[60578] in North American Network Operators' Group
Re: Microsoft to ship new versions with firewall enabled
daemon@ATHENA.MIT.EDU (Henry Linneweh)
Thu Aug 14 11:40:39 2003
Date: Thu, 14 Aug 2003 08:35:07 -0700 (PDT)
From: Henry Linneweh <hrlinneweh@sbcglobal.net>
To: Edward Lewis <edlewis@arin.net>,
John Neiberger <john.neiberger@efirstbank.com>
Cc: nanog@merit.edu
In-Reply-To: <a05111b1cbb6157ea0b56@[192.149.252.108]>
Errors-To: owner-nanog-outgoing@merit.edu
--0-2070249764-1060875307=:91105
Content-Type: text/plain; charset=us-ascii
It comes standard with a firewall built in, which is not user friendly and you
have to still purchase a firewall that allows user access to control what
gets blocked and what does not, most intelligent people turn it off.
-Henry
Edward Lewis <edlewis@arin.net> wrote:
>[Veering further off-topic]
>
>Hmm...I didn't even know XP had a built-in firewall. Any bets on how
>long it is before other companies with software firewall products bring
>suit against Microsoft for bundling a firewall in the OS?
Along the vein of "I dislike Microsoft, but let's get over it" - when
some Linux started out with, what, ipchains/ip-something to protect
it from network vulnerabilities, it took our little lab's folks some
time to remember to punch holes in it for DNS, SSH, etc. each time we
set a new one up. Ah, live and learn.
The legacy of shipping machines open to attack predates Microsoft, it
isn't "their fault(tm)". This issue was raised in at least as far
back as "The Cuckoo's Egg" (since I've met folks that don't remember
it, by Clifford Stoll - very entertaining tale of an
astronomer-turned-SA tracking a hacker). In the epilogue, he
mentions the Morris worm, so we're talking about incidents in '87 or
so. (The Morris thing was what, Nov 2, 1988? Give or take a week.)
I highly recommend that book as part suspense novel and part security
tutorial.
Every time a vendor/open-sourcer decides to stop shipping with
security down, there's a learning curve forced on the buyers. But
that's why we get paid to work in air conditioned offices in the
summer. ;)
--
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
Edward Lewis +1-703-227-9854
ARIN Research Engineer
Sponge Bob Square Pants? I'm still trying to figure out the Macarena.
--0-2070249764-1060875307=:91105
Content-Type: text/html; charset=us-ascii
<DIV>It comes standard with a firewall built in, which is not user friendly and you</DIV>
<DIV>have to still purchase a firewall that allows user access to control what</DIV>
<DIV>gets blocked and what does not, most intelligent people turn it off.</DIV>
<DIV> </DIV>
<DIV>-Henry<BR><BR><B><I>Edward Lewis <edlewis@arin.net></I></B> wrote:</DIV>
<DIV>
<BLOCKQUOTE style="PADDING-LEFT: 5px; MARGIN-LEFT: 5px; BORDER-LEFT: #1010ff 2px solid; WIDTH: 100%"><BR>>[Veering further off-topic]<BR>><BR>>Hmm...I didn't even know XP had a built-in firewall. Any bets on how<BR>>long it is before other companies with software firewall products bring<BR>>suit against Microsoft for bundling a firewall in the OS?<BR><BR>Along the vein of "I dislike Microsoft, but let's get over it" - when <BR>some Linux started out with, what, ipchains/ip-something to protect <BR>it from network vulnerabilities, it took our little lab's folks some <BR>time to remember to punch holes in it for DNS, SSH, etc. each time we <BR>set a new one up. Ah, live and learn.<BR><BR>The legacy of shipping machines open to attack predates Microsoft, it <BR>isn't "their fault(tm)". This issue was raised in at least as far <BR>back as "The Cuckoo's Egg" (since I've met folks that don't remember <BR>it, by Clifford Stoll - very entertaining tale of an
<BR>astronomer-turned-SA tracking a hacker). In the epilogue, he <BR>mentions the Morris worm, so we're talking about incidents in '87 or <BR>so. (The Morris thing was what, Nov 2, 1988? Give or take a week.) <BR>I highly recommend that book as part suspense novel and part security <BR>tutorial.<BR><BR>Every time a vendor/open-sourcer decides to stop shipping with <BR>security down, there's a learning curve forced on the buyers. But <BR>that's why we get paid to work in air conditioned offices in the <BR>summer. ;)<BR><BR>-- <BR>-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-<BR>Edward Lewis +1-703-227-9854<BR>ARIN Research Engineer<BR><BR>Sponge Bob Square Pants? I'm still trying to figure out the Macarena.</BLOCKQUOTE></DIV>
--0-2070249764-1060875307=:91105--
