RE: Which Windows OS is Safest

[Michael Carroll <CarrollM () wclc com>]

Ok, before this thread goes any further off topic, the flames get any
higher, and any further misunderstandings occur, please allow me to
re-direct it to it's final resting place:

# 1 - In my original reply (included below), I mentioned that security was a
"POINT OF VIEW".  I still maintain this belief and since no further
clarification of what the devices will be used for, any further discussion
of merits of NT, 2K or 2K3 is moot.

# 2 - I do not give blanket endorsement to any one Windows OS.  My mention
of NT was based on a specific application and needs requirement performed by
OUR organization to meet a specific function.  NT was the choice for this
product; end of discussion.

# 3 - Since there has been no further follow up by the original poster, I
feel the back and forth banter is pointless.  I personally do not care what
OS you or anyone else wishes to use, and as such, do not wish to be included
on each and every mail that boasts the merits for situations that are not
applicable to this discussion.

In short, I feel this topic is a dead horse well beaten and should be left
to rest.

Kindly remove me from ALL future correspondence as I have no interest in
continuing this discussion further.

Thank you.

Michael

-----Original Message-----
From: MARTIN M. Bénoni [mailto:benoni_martin () hotmail com]
Sent: Tuesday, June 29, 2004 4:57 AM
To: sebastien.andrieu () cetelem fr; Michael Carroll; artturi () vidafalt com;
security-basics () securityfocus com
Subject: RE: Which Windows OS is Safest


Well, I am running Win2K3 since 2 months, and really it seems to be more 
secure than NT! W2K is quite good, nevertheless! :)

Not only components as IIS 6.0 have been rewrited, but many other tools have

been added as the possibility to create server's certificate. No Dr watson 
all the time...a dream! :)

I've just learned NT's support with the above mail (thanks Seb.! : )) seems 
to be dropped down...Microsoft gives up releasing NT's patchs all the time 
?? :)

Hopefully for hackers, there is still people who do not understand the 
meanings of "update", "new release", ...


