All Things Microsoft > Microsoft as a Company
SP2 Fails in security
solarismka:
quote:Originally posted by Aloone:
You would have to be an idiot for these exploits to affect you.
http://www.heise.de/security/artikel/50051
--- End quote ---
You no longer even need to open up an attachment to infect windows. OE can infect a box just by resiveing a virus. Windows just being on the net can get infected without ANY user itervention at all! The service pack is supposed to protect them and as you and others here have touted. It is the holy grail of windows security. Yet look again. The same mistake. Rather than fixing the actual problem I see holes opening up with the same exuse being repeated. Its the enduserbadhardwaresoftware fault!
:rolleyes:
Aloone_Jonez:
quote:Originally posted by kn0wn / BOB:
You no longer even need to open up an attachment to infect windows.
--- End quote ---
Under SP2?
How?
quote:Originally posted by kn0wn / BOB:
OE can infect a box just by resiveing a virus.
--- End quote ---
Under SP2?
How?
quote:Originally posted by kn0wn / BOB:
Windows just being on the net can get infected without ANY user itervention at all!
--- End quote ---
Under SP2?
How?
quote:Originally posted by kn0wn / BOB:
The service pack is supposed to protect them and as you and others here have touted.
--- End quote ---
How are the can this happen when the two expliots in SP2 require user intervention?
quote:Originally posted by kn0wn / BOB:
It is the holy grail of windows security. Yet look again. The same mistake. Rather than fixing the actual problem I see holes opening up with the same exuse being repeated. Its the enduserbadhardwaresoftware fault!
--- End quote ---
Yes, two holes, and you would have to be retarded to be exploited. Please post facts to support your claims.
quote:Originally posted by kn0wn / BOB:
:rolleyes:
--- End quote ---
If your gonna point a finger at someone then at least have the proof to back you up!
solarismka:
quote:
Under SP2?
How?
--- End quote ---
better question. How is the user to blame for those exploits?
did the end user code SP2?
SP2 does not protect against auto infections where a virus can use an active x or java script process to execute a file via IE. Because of the tight intergration of windows. a virus only needs to invoke the same hole with slight changes in the command and the same result will happen. You can gain control of windows just by going through WMP! To me thats pathetic!
No user intervention. The user does not need to click anything.
quote:
Under SP2?
How?
--- End quote ---
read above.
quote:
Under SP2?
How?
--- End quote ---
read above
SP2 is supposed to fix the holes that are present in windows. Blaming the end userbadhardwaresoftware is not the answer.
Like I have said before. No one cares about the technical aspect of things. exept us. People, if they install the patch, expectthat problem(s) to be solved. This is not happening.
Even with virus scanners and firewalls. We see the same results.
quote:
Yes, two holes, and you would have to be retarded to be exploited. Please post facts to support your claims.
--- End quote ---
I have! See original link!
and.....
http://www.heise.de/security/artikel/50051/1
quote:This might even deceive some of the more experienced users, because they do not expect files with extensions like "gif" to carry executable content and to be executed in such a simple manner.
--- End quote ---
You cannot blame end users. This sort of thing should not happen if SP2 is all so great. If M$ is said to be improving then then above would not be so evedent.
quote:
If your gonna point a finger at someone then at least have the proof to back you up!
--- End quote ---
-> You state the exuse
->
quote:
and you would have to be retarded to be exploited.
--- End quote ---
and As my sig states:
If your gonna point a finger at someone then at least have the proof to back you up!
stop with the endless same unorginal exuses. of its theendusersbadhardwaresoftwares fault. Nobody but you buy's into that!
M$ is not perfect and or GOD! They do not make a perfect OS. Far from it. Concidering after what has been learn't from the past. Coupled with how SP2 was touted on here even. You would think that SP2 at least solved these problems. you can't use the same exuses all the time. especially when there is only one vairable that has not changed through the whole thing. Microsoft
Calling people stupid because they got infected. is arrogent and beyond stupid! The end user installs the patch. They have their fire walls and virous scanners. They want their shit to just work and this is not happening! People, usres and admins work hard and they do not need the added stress that M$ and their fanboys keep bringing. It is Microsoft that makes the OS. It is they who makes the patches. Not the end user.
quote:
"We have investigated your report, as we do with all reports, however in this case, we don't see these issues as being in conflict with the design goals of the new protections. We are always seeking improvements to our security protections and this discussion will certainly provide additional input into future security features and improvements, but at this time we do not see these as issues that we would develop patches or workarounds to address."
--- End quote ---
:rolleyes:
http://www.heise.de/security/artikel/50051/1
[ August 19, 2004: Message edited by: kn0wn / BOB ]
Navigation
[0] Message Index
[*] Previous page
Go to full version