Microsoft States Full TCP/IP Too Dangerous
daria42 writes "To fully implement the TCP/IP protocol in Windows XP would make creating denial of service attacks 'entirely too trivial', Microsoft has claimed. The company was responding to claims by Nmap author and well-known security expert Fyodor that by repeatedly disabling the ability to send TCP/IP packets via the 'raw sockets' avenue, Microsoft was asking the security community to 'pick their poison': either cripple their operating system or leave it open to hackers. Admitting that a recent security patch had intentionally disabled a community-developed workaround to Microsoft's TCP/IP changes - which were first implemented in Windows XP Service Pack 2 - the company claimed it had received little negative feedback on the issue."
Personally, I like the seemingly agressive stance Microsoft is taking on security. They needed to start making difficult decisions like this and while it may incovienence a handful of users it's for the greater good.
In other news... I just became aware of 5 brand new high and medium Firefox / Mozilla vulnerabilities in analysis at iDefense.
Why do people use Firefox again? Oh yeah, security.