Barney's Blog

Blog archive

Symantec Hopes To Remake (Tighten) Security

Most security tools will allow just about anything as long as it's not on a black list. Symantec CEO John Thompson thinks it's time for a change. Because exploits are getting worse and worse, Thompson believes we should turn security on its head and only allow things that are specifically outlined in a white list.

While this appears overly restrictive, it might be better to have a locked-down system that actually runs rather than a wide-open machine that's more frozen than a king crab fisherman.

A better idea might be to build virtualization into the OS in very specific ways -- such as isolating e-mail and the Internet from our documents. Of course, this runs completely counter to Microsoft's attempts to integrate everything with the Internet. But isn't that what got us into trouble in the first place?

Speaking of Symantec, my daughter Lauren just went off to college. Milliseconds after connecting to the campus network, her HP laptop began running slower than Kyle Petty with a flat tire. Now that's slow!

I paid for a Norton subscription, so she dutifully ran a Norton scan. After eight hours, it was only a third of the way done. Next, she tried the Microsoft Malicious Software Removal tool and it told her she had an unwelcome visitor -- Backdoor:Win32/Rbot.gen!A! Even though this Trojan was first discovered over three years ago, it managed to slip past Norton's defenses and set up shop. We went back to Norton and it took three full days to complete the scan.

Just shows you how tough it is for even the top dogs to protect our systems. Maybe Lauren will listen next time I offer to buy her an iBook!

Posted by Doug Barney on September 24, 2007


Featured

  • Microsoft, Oracle Announce Updates to Joint Database IaaS Service

    The Oracle Database@Azure infrastructure-as-a-service offering from Oracle and Microsoft is getting new capabilities, including integrations with key Microsoft data and security services.

  • Image of a futuristic maze

    The 2024 Microsoft Product Roadmap

    Everything Microsoft partners and IT pros need to know about major Microsoft product milestones this year.

  • 2025 Support Cliffs Approaching for Exchange 2016, Dynamics 365 PSA

    Microsoft recently sounded the warning bell for two of its products, Exchange Server 2016 and Dynamics 365 Project Service Automation (PSA), both of which are set to reach end-of-support milestones next year.

  • Windows Recall To Finally See Daylight in October Preview

    After postponing the public debut of its controversial Windows Recall AI feature, Microsoft is has finally settled on releasing it as a broad preview in October.