Hmm, and how would you protect the remote controlled MS firewall software from: 1. Vulnerabilities itself since MS is building it? 2. the "remote control" being hijacked by someone besides MS? 2a. Hey I'd love to be able to shut folks that were killing my network off until they update, but is it my right? Thanks, Pablo On Mon, 2003-08-25 at 10:08, Roland Perry wrote:
In article <3F4A10AF.7080903@brightok.net>, Jack Bates <jbates@brightok.net> writes
Which is why Microsoft should issue a software equivelant of a recall. Systems shouldn't be sold vulnerable without at least a patch CD.
Perhaps Windows could be delivered complete with a package whose function was to firewall off everything except the update site (or maybe employ some kind of VPN), and deny a more general Internet connection, until sufficient updates had been downloaded?
The next step would be to find a secure way for Microsoft to turn that firewall back on again remotely, if a sufficiently serious update was required. (This could case havoc is misused, so some care would needed!)
Meanwhile, in the UK it's commonplace to buy monthly computer titles with a CD (of useful shareware and demos) mounted on the cover. If these don't already include the most recent Microsoft patches, perhaps they should. -- Paul A Bradford Senior Network Engineer Adelphia Cable Communications 814-274-1353