Turning Attackers' Tools Against Them

Tasha26 writes "The BBC has an interesting Web security snippet from the SyScan 2010 security conference in Singapore. In a presentation, security researcher Laurent Oudot released details of bugs found in commonly used attack kits such as Neon, Eleonore, and Sniper. These loopholes could be exploited to get more information about the attackers, perhaps identifying them, stealing their tools and methods, or even following the trail back to their own computer."

walled garden version for the rest of us?

[AmazinglySmooth]

I propose that MS create a walled-garden version of Windows that will work for 85% (my estimate) of users. Only approved apps can be installed. Could it work?

Re:walled garden version for the rest of us?

[Z34107]

They just upped the logo requirements - to get logo certification, you have to have 64 bit versions of drivers as well. Which is great, because 32bit blows chunks.

As for having to get them signed, that is kind of a pain. On the plus side, it means your signed driver went over some basic "are you likely to freeze the computer" tests and it discourages companies with shitty programmers from doing unnecessary stuff in kernelspace.

I for one applaud this tiny effort to improve Windows stability.