Microsoft OneCare Has Holes

1. Any program using JVM can bypass any OneCare firewall restriction.

2. Any signed program will automatically bypass any firewall restriction.

Both of these issues are a concern to security people. Any blanket security bypass rule is a bad idea. It just invites malicious hackers and other malware goons to exploit it. These settings, if they hold past the beta period, are especially troubling in light of the success that spyware and adware vendors have been having. They already routinely use signed controls to install themselves onto users PCs, and certainly they will continue to use them to bypass this service. Security Adviser | InfoWorld

Linked by shanmuga Monday, 30th January 2006 12:17AM