News SP2 Users battling against torrent of Rootkits

http://www.bit-tech.net/news/2005/12/07/SP2_Rootkit_Warning/

 

I smell non-objective journalism...

Doing something for the user? That's a first. However, wouldn't it be against the DMCA for MS to remove Sony's rootkit?

 

the entire OS is based around the user, have you not read the amount of hoops MS has to jump through when it wants to release updates, patches or more software? its stupid. Everyone winges about how "inseucre" their OS is, well yes, but its the price you pay for useability. If you want a secure OS use OpenBSD, just be sure to read if the bit of software you want to use is even compatiable with it. (note even some MySQL versions wont run on OpenBSD due to the way it secures its self.)

 

bah

run os X

zero viruses (virii?) in 5 years.

 

Viruses, there is no "virii".

 

Glad I stuck with SP1 then.

 

OS X just got labed as the LARGEST security hole by SANS or CERT one of the two, it was listed in the Top 10 vunerabilites of 2004, never has a FULL OS been listed

 

Did you read why?...

 

Linux all the way my babies..

 

LOL that's just daft. SP2 has reduced the attack surface of XP by a fair bit, so by not installing it you're making your machine more vulnerable. I was involved with the beta of SP2, and I still can't understand the problems people try to blame on it - we proved time and again that there were very few new issues caused by SP2 throughout the beta.

As for this being Microsoft's fault, yes, to a degree. However, until such time as software vendors start making their software properly so it'll run under a limited user account, you can place the blame on them too. If we all run under 'Standard User' instead of 'Administrator', the vast majority of these rootkit apps and similar would be nullified as the low-level OS permissions wouldn't allow them to be installed.

 

From SANS:

Compare that to Microsoft, who always disclose the exact purpose of a software update, in brief in Windows Update and in full in the associated KnowledgeBase article. OS-X is nothing special - it's an OS, therefore it has security holes, it's a given. It's most likely got as many as Windows, it's just that because Windows is more widely used, its bugs tend to get found quicker (and exploited more aggresively).

 

The article doesn't state that SP1 is any safer, since it's not! SP2 is the most secure version of XP there is, no doubt about it - an inarguable fact.

What's also true is that XP SP2 still not totally impenetrable, and that it can still get infected with malware. A lot of this is down to user stupidity and ignorance - still clicking on email attachments from people they don't know etc.

If you don't like the Security Center that comes with SP2, disable the service and it'll never bother you again! If you don't like the connection limit in tcpip.sys, patch it... but I've never needed to worry on my PCs.

I can't see any reason NOT to install SP2.

 

im a sp2 user and i havent been battling even 1 rootkit let alone a torrent of them

 

Do you open random email attachments and run weird executables which you don't know where they came from?

 

yes all the time
in fact i sign myself up to spam sites so i can get e-mails to look at

 

LOL. I ended up with an annoying piece of software called Perfect Keylogger on my PC not that long ago, it hid itself from Task Manager but Process Explorer showed it up. No idea how it managed to install itself, but I soon got rid of it once I'd discovered it.

I guess that's the only real piece of malware I've had.

 

i've had one piece of spyware in the last few years and that came from my sister's pc cos shes a noob with too many msn contacts

 

Hopefully Microsoft will lump Suncomm MediaMax and First4Internet's XCP (Both commonly reffered to as the Sony Rootkit) into the "illegally installed spyware" category and kick them to the curb, too.

 

The Sony rootkit software is already in the list for the next scheduled Malicious Software Removal Tool rollout at the beginning of next month Think it's also removed by MS Anti-Spyware.