I broke this out separately because it is a very interesting question:
> While understanding that nothing is guaranteed 100% safe & fool proof
> when do we say enough of the tightening down of the screws?
That question is a hard one, and an important one! However, I think one
only needs to look at the Windows world [and the thriving business in
selling pretty-much-unsuccessful snake oil] to realize that windows users
need a lot MORE security, rather than being advised that crippling-whats-
there is OK. The answer, in part, derives from that observation: when
security problems seem to not be an issue any more, you're probably in a
good place. Windows, in general is VERY FAR from that and could do with
a ton more "tightening down". [in actual security circles, it is a bit
different: one balances the cost of a particular security precaution
against the expected-cost of not having it. The problem (from your view)
is that in that assessment they would rate "running with minimal
privileges" as being essentially zero-cost with a very high return.]
And you keep going back to "guaranteed" and such [and did in the previous
note, also], but that's really a bogus argument. There isn't "right and
wrong" in this arena, but "more prudent" and "less prudent". You try to
make the case that since we can't achieve 100%, 10% is as good as 90% and
that's just wrong. I point out that running-limited and fighting[*] with
snake oil is *less*secure* than running admin [and not even bothering
with the snake oil], and that windows, overall, needs a LOT better
security. I believe that the data shows clearly that that statement is,
in the large, correct -- every one of you reports that virtually every
client-system you look at is filled with spyware, viruses, etc, so
whatever the 'standard of security' among *your* customers clearly isn't
working.
[*] Unless I'm mis-reading the list, it seems that one of the primary
cause of XP system instabilities and anomalous program failures
appears to be all of this AV snake oil people try to run. It can't be
cleanly uninstalled, it interferes with apps, can prevent the system
from shutting down, etc, etc. Not to mention that to be even a
*little* bit effective you have to be maniacal about keeping it
updated. THat's a lot of bother and system-trouble [and expense] to
put up with just to avoid the hassle of typing a password a few
times a week
/Bernie\
--
Bernie Cosell Fantasy Farm Fibers
mailto:[EMAIL PROTECTED] Pearisburg, VA
--> Too many people, too few sheep <--
--
----------------------------------------
WIN-HOME Archives: http://PEACH.EASE.LSOFT.COM/archives/WIN-HOME.html
Contact the List Owner about anything: [EMAIL PROTECTED]
Official Win-Home List Members Profiles Page
http://www.besteffort.com/winhome/Profiles.html
