Microsoft States Full TCP/IP Too Dangerous

daria42 writes "To fully implement the TCP/IP protocol in Windows XP would make creating denial of service attacks 'entirely too trivial', Microsoft has claimed. The company was responding to claims by Nmap author and well-known security expert Fyodor that by repeatedly disabling the ability to send TCP/IP packets via the 'raw sockets' avenue, Microsoft was asking the security community to 'pick their poison': either cripple their operating system or leave it open to hackers. Admitting that a recent security patch had intentionally disabled a community-developed workaround to Microsoft's TCP/IP changes - which were first implemented in Windows XP Service Pack 2 - the company claimed it had received little negative feedback on the issue."

Re:A wise decision

[Rakishi]

...and people wonder why everyone runs as Admin. I'm sorry but that is a half-assed implementation and thus has limited uses.

funny boy!

[Medievalist]

Why do people use Firefox again? Oh yeah, security.

Wrong. For tabbed browsing, javascript control, intelligent cookie management, and popup blocking.

That being said, you'll note that Firefox/Mozilla patches are available immediately when vulnerabilities are discovered, instead of 10 months after an exploit hits the street.

If MS could provide patches in a timely fashion, they would have far fewer problems.

If they weren't shopping their OS to a demographic that is too clueless to install the patches when they are available, they would have no problem at all!

But let's face it, somebody will always try to provide an OS for uneducated, incompetent and mentally defective computer users - since there are so many of them, eager to spend their hard-earned cash of a device they don't need or understand.

Damn, somebody must have hit my "cynicism" button today.

Re:Privileges anyone?

[drsmithy]

And I pretty much always have myself configured as an admin type user... not because I have to all the time (I do lots of work not needing that level of access) [...]

THen whatever it is you're getting, you're being grossly overpaid.

Running as a non-admin in Windows is not hard. Some of us have been happily doing it for nigh-on a decade now (and, consequently, have never been infected with any form of virus or malware, despite a complete and utter lack of realtime scanning/protection).

My experience leads me to conclude MS is a long way from really solving the admin/general user problems [...]

The problem isn't with Microsoft, it's with application developers.

Re:Erm, cough, cough, excuse me...

[member57]

B.S. I don't believe you. If you surf the internet WITHOUT some form of protection ie. firewall, adware removal/ blocker, etc, you have been compromised, period, end of story... Either by a virus, malware, spyware, adware, trojan, etc... I used to think the same way, until I got compromised, it can, and will happen in M$ Windows, that's a fact. BTW,

If M$ is so secure why is Xecu.net that you have as a weblink using a UNIX variant??

Xecunet, LLC. Frederick MD US 21704 216.127.136.216 FreeBSD Apache/1.3.26 Unix 9-Aug-2002
Xecunet, LLC. Frederick MD US 21704 216.127.136.216 Solaris Apache/1.3.11 Unix 3-Dec-2000

ALL M$ systems should NEVER be let on the internet by themselves, they cannot be trusted. Regular, joe schmoe users have no business with raw sockets, they aren't needed.