|
|
|
|
|
|
Latest Reviews |
|
Applications |
|
Microsoft Windows XP Professional |
|
Norton SystemWorks 2002 |
|
|
|
Hardware |
|
Intel Personal Audio Player 3000 |
|
Microsoft Wireless IntelliMouse Explorer |
|
|
|
|
|
|
|
Site News/Info |
|
About This Site |
|
Affiliates |
|
ANet Forums |
|
Contact Us |
|
Default Home Page |
|
Link To Us |
|
Links |
|
Member Pages |
|
Site Search |
|
Awards |
|
|
|
|
|
|
|
Credits |
 |
Deconstructing Common Security Myths | |
|
||
| Time: 00:01 EST/05:01 GMT | News Source: ActiveWin.com | Posted By: Kenneth van Surksum | ||
|
We then started presenting some of these myths at various conferences around the world and people really seemed to appreciate the candid straight talk. Our version of these myths is, of course, just our opinion. People are welcome to disagree with us, and sometimes do. Naturally, we will proceed to explain why we are right and they are wrong, but all in all this type of dialectic is crucial to advancing the state of the art in security. Unless we question the commonly held wisdom, we are not only doomed to repeat past mistakes, but also to keep building on them. We would then fail to do all we can to protect our networks and the information that resides on them. | ||
|
Write Comment
Return to News |
Displaying 1 through 25 of 302 Last | Next |
The time now is
5:30:10 PM
ET.
Any comment problems? E-mail us |
| #1 By 12071 (203.206.253.53) at 5/9/2006 8:56:59 AM |
|
#1 Go on, give them a little break... in their first point the recommend that you should look to 3rd party solutions or develop them in-house rather than waiting for them to get off there arse and provide you with a fix. I think that's very sound advice and am quite suprised they would come out and say that!
Myth: It's Always Better to Wait for an Official Solution to a Problem "In other instances—especially when a vendor routinely puts you at risk by charging you for updates or waiting months (or years!) before providing them—looking for third-party solutions or developing them in-house might be your best choice." In their second point they go so far as to say that you, as a customer of Microsoft, are their official beta tester! That's about as up front and honest as you're going to get! Myth: You Should Wait Before Deploying an OS or Service Pack "The first myth is that you should wait to deploy the new OS or service pack because it will have a lot of bugs that should be fixed, so you should let someone else find those bugs first. It should be obvious why this argument is flawed: exactly who is going to find all those bugs if everyone follows this advice?" They even tell that the the real problem with their security fixes is all those other non-Microsoft products you have installed! "either those apps are broken already and security implementations in the new OS simply highlight the flaws, or the apps hit some obscure bug in the OS that would not be encountered without the app." I mean sure..... those apps worked just fine before the Microsoft patch was installed but that's only because those application developers didn't have the foresight to know what Microsoft was going to change! Do you really want to continue purchasing software from vendors like that? Vendors that write applications that get affected by obscure bugs in Windows! Myth: Let's Block Bad Stuff. Here the teach you what has been standard practise for at least 30 years now, i.e. to block everything and only allow the stuff that's been authorised! Now don't you feel like a fool for going about it all wrong! That's like creating a database table to display all the holidays and having a column per day! See where would you be without Microsoft to teach you these wonderful things! This was a fantastic article..... keep them coming! This post was edited by chris_kabuki on Tuesday, May 09, 2006 at 08:57. |
| #2 By 32132 (64.180.219.241) at 5/9/2006 10:02:42 AM |
|
#2 Don't be so bitter about the admission Morton and Torvalds have made about Linux being so buggy.
Lashing out stupidly at Microsoft might be some kind of therapy for depressed OSS wackos like you ... but it gets kind of boring. |
| #3 By 15406 (216.191.227.68) at 5/9/2006 10:11:51 AM |
| #3: You're amusing. Linus says it's time for a bug cycle and you point and laugh. Yet MS throws away a few years of work for the Vista restart, and you say that's a good thing. |
| #4 By 32132 (64.180.219.241) at 5/9/2006 10:44:19 AM |
|
#4 The Microsoft security cycle was a great thing. And they did it. I told the OSS fanatics on this site that OSS should do the same thing, but they won't because bug fixes are boring and if a project isn't cool, the programmers who only work on cool projects would leave.
Talking about it isn't the same as doing it. Linux is just talking about it ... and they can't force it to happen, because the OSS programmers will just move on to something else cool. This is the beginning of the end for Linux. It failed on the desktop. Now it is doomed in the server space. Too unstable and buggy compared to Windows 2003 Server. Longhorn, with its modular components will be the OS of choice for those who desire rock solid stability, and Linux will be for those who are too cheap to buy a real OS. Becase there is no way they will pull off a long security cycle. |
| #5 By 15406 (216.191.227.68) at 5/9/2006 12:46:23 PM |
|
#5: I wasn't talking about Gates' Rustworthy Computing BS. I meant the Vista restart, where they threw out about 2 years worth of work and started again because what they had was total & utter crap, or at least it was according to Jim Alchin.
Tell me, should I put the kettle on while we wait for Linux to disappear? Or is there a particular month that it's going away? You're a hoot. MS is the one going down, albeit slowly. It's reached that critical mass where it's so big it doesn't know what it's doing, and it does it poorly. As for Vista, it's a hodge-podge of old crap code from yesteryear. It's XP with a paint job. It's still in forever-beta, and they're issuing security fixes for it. Those who require rock-solid stability avoid Windows like the plague that it is and instead use Linux, Unix or VMS. That's why you don't find much MS in the enterprise server room, where uptime is measured in months & years, not days. What's that? A critical patch for Notepad? Time to reboot... This post was edited by Latch on Tuesday, May 09, 2006 at 12:55. |
| #6 By 32132 (64.180.219.241) at 5/9/2006 2:02:35 PM |
|
#6 "where they threw out about 2 years worth of work and started again because what they had was total & utter crap,"
Actually, what they did was restart the Vista process with the Windows 2003 Server SP1 codebase (which is what Windows XP x64 is also based on). "That's why you don't find much MS in the enterprise server room" Windows outsells Unix in the Server space. |
| #7 By 15406 (216.191.227.68) at 5/9/2006 2:19:31 PM |
|
#7: Nice non-denial. Yes, they restarted the process because what they had was crap. And as an added bonus, they ripped out everything interesting just ot be able to ship it this decade.
|
| #8 By 32132 (64.180.219.241) at 5/9/2006 5:13:13 PM |
|
You OSS guys are sooooo bitter about the fact that more people will be running Vista Beta 2 on the desktop than are running linux on the desktop by the end of June.
|
|
Write Comment
Return to News |
Displaying 1 through 25 of 302 Last | Next |
The time now is
5:30:10 PM
ET.
Any comment problems? E-mail us |
