[61142] in North American Network Operators' Group
Re: Microsoft distributes free CDs in Japan to patch Windows
daemon@ATHENA.MIT.EDU (Paul A. Bradford)
Mon Aug 25 11:08:15 2003
From: "Paul A. Bradford" <paul.bradford@adelphia.com>
Reply-To: paul.bradford@adelphia.com
To: Roland Perry <nanog@internetpolicyagency.com>
Cc: nanog@merit.edu
In-Reply-To: <y1+W0vC6hhS$EAQb@internetpolicyagency.com>
Date: 25 Aug 2003 11:01:09 -0400
Errors-To: owner-nanog-outgoing@merit.edu
Hmm,
and how would you protect the remote controlled MS firewall software
from:
1. Vulnerabilities itself since MS is building it?
2. the "remote control" being hijacked by someone besides MS?
2a. Hey I'd love to be able to shut folks that were killing my network
off until they update, but is it my right?
Thanks,
Pablo
On Mon, 2003-08-25 at 10:08, Roland Perry wrote:
> In article <3F4A10AF.7080903@brightok.net>, Jack Bates
> <jbates@brightok.net> writes
> >Which is why Microsoft should issue a software equivelant of a recall. Systems
> >shouldn't be sold vulnerable without at least a patch CD.
>
> Perhaps Windows could be delivered complete with a package whose
> function was to firewall off everything except the update site (or maybe
> employ some kind of VPN), and deny a more general Internet connection,
> until sufficient updates had been downloaded?
>
> The next step would be to find a secure way for Microsoft to turn that
> firewall back on again remotely, if a sufficiently serious update was
> required. (This could case havoc is misused, so some care would needed!)
>
> Meanwhile, in the UK it's commonplace to buy monthly computer titles
> with a CD (of useful shareware and demos) mounted on the cover. If these
> don't already include the most recent Microsoft patches, perhaps they
> should.
--
Paul A Bradford
Senior Network Engineer
Adelphia Cable Communications
814-274-1353
