[Moving this to luv-talk as I'm taking it off-topic for luv-main]
Craig Sanders via luv-main <luv-main(a)luv.asn.au> wrote:
> many are still "happily" using XP (i.e. they don't know any better) -
> as the recent virus fiasco at RMH shows. workstations across the entire
> hospital, from pharmacy to the wards taken out by really ancient XP
> viruses. I know, i've been stuck in here for much of it. some sections
> (fortunately, the transplant clinic was one) had upgraded to win7 but
> many were still running XP.
Just wondering what is currently considered best practice for protecting a
modern Microsoft Windows machine against malware and exploitation?
I read an interesting article over the weekend:
http://www.malwaretech.com/2015/09/device-guard-beginning-of-end-for.html
according to which MS have implemented new security measures based on the
virtualization instructions of the CPU. If I understand correctly, parts of
the kernel responsible for verifying signed executables are compartmentalized
using virtualization. Malware can compromise the remainder of the kernel
without compromising the hardware-protected code. Only signed executables can
be run, and UEFI "secure boot" is used. Thus they reduce the size of the
Trusted Computing Base considerably.
Apparently, under Microsoft NT-derived systems, the windowing and graphics
code all runs in kernel mode - surely providing plenty of opportunity for
attackers.
Andrew McGlashan wrote:
> On 8/04/2015 12:08 AM, Russell Coker wrote:
>> At the meeting there was a mention of the fact that we now have a legal
>> precedent for film companies to force ISPs to divulge the names of customers
>> who might have torrented movies.
> This was bound to catch up with iiNet [and other] users....
>
>> Is there any good anonymous peer to peer software? Something that uses tor
>> hidden services for all communications?
> Much better to just keep to legal and proper downloads, don't you think?
Well of course that goes without saying !
the very idea of owning movies which I haven't paid for;
or even converting DVD's so they are playable outside of brain-dead DVD
players,
(which mostly also seem incapable of playing them);
is abhorrent to my higher moral self.!
I even believe there are some who have copies of that other OS what was
it called .....;
anyway they have not paid for it apparently.
There seems to exist a whole category of software ..shareware ?
where such behaviour is rife.
This software philosophy, what's it called 'open-source' ?;
why it's just encourages such an attitude !
Oh Andrew; how I concur with you regarding the wickedness of the world !
regards Rohan McLeod