[XCSSA] winXP: the choice of malicious hackers everywhere.

[tweeks]

Charles Peterson wrote:
> 
> I have some misgivings about what Steve Gibson wants Microsoft to do.
> In some sense, every kid with a linux box is an administrator.  So,
> why should folks with Windows XP have any less power than they already
> do (don't)?  The days of every internetworked machine being under the
> lock and key of a trusted authority are long over.  We have got to
> find our security some other way, I think now.

IPV6 is the goes a long way toward protecting the lower parts of the
stack, but it is still not a 100% solution (TCP and up is still soft).  It
has to be coupled with things like IPSEC and ESP:
	http://www.infosecuritymag.com/articles/may00/features1a.shtml

Of course nothing is 100%... but we're still working on a "trust everyone
protocol stack" from the 60's and 70's.  IPv6 will not only give some
breathing room, but will also get us started on the path of being able to
harden the whole stack.

 
> I'm surprised M$ didn't jump on the idea.  "Say, we can lock users
> out more than we already do..."  I wouldn't be surprised if they were
> already working on it.

It's called .NET.

If you're running RAW sockets.. you can send whatever you want on the
wire... 

I smell more protocol leveraging... ;)

Tweeks