[Info-vax] "Shanghai Stock Exchange" and OpenVMS

Johnny Billquist bqt at softjar.se
Thu Jan 22 18:06:47 EST 2009 

Bill Gunshannon wrote:
> In article <CKqdnel_5rWYS-XUnZ2dnUVZ_v_inZ2d at giganews.com>,
> 	"Richard B. Gilbert" <rgilbert88 at comcast.net> writes:
>> Bill Gunshannon wrote:
>>> In article <0005d0dd$0$2088$c3e8da3 at news.astraweb.com>,
>>> 	JF Mezei <jfmezei.spamnot at vaxination.ca> writes:
>>>> Richard B. Gilbert wrote:
>>>>
>>>>> You can safely plug them in and turn them on.  It's when you connect 
>>>>> them to a network that you have to worry about "electronic organisms" 
>>>>> infecting your Windows systems.
>>>> This week's virus can be transmitted when you plug in an USB key.
>>>>
>>>> Sony managed to infect Windows machines when the user inserted a MUSIC
>>>> CD into the machines (that rootkit thing).
>>>>
>>>> So leaving a Windows box unconnected to a network is not a garantee that
>>>>  it won't be infected.
>>> And all of these exploits can be prevented by proper configuration of
>>> Windows.
>>>
>>> bill
>>>
>> And how many people know how to "properly configure Windows"???
> 
> How many know how to "properly configure VMS"?
> 
>> Where is this "proper configuration" documented?  The last time I looked
>> Windows was shipping without any "documentation".
>  
> Well, you can get docs from NIST specifically covering security.  And then
> there are the checklists from DISA that are publicly available.  And, being
> as we are talking about supposed professionals in major corporations and
> not your momma's PC,  if they don't already know where to find this stuff
> they certainly should know how to go out and find it.  Even Google finds
> piles of references including the stuff from NIST.

Right. So, all you have to do to make your Windows computer safe is surf 
around a while, look at various places, which you *hope* will give you 
good information, and not actually make your machine more exploitable 
(how do you know what to trust on the Internet?). So you boot your 
machine, insert a CD or two, to install some software, hopefully don't 
insert any music CDs, surf around without catching the attention of 
anyone who just happens to probe your machine before you manager to 
improve the security. Find information on the net which is correct, and 
which you can trust, which you then follow. And then you hope that there 
isn't even more you need to do which isn't mentioned anywhere you can 
find (how did you even know what to look for in the first place?).

Don't you see how ridiculous this is?

	Johnny

-- 
Johnny Billquist                  || "I'm on a bus
                                   ||  on a psychedelic trip
email: bqt at softjar.se             ||  Reading murder books
pdp is alive!                     ||  tryin' to stay hip" - B. Idol

More information about the Info-vax mailing list