A lot longer than just before Windows 2003 release, but not according to Security Architect and Chief Technology Officer of Microsoft's Security Business Unit David Aucsmith:
"Windows 95 was written without a single security feature, he said, as it was designed to be totally open to let users connect to other systems. Furthermore, the security kernel of the Windows NT server software was written before the Internet, and the Windows Server 2003 software was written before buffer overflows became a frequent target of recent attacks..." The rest of the article can be found at http://www.infoworld.com/article/04/02/24/HNunderattack_1.html A little levity for today's discussion. Edward W. Ray _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
