mechBgon
Super Moderator<br>Elite Member
- Oct 31, 1999
- 30,699
- 1
- 0
Did you read my whole post? Read it again. I specifically anticipated what you just posted, and already addressed it at length. Sorry if it's not clear enough. I encourage you to read my WMF Exploit testing for a more concrete example of how a non-Admin setup (which is how Vista runs stuff) makes even a fully successful, unhindered exploit fall flat on its face. And that's just WinXP, without the hardened underpinnings they've given Vista.I will read the doc in a few minutes, but what you said about 95% of existing malware bothers me. Key word "existing", meaning what we have in existense today. There is always tomorrow, and the next day, and the next day. As the days crawl on, people will get more and more inventive. Heck, Iranians have already cracked Vista and are selling it for $8.00 USA per copy in their country, even after all of Microsofts VERY BEST efforts to eliminate copying/pirating. They broke it. So in reality, Windows Vista is only 95% secure against malware because hackers haven't had very much time yet to break through it's security features. Give them time, as they have a great deal of it apparently. As time goes on, that 95% will start to loose it's grip on that high percentile. Slipping to 94, then 92 and downward. Then MS will release critical updates to try to protect/prevent the exploits, only to have another hole punched a few minutes later.
The pirating of Vista has absolutely nothing to do with its operational security. I don't even know where you're coming from on that one
There certainly will be security vulnerabilities discovered in Vista as time goes by, even Microsoft says so. But as Johanna says,
And if you refer to my WMF Exploit test, you'll see a concrete example of damage limitation.Vista puts much more effort, compared to XP, into making exploitation harder and limiting the damage after the unlikely event of successful exploitation.
Do you see what I'm getting at? It's not just whether there'll ever be vulns and exploits. The bar is set much higher than that now; the exploit has to not only get in the door, but then figure out a way out of the non-Admin cage it broke into (*golf clap*), or else try to work from inside it. Hope that's clearer