Microsoft Palladium is just another reason for not doing a secure OS correctly. Why do a software company need to put restriction in the hardware for privacy and security? BSD is one of the most secure OS and it doesn't use this kind of technique to achieve it. Why don't they (MS) code a secure OS that won't need any hardware restrictions?
I think one of the thing that make Windows insecure is that it's running under Admin rights most of the time. Why don't they forbid administrator to log in and instead ask for admin password before installing new hardware, software that needs admin rights or for changing system files. This way scripts or viruses won't be able to corrupt the system without the admin password. This technique work quite well for many other ( Unix base system ) OS . At some point, MS needs to rewrite the kernel completely to be able to achieve this and with 40 billions dollars I think it's doable. But with the way they used to code I understand why they don't want to start it over.
My friend and I have created a little script that count the number of attack made by code red on my linux box.
If you want to check it go to http:norak-info.com/cr/
more info email me at sebastien.premont@norak-info.com
Slashdot Mirror
Microsoft Palladium is just another reason for not doing a secure OS correctly. Why do a software company need to put restriction in the hardware for privacy and security? BSD is one of the most secure OS and it doesn't use this kind of technique to achieve it. Why don't they (MS) code a secure OS that won't need any hardware restrictions?
I think one of the thing that make Windows insecure is that it's running under Admin rights most of the time. Why don't they forbid administrator to log in and instead ask for admin password before installing new hardware, software that needs admin rights or for changing system files. This way scripts or viruses won't be able to corrupt the system without the admin password. This technique work quite well for many other ( Unix base system ) OS . At some point, MS needs to rewrite the kernel completely to be able to achieve this and with 40 billions dollars I think it's doable. But with the way they used to code I understand why they don't want to start it over.
My friend and I have created a little script that count the number of attack made by code red on my linux box. If you want to check it go to http:norak-info.com/cr/ more info email me at sebastien.premont@norak-info.com