Read CNET’s interview with Marc Maiffret.

Alright, this interview proves points I’ve been telling people for years.

Marc Maiffret, a hacker, the Co-Founder of eEye, a… Hell, just wiki/google the name…

The interview obviously went over security issues and all. Here’s something that interests me when CNET asked Marc regarding Microsoft software security state at the time being:

Now when you look at Microsoft today they do more to secure their software than anyone. They’re the model for how to do it. They’re not perfect; there’s room for improvement. But they are definitely doing more than anybody else in the industry, I would say.

The interview is really interesting. Whoever reads this should read the whole interview (Too bad they didn’t talk about Linux security).


6 thoughts on “Read CNET’s interview with Marc Maiffret.

  1. Microsoft can’t secure windows because most users don’t want to compromise convince for security. That’s why windows is inherently susceptible to attack no matter how hard Microsoft tries to secure it. You saw how people reacted when they added those security pop ups in vista.

    Linux, on the other hand, treats legitimate users like a foreign object. it doesn’t grant them privileges to anything but their own files. That’s why the system rarely gets compromised. if you need to do something that can effect the system, you’ll have to gain root access by typing in a password. I seriously doubt win users will ever except or adapt to such drastic measures.

    That’s one of the reasons why windows will probably always be insecure, and *nixs will not.

  2. 1) It’s not a case who’s more secured than who. It’s the efforts Microsoft’s pulling to keep things well (And they’re pulling some good strings in Win7)

    2) You CAN’T find a system that gives a good mixture between ease of use and security the way Microsoft does in Windows7

    3) I can assume you haven’t used Windows7, which is why you don’t quite have a good stab; Windows7 new UAC control actually treats funny objects as a big no no. For example: if there was a software that needs to change anything critical in the system (Whether you logged in as Administrator or not), won’t run properly (If not at all) unless you right click on the program and choose “Run as Administrator” and then a message will pop up saying “Are you sure you wanna run that shit in Administration mode?”… If you clicked “yes” (Which is obviously will be your own responsibility for committing such action) then you better know what you’re doing or you gonna get pooped, if not, the software won’t run.

    4) Linux wasn’t mentioned so you can’t bring that here. And in your own argument, you said “most users”… Which means that users causes the issues, not the system. The same user can write down the root password in Linux and crap his system.

  3. b.. but… I did use windows7 🙁

    regardless, you’re right. I was off topic. and microsoft does seem to be pulling it’s act together. If it’d done it sooner, I might still be a windows user.

  4. Good, now you know whats your mistake and knowing is half the battle… The other half is to maek me cheezburger!!

  5. “The same user can write down the root password in Linux and crap his system.”

    Wat? the same thing could be said for all OSes

    Besides, no one is stupid enough to damage his own Filesystem. Users that aren’t tech savvy treat their PC like an alien life forms.

  6. Exactly my point! It’s not just a system security, it has to have something we all call “Common sense” which most of such users lack. Which is why every single OS is vulnerable to those users.

    That being said, everyone is stupid enough to damage their Filesystem if they don’t know what the hell they’re doing and “started to act smart” like most of us “who downloads pirated software and boom! a trojan is attached in some sort”…

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.