On Wed, 06 May 2009 23:17:22 +0200, Anders Johansson wrote:
On Wednesday 06 May 2009 22:46:44 Jim Henderson wrote:
We're not talking about local exploits, though. Changing the subject midstream distracts from the discussion itself.
The topic is security. This whole discussion is a little akin to sending a serial killer out on the streets with the proviso that he's not allowed to use a crossbow.
The topic is limiting inbound/outbound connections as an element of security.
The (apparently not so obvious) point is that once you have a local exploit, you also have the means to bypass, or completely remove, your ZoneAlarm.
I've not seen any such exploit. Got a reference?
Depends on the user. I've seen normal users who use it who do question every time i comes up because they do want to be protected.
I've seen it often enough. Even the most arduous user will give up after 100 clicks and allow full access to their email program (for example)
And I've seen enough users who do exactly what they're told. It's not reasonable to characterize all users as not doing it (or doing it, for that matter) just based on a limited sampling of all users.
It's a combination of technological measures and educational measures for the users. ZA provides a technological measure that does have a positive effect - many people voluntarily run it because they recognise they need to protect themselves. Some of those people even pay for it.
No, they run it because they believe the advertising (including free ads, like this thread) and think it makes them safe
And for many of those users, they do. Got a reference for a ZA-based exploit?
That's a difference between ZA and UAC - UAC wasn't really a user choice, it was forced on the users.
Give the users a choice on methods to protect themselves, though, and they do take it. Well some do, and those who don't there's no change with.
Sure, and some people try to cure serious diseases with homeopathic medicine. It still doesn't mean it works
And some people apply homeopathic remedies as part of their daily living, along with eating a balanced diet, exercising, and getting enough sleep at night - and many of those people don't get sick. I agree, applying a "homeopathic remedy" (ie, a single point solution) to "cancer" (malware) doesn't solve the problem. You need a comprehensive strategy. I have not ever advocated this as the "killer solution" that eliminates the need for other forms of protection. Come to that, I didn't even propose the idea in the first place. :-) Jim -- Jim Henderson Please keep on-topic replies on the list so everyone benefits -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org