As I recall, IE's "Protected Mode" feature only works on Vista/Win7, and that's a security benefit for shops using IE. The driver model is more secure than XP's. The firewall is more sophisticated. Vista uses ASLR, which I don't think XP had.
There are some other things that I honestly don't understand, not being a programmer. But under the hood, Vista had a number of security improvements over XP. John Hornbuckle MIS Department Taylor County School District www.taylor.k12.fl.us -----Original Message----- From: Ben Scott [mailto:[email protected]] Sent: Wednesday, March 31, 2010 5:04 PM To: NT System Admin Issues Subject: Low end reliable workstations On Wed, Mar 31, 2010 at 2:43 PM, Micheal Espinola Jr <[email protected]> wrote: > Even with the Vista faux pas' (which can clearly be mitigated with > well-published know-how), XP is not what I would consider a "secure > solution". I haven't really seen anything that makes me believe Vista is significantly more secure than XP in a properly managed environment. Maybe "out of the box" Vista is more secure. (I'm not even sure about that, but I don't have sufficient data.) But if you've got things locked down the way you should on XP, it doesn't seem like Vista's much different to me, in terms of real-world better security. I suppose if you've got an application that absolutely will not run without more access than it really needs, FRV means the overall system will be more secure. So it that's what you mean, I'll give you that. I find the feature where Vista will prompt for admin credentials (username/password) when it needs them, rather than requiring me to invoke RUNAS ahead of time, is a significant convenience, which is good, but I wouldn't call that the difference between a "secure solution" and a non-secure one. -- Ben ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ NOTICE: Florida has a broad public records law. Most written communications to or from this entity are public records that will be disclosed to the public and the media upon request. E-mail communications may be subject to public disclosure. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~
