On TechRepublic: Five super-secret features in Windows 7
BNET Business Network:
BNET
TechRepublic
ZDNet
TalkBack 45 of 46:
Next »
« Previous
microsoft wish
No mater what operating system is in place the following recommendations are necessary before one can have a sense of trust (even mac or linux os's need such functionality)

I sent the following recommendations to wish@microsoft.com and secure@microsoft.com many months ago:


The default account that appears when you run a consumer operating system product such as windows Xp or 2000 workstation should be a limited account that is either a normal user or at most a power user.

After running through contol panel a user would have the option of entering "administrative mode" whereby access to sensitive files, registry changes and program installation or removal would be possible. Running an installation or setup should ask the user if administrative mode should be entered along with some kind of warning about what this means.

Of course one should still be able to login as "administrator" through a login it just should not be the default account type presented to a user that may have no clue how to secure a computer.

Many users have had problems caused because someone brings a new computer into the office or home and connects it to the internet before all the patches are installed and other secutiy measues are taken. It takes only a short while before a clueless user accepts an agreement to install some spyware or virus component.

Training can only go so far... we need help from Microsoft to make the box more secure from the start.

We should also be able to clearly know and have control of what applications are communicating and what is being sent. It should also be possible to expose BHO's as well as keyboard and video hooks so that any interested (or parinoid) user can easily tell what applications have access to the information on the computer. Today it is nearly impossible to know if a computer is compromized and that is not acceptible.
Posted by: spam@...   Posted on: 07/08/04 You are currently: a Guest | Members login | Terms of Use
Reply to Story Reply to Message

Alert moderator to an offensive message

Subscribe to this discussion via Email or RSS

Have you tried Netscape  waicri@... | 07/02/04
Exactly  llamee | 07/02/04
Do you run the latest version?  AxleMunshine | 07/02/04
Have you tried Netscape  mystic100 | 07/02/04
Netscape has had more than it's fair share of problems  balsover | 07/02/04
Netscape 7.1 is OK but  Bill4 | 07/03/04
MS and keystroke Loggers  amaughan | 07/02/04
So how did you know you were Jacked ?  stephensfam | 07/02/04
Alternate Browsers  don.chambers@... | 07/02/04
Never Happen.  jmervyn | 07/02/04
No Outbound Block sad & Firefox 0.9 happy  tbbrickster_z | 07/02/04
browser vendor may not matter  GDF | 07/02/04
Microsoft should improve application security  alan maughan | 07/05/04
Point of Order - outgoing connections & startup control  jpivonka@... | 07/06/04
The solution is so easy and enjoyable...  MTMacPhee | 07/02/04
but _NOT_ on your wallet!  riff7raff | 07/02/04
$2000 is too much?  Wings_z | 07/02/04
Those aren't all the costs  home_user | 07/02/04
As wings says, get an eMac  MTMacPhee | 07/02/04
The cost of changing to a Mac is more than just the list price  balsover | 07/02/04
I'm da man!  MTMacPhee | 07/02/04
re: da man  home_user | 07/02/04
They don't?  MTMacPhee | 07/02/04
Linux & Mozilla a safe haven for now..  riff7raff | 07/02/04
Linux & Mozilla a safe haven for now but...  dave_anderson99 | 07/02/04
May be u r not old enough  laci2126 | 07/04/04
...for now but they will always be safer than any M$ product ...  indigo_z | 07/05/04
Keystroke Loggers, etc, ad nauseum  Wings_z | 07/02/04
Palladium  PB_z | 07/02/04
Irresponsible journalism  bullwinkle_z | 07/02/04
Nonsense!  jpivonka@... | 07/06/04
Why outbound filtering is a waste of time  JohnJ_z | 07/09/04
You're still wasting you're time.  Irritated User | 07/02/04
Dave, you are the one that needs a realilty check  balsover | 07/02/04
Using "something called a port"? Really!  jpivonka@... | 07/06/04
I Agree  chapgen | 07/02/04
Too Late!!!  Andre Velloso | 07/03/04
Too Late!!!  Andre Velloso | 07/03/04
Is it, or is it not? The true fate of the ICF's outbound connection control  jpivonka@... | 07/06/04
Not  JohnJ_z | 07/09/04
Outbound blocking? BAD idea.  syrynxx | 07/06/04
Outbound blocking is a good idea, and easily managed too  jpivonka@... | 07/06/04
Outbound blocking -- irrelevant idea  JohnJ_z | 07/09/04
Properly configure your IE browser!  AlmostBandwidth | 07/06/04
microsoft wish  spam@... | 07/08/04
For ANDRE  Fabulous | 04/19/07

What do you think?

SponsoredWhite Papers, Webcasts, and Downloads

  • Smart Tech Expert advice on innovations in healthcare and the green technologies that make it happen. Find out more
  • Smart Business Discussion and advice on management issues that revolve around making your world smarter and more useful. More Smart Advice
  • Smart People The best and worst moves in the management and strategy trenches. Learn More