Re: Proposal

From: Beth (BethStone21_at_hotmail.NOSPICEDHAM.com)
Date: 02/25/04 

Date: Wed, 25 Feb 2004 16:42:39 -0000

PlasmaDragon wrote:
> Hmmm....All that functionality with a "small" footprint would be
hard.
> Unless maybe you had it download stuff like instructions, virus
> signatures etc. from a server and just stored in RAM (on the HDD
would
> be just the core downloader). If the comp isn't connected to the
net,
> there is no way they can distribute virrii, so no problem. If it
is,
> you could have the program try to only communicate w/the server when
> there is regular activity going on, so they don't notice that their
> comp is doing all sorts of net activity while they're doing nothing.
>
> Also, how would we figure out source code for all virii? Would be
> quite a challenge. Checking for just exe's and compilers is not an
> option as it would mean that a legitimate developer who got infected
> and hasn't scanned recently (it could happen to the best; it's
> impossible to constantly run a virus scan).
>
> An interesting idea...one I've tossed around in my head a bit, but
> never thought of implementing due to my complete lack of skill.

Out of interest; What about the issue of viruses that learn how this
mechanism works and simply "piggy-back" their way onto a system with
apparent "legitimacy"? Disabling the scanner...dropping the
defences...and so on and so forth...

Kind of like you're just creating _another_ route into the system that
can be compromised in time...

What's wrong with simply _REJECTING EVERYTHING_ entering into a system
unless it is directly expected and given express approval?

Don't create more connections and more complex pieces of technology
sitting on top of other pieces of complex technology, opening up more
"exploits" and being completely impossible to properly manage to close
up "loopholes"...you are "techno fixing" just for the sake of
it...that's what _causes_ these problems, NOT what solves them...

The simplest solutions work best: When you don't need something,
switch it off (this also marginally reduces your power bill too
;)...disable all "options" and "features" that are unnecessary to what
you do or you're not going to be using for a while ("Remote
Assistance"? Yeah, right...and even if you do think you might need
this then you only need it switched on during the actual "remote
assistance" session...disable it otherwise...although, better yet,
delete the bloody thing off your system altogether! It's not worth the
risk...just pay the extra to get someone to come round - where you can
keep an eye on them - rather than this nonsense ;)...distrust all
files that you don't know 100% where they came from or where they
might have been since you last saw them...blah-blah-blah...

Indeed, one of the best protections for your machine: SWITCH IT OFF!
No power, no problem...getting the "subtle" hint yet? The more
complicated this stuff gets, the more and more impossible it is to
manage and regulate and ensure things don't sneak in unnoticed...

For instance, imagine if what Windows did rather than sit there
constantly waiting for "remote assistance" that kept the darn thing
switched OFF _at all times_ but that if a "request" comes in then up
comes a "enable remote assistance?" dialogue (suitably protected from
any "automatic" program replying "yes" that it _has to_ come from the
mouse and from a user account with the "permissions" to do so too ;)
and _THEN_ and _ONLY THEN_ does it switch it on...and, of course,
switches straight back off once the "session" is complete...plus the
option to simply say "NEVER" to such nonsense, anyway, that it can be
made _permanently off_ (to the degree that it's one of those "Windows
components" that you can physically _remove_ it off your hard drive
completely when you don't ever need it)...do that also with the modem
connection...do that also with, well, everything...

Microsoft seem to disagree with this and keep on creating more and
more "techno fixes" that open up more and more "Windows of
opportunity" for exploitation...but, like, when you leave the house,
what do you do to keep intruders out? Yeah, exactly...the perfect
security advice:

Close the Windows ;)

Beth :)