Discussion on win 7 security issues

Nowadays, everyone basically uses the win 7 system, but what about the security of the win 7 system? It is necessary to look at the usual experience of everyone, and today we will open a win-win security discussion conference. Let's go. Webpage hanging horses have become a hot issue of recent network security. Many webpages of overseas websites, travel websites and even government websites have been smashed. We realize that the phenomenon of domestic webpages is getting more and more serious. We see that there are 0days that exploit IE security vulnerabilities, such as last year's XML, or ActiveX control's 0day, such as the OWC security vulnerability a while ago. In this process, security vendors either launch their own IE browser's Plug-in monitoring, or block URLs, or make articles on anti-virus.

I have always had reservations about the effects of response type software such as anti-virus. Real security improvements still depend on improvements at the operating system level.

For example, a virus that used to give boot sectors in the DOS era was once popular, but with the improvement of the operating system, such viruses have disappeared on Windows because of its attack method. It has been blocked at the operating system level. This level of security improvement is not possible with anti-virus software.

Vista is not popular in China for various reasons, such as performance. It is still dominated by xp. Let's take a look at the current hang-ups for IE/XP. The big deal is to give 0day or a patched security vulnerability (users may not be updated in time), add heap pollution, and then infect users. machine. The effect is that the user visits a malicious web page and then scams.

Then let's see what it would look like on Win7. On Win7, IE8+DEP+ALSR+SEHOP+Low Right (open UAC), all the current webpage hanging methods can not be successful. In other words, even if IE8 has a 0day security vulnerability, you will not be infected if you access a malicious webpage that has been hung on Windows7. No need for help from other anti-virus software. Of course, if you must download an EXE file and run it again, there is no way.

Win7's performance and dual-use are much better than Vista. From the current feedback, the popularity of Win7 will be very fast. With the replacement of XP, the phenomenon of webpages that have troubled everyone for so long will be greatly improved. Of course, attackers will always find new ways to attack, but it is estimated that the attack method that is so easy on XP is not there. I also mentioned to a few friends who work in the security field, to evaluate the impact of Win7 on their products. A new round of shuffling will also be in the next two years.

From the reaction of everyone, it seems that the security of win 7 is still quite good. As for what else, we have to use it again. If you find any problem, remember to discuss it with others. under.