> From: "ANDRIEU Sebastien (Neuilly Gestion)" <sebastien.andrieu () cetelem fr>
> To: 'MARTIN M. Bénoni' <benoni_martin () hotmail com>,        
> CarrollM () wclc com, artturi () vidafalt com,        
> security-basics () securityfocus com
> Subject: RE: Which Windows OS is Safest
> Date: Tue, 29 Jun 2004 09:05:17 +0200
>
> Totally agree with Benoni...
>
> Even if Windows NT with his last SP is quite stable, it's not really 
> secured
> !! Most of the security holes are applicative (IIS 4 is the perfect
> example...). A lot of services are turned on by default too...
>
> Windows 2000 is quite more secured, since the SP2...
>
> We use more and more Windows 2003 which provides a lot of security
> improvements. IIS 6, no useless services turned on by default, applicative
> stacks much more secured (rewritten code).
>
> I recommend a lot Windows 2003.
>
> Note that Microsoft stops is technical support on Windows NT at the end of
> this month, witch means : no more hotfixes, no more SP, no more technical
> assistance. Isn't it a good  reason to stop the use of Windows NT 4.0 ?????
>
> Have a good day folks ! :)
>
> Sébastien Andrieu
> Administration Windows
> Euroatrium / Le Touzet
> ( 01.49.21.32.34 (3-3234)
> * sebastien.andrieu () cetelem fr
>
>
> -----Original Message-----
> From: MARTIN M. Bénoni [mailto:benoni_martin () hotmail com]
> Sent: lundi 28 juin 2004 14:05
> To: CarrollM () wclc com; artturi () vidafalt com;
> security-basics () securityfocus com
> Subject: RE: Which Windows OS is Safest
>
> Humm...I cannot understand hom people can still talk about NT when there 
> are
>
> at least W2K boxes since a while, and Win2K3! NT has got a lot of bugs (6
> SPs!! ), and I think at least a whole which cannot be patched! Why NT is
> still in admin's minds???
>
>
> > From: Michael Carroll <CarrollM () wclc com>
> > To: 'Artturi Lehtiö' <artturi () vidafalt com>,"Mailing List, Security 
> Basics"
>
> > <security-basics () securityfocus com>
> > Subject: RE: Which Windows OS is Safest
> > Date: Fri, 25 Jun 2004 15:07:23 -0500
> >
> > Safest is more of a situational point of view.  Depending on the
> > applications,(uses), that the systems will be used for and what
> > functionality is required.  From my experience, WindowsNT 4.0 (and 
> Service
> > Pack 6a) allowed our organization to implement stable, reliable and 
> secure
> > machines.  Of course you will have to harden the OS by disabling
> > non-essential services within NT, but a quick search on Google or MS's
> > support site will provide you with a variety of hardening guides to
> > accomplish this task.
> >
> > HTH.
> >
> > Michael
> >
> > carrollm () wclc com
> >
> > -----Original Message-----
> > From: Artturi Lehtiö [mailto:artturil () yahoo co uk]
> > Sent: Friday, June 25, 2004 2:16 AM
> > To: Mailing List, Security Basics
> > Subject: Which Windows OS is Safest
> >
> >
> >  I would like to know what is regarded as the safest Windows OS as I 
> need
> > to
> > set up a few new computers for system administrators to use and I would
> > like
> > to use a Windows OS as the system administrators who will be using the
> > computers have only experience with Windows. I know that the wisest thing
> > to
> > do wouold be to teach them how to use another OS like OpenBSD but it 
> isn't
> > possible.
> >
> >  Thanks.
> >
> >  Artturi Lehtiö
> >  artturi.lehtio () vidafalt com
> >
> >
> >
> > >
>
> ---------------------------------------------------------------------------
> > Ethical Hacking at the InfoSec Institute. Mention this ad and get $545 
> off
> > any course! All of our class sizes are guaranteed to be 10 students or 
> less
> > to facilitate one-on-one interaction with one of our expert instructors.
> > Attend a course taught by an expert instructor with years of in-the-field
> > pen testing experience in our state of the art hacking lab. Master the
> > skills
> > of an Ethical Hacker to better assess the security of your organization.
> > Visit us at:
> > http://www.infosecinstitute.com/courses/ethical_hacking_training.html
>
> ---------------------------------------------------------------------------
> -
> >
>
> ---------------------------------------------------------------------------
> > Ethical Hacking at the InfoSec Institute. Mention this ad and get $545 
> off
> > any course! All of our class sizes are guaranteed to be 10 students or 
> less
> > to facilitate one-on-one interaction with one of our expert instructors.
> > Attend a course taught by an expert instructor with years of in-the-field
> > pen testing experience in our state of the art hacking lab. Master the
> > skills
> > of an Ethical Hacker to better assess the security of your organization.
> > Visit us at:
> > http://www.infosecinstitute.com/courses/ethical_hacking_training.html
>
> ---------------------------------------------------------------------------
> -
> >
>
> _________________________________________________________________
> MSN 8 with e-mail virus protection service: 2 months FREE*
> http://join.msn.com/?page=features/virus
>
>
> ---------------------------------------------------------------------------
> Ethical Hacking at the InfoSec Institute. Mention this ad and get $545 off
> any course! All of our class sizes are guaranteed to be 10 students or less
> to facilitate one-on-one interaction with one of our expert instructors.
> Attend a course taught by an expert instructor with years of in-the-field
> pen testing experience in our state of the art hacking lab. Master the
> skills
> of an Ethical Hacker to better assess the security of your organization.
> Visit us at:
> http://www.infosecinstitute.com/courses/ethical_hacking_training.html
> ---------------------------------------------------------------------------
-

_________________________________________________________________
Add photos to your messages with MSN 8. Get 2 months FREE*. 
http://join.msn.com/?page=features/featuredemail


---------------------------------------------------------------------------
Ethical Hacking at the InfoSec Institute. Mention this ad and get $545 off 
any course! All of our class sizes are guaranteed to be 10 students or less 
to facilitate one-on-one interaction with one of our expert instructors. 
Attend a course taught by an expert instructor with years of in-the-field 
pen testing experience in our state of the art hacking lab. Master the
skills 
of an Ethical Hacker to better assess the security of your organization. 
Visit us at: 
http://www.infosecinstitute.com/courses/ethical_hacking_training.html
----------------------------------------------------------------------------


---------------------------------------------------------------------------
Ethical Hacking at the InfoSec Institute. Mention this ad and get $545 off
any course! All of our class sizes are guaranteed to be 10 students or less
to facilitate one-on-one interaction with one of our expert instructors.
Attend a course taught by an expert instructor with years of in-the-field
pen testing experience in our state of the art hacking lab. Master the skills
of an Ethical Hacker to better assess the security of your organization.
Visit us at:
http://www.infosecinstitute.com/courses/ethical_hacking_training.html
----------------------------------------------------------------------------