OSNews

I think those of you that are up in arms over shutting off DNS and DHCP clients are really missing the meat of this review. Seriously, this was a fantastic look at all the garbage in there that spanned 3 pages. And all you guys can say is OMG what an exageration because of 2 small items.

The point the author is making is that all these things should be off by *default* and turned on as needed. The things in question are worth thinking about, but yes some can and are questionable. I run private static address' on my home network (192.168.2.xx). Therefore I don't need extra unwanted services running.

The other point the author is making is that they make this too complicated for the average users. You can't expect Jon Q Homeuser to have the know how to go into Administrative Tools -> Services and have the first clue what to turn on or off. They should have most things off by default and a nice control panel tool that can be dumbed down for users. If they had that then the ISPs or Application venders etc could include the proper instructions for their particular setup. Instead most things are left open for convienence....which is also quite convienent for the bad guys.

Don't even get me started on the SP2 firewall. Its the most worthless POS Ive seen. Shouldnt even be called a firewall. 1. it blocks all incoming traffic but by default has an exception for remote assistance. 2. It doesnt block outgoing traffic. So if you get a virus or worm your machine can still cause further mayham. 2 doesnt actually mean as much in the case of SP2s firewall though because of.... 3. any third party process can simply shut the firewall off (yes that would include the malware).

SP2 is the first baby step in the right direction for MS. But, they are not even close yet. Even MS own security chief recently told Wired magazine that they are only 2.5 years into a 10 year plan to secure windows. Translation: Windows is not secure now and it wont be for a while.