http://blogs.technet.com/security/archive/2006/08/24/449938.aspxIn my recent exploration of Windows Vista x64 security features and Patchguard (see pt1 and pt2 ), one of the issues sent my thoughts in the direction of how "perfect" security feature are (or are not) and how that affected security value to customers.enCommunityServer 2.1 SP1 (Build: 61025.2)http://blogs.technet.com/security/archive/2006/08/24/449938.aspx#455433Mon, 11 Sep 2006 21:37:28 GMTd5e57398-b9ef-4490-9955-07cbb4e4a80d:455433Alun Jones&quot;Silver bullets are for werewolves - vampires need wooden steaks&quot; :-) <br>Note that even when you come up with a really good security feature, say Patchguard, someone else, say an antivirus vendor, cries foul because they want to be able to inject code into every device driver on your system, as well as the kernel. <br>As users and administrators, we're faced with the dilemma that many malware actions are actually also reasonable user actions. <br>&quot;Delete this document&quot; - 'No, you might be a virus' <br>&quot;Update this field with a different number&quot; - 'No, you might be a virus' <br>Pretty soon, you end up with OS and data carved in stone, never to change - not so useful. <br>Obviously, there's some measure to which you can spot malware that says &quot;delete this document, but do it in such a way that the user doesn't figure out that you're doing it&quot;, and that's where much of the skill lies.http://blogs.technet.com/security/archive/2006/08/24/449938.aspx#459442Wed, 27 Sep 2006 21:05:07 GMTd5e57398-b9ef-4490-9955-07cbb4e4a80d:459442Think Security - Jeff Jones Security Blog Happy&amp;amp;nbsp;day, if you get this dialog&amp;amp;nbsp;box:&amp;amp;nbsp; &nbsp;This&amp;amp;nbsp;screenshot comes from Zdnet article&amp;amp;nbsp;Vista...http://blogs.technet.com/security/archive/2006/08/24/449938.aspx#506861Tue, 07 Nov 2006 22:28:59 GMTd5e57398-b9ef-4490-9955-07cbb4e4a80d:506861Jeff Jones Security Blog<p>Happy day, if you get this dialog box: This screenshot comes from Zdnet article Vista passes one security</p> http://blogs.technet.com/security/archive/2006/08/24/449938.aspx#3054257Tue, 13 May 2008 01:08:03 GMTd5e57398-b9ef-4490-9955-07cbb4e4a80d:3054257Jeff Jones Security Blog<p>I was excited when Dr. Crispin Cowan joined the company a while back - what security person wouldn't</p> http://blogs.technet.com/security/archive/2006/08/24/449938.aspx#3087963Sat, 12 Jul 2008 22:04:13 GMTd5e57398-b9ef-4490-9955-07cbb4e4a80d:3087963UAC, an Excellent Description and Discussion by Crispin Cowan | IT &amp; Network Security Blog<p>PingBack from <a rel="nofollow" target="_new" href="http://ntoolz.net/blog/2008/07/12/windows-security/uac-an-excellent-description-and-discussion-by-crispin-cowan/">http://ntoolz.net/blog/2008/07/12/windows-security/uac-an-excellent-description-and-discussion-by-crispin-cowan/</a></p> http://blogs.technet.com/security/archive/2006/08/24/449938.aspx#3088182Sun, 13 Jul 2008 11:05:08 GMTd5e57398-b9ef-4490-9955-07cbb4e4a80d:3088182UAC, an Excellent Description and Discussion by Crispin Cowan | IT &amp; Network Security Blog<p>PingBack from <a rel="nofollow" target="_new" href="http://ntoolz.net/blog/2008/07/13/windows-security/uac-an-excellent-description-and-discussion-by-crispin-cowan/">http://ntoolz.net/blog/2008/07/13/windows-security/uac-an-excellent-description-and-discussion-by-crispin-cowan/</a></p>