All of the arguments used above, are in danger of being demolished....
Well, you'd have as much trouble (or ease) networking linux too. And if you did not, that means you left your linux box insecure....
You should show that article to the M$ n00bs who call their firewall - IPSec.[/b]
Its NOT ipsec, and whatever noobs say is not something for you to care about - the official stance has no link with what noobs say, right?
And anyways, going by what noobs say, is a poor indicator of the usage base of an app. I've seen hundreds of dumba$$es forcing me to try out firefox once and then ill love it, blah-blah. They cant digest it when I say I've known about ff since its inception & using it where relevant, & when I mention mozilla suite, they dont even have any idea of the old suite that existed since much longer ago, and they say "forget that old browser u were using, just give ff a try" - how dumb, they dont even know the history of their beloved browser, they'll just keep jumping to the dumbest app existing around! (moz suite was the DADDY of firefox & I loved it in its initial days when it was at beta 0.3 - year 1999 or so). I end up believing that only idiots use firefox - but thats not necessarily the case!
And
Windows Firewall is pretty decent for its purpose! Like I said.....
Till windows got a basic firewall integrated, ppl kept poking a finger & saying the OS is insecure. The day the firewall DID get integrated, now they have to whine that its too much of a bother to configure firewalls, blah-blah...
It can be disabled for the noobs that love infections. And for the power-users, I pity their (OUR...) fate. The original plan was to put in a much more comprehensive firewall - but then, you'd have ZoneAlarm, Symantec, & co. whining & filing anti-trust suits.
(example: IE would have got updates much sooner if gates did not have to argue in court that its not a separate product - which in turn was forced by a cunning company called Netscape.) Cripple MS, make them unable to make changes to their products (using flimsy law-suits lying them up for decades), and then say they aren't updating products? How much more under the belt tactics are allowed before Netscape could get called an a$$hole? But still everyone supported netscape cuz they were the underdog & the public did not know the truth. The "easy user experience" that you call windows to be, would be nowhere without IE!
I wonder why they dont just tell the detractors to shove a finger up someplace nice, & integrate all the software & improve it, in just the way they want.
Run as a normal user & THEN try complaining to me that windows attracts spyware? I have no sympathy for those who use the admin-privileged accounts for things that do not need it & then face problems. Anyways dear dear linux encourages non-root usage as well, just that the windows users are too dumb to heed the instructions to NOT run as admin by default. So tell me, if users are dumb, is it the OS's fault? Seriously?
Frankly, when I see a million home users with pirated winXP, but still acting as if they've been deprived of something, I feel like MS should tighten activation even more & raise prices such that only corporates can afford it, to stop the incessant whining.
I mean, a guy goes & gets an XP disc from local market for 50 rupees. And he installs it on his machine & uses that OS for absulutely every damn thing. Of his own choice too - no one told him he HAS to use windows or that someone restricted him from using an alternative. And then he'll complain windows limits choice. Wow!
🙂
And he'll be too lazy to apply the updates that MS makes available regularly, with a lot of effort from their end. And he'll still complain about a particular bug, TWO YEARS after a hotfix was released for the same, & the latest SP even contains it. Again, wow.... just wow.
😕
was there any logic to limit the no. of outgoing connections to 100?[/b]
Hmm, you have ANY idea what you're talking about?
SP2 introduces a revamped TCP/IP stack, which among other things, limits the max number of half-open TCP connections to 10, at any given point of time. For all normal users, this makes absolutely no difference. You can have a MILLION tcp connections on, at the same time. The limitation is on half-open requests. Do you know what it is, d'you get the difference?
And well, the only ppl who need more than 10 half-open connections at a time, are P2P users who connect to hundreds of peers at a time - that's admittedly a small geek population who can anyway make the customizations they want & still be protected. (give me an example - which other non-P2P apps needs more than 10 half-open TCP reqs?) As for the general ppl, the SP2 limitation is a blessing, for security. Read below:"EventID 4226 TCP/IP has reached the security limit imposed on the number of concurrent TCP connect attempts"
This is what I get from a MS-Guy when i asked him why XPSP2 slows down programs like emule which open many connections to different destinations:
"Thanks very much for responding. This new feature is one of the stack's "springboards", security features designed to proactively reduce the future threat from attacks like blaster and Sasser that typically spread by opening connections to random addresses. In fact, if this feature had already been deployed, Sasser would have taken much longer to spread.
This is new with XP SP2 and we're trying to get it right so that it does not interfere with normal system operation or performance of normal, legitimate applications, but does slow the spread of viral code. New connection attempts over the limit for half-open connections get queued and worked off at a certain (limited rate)."[/b]