[Leaplist] Microsoft NT 6.0 (Vista) technical realities -- WAS: ignorance-based FUD

ray ssma at sunstatemartialarts.com
Thu Dec 28 19:44:15 EST 2006 

Carter Manucy wrote:
> Bryan Smith wrote:
>
>   
>> Facts:
>>
>> 1.  In all NT 5 releases (5.0=2000, 5.1=XP/2003), hardware driver signing
>> is an option, it's enforcement is just optional.
>>
>> 2.  In all NT 5 releases, software signing an is an option, it's
>> enforcement is rather pathetic (.inst "click through, .exe is "manual
>> right-click").
>>
>> 3.  In all forthcoming NT 6 (Vista, "Longhorn Server", etc...). #1 and #2
>> will become required defaults with less options to disable/better
>> enforcement.
>>
>> 4.  To obtain a key for signature, you have to get pay for signing key
>> with a select CA, and also deal with Microsoft.
>>     
>
> I'd like a little futher clarification on #3.  From what I understand,
> there will be no way to disable the Kernel Patch Protection (KPP) in
> 64-bit Vista for driver signing.  From what I understand, Microsoft only
> did this in the 64-bit version because they wanted to 'start fresh' with
> this KPP and keep the kernel clean (vs how it'd been violated 6 ways to
> Sunday in previous versions).  So the 64-bit version is becoming "the
> line" that future versions of Windows will build off of, and perhaps some
> day take it even further to lock it down completely.
>
>   
you are semi right here.  the 64 bit Prof. vs (corp. edition ONLY, not 
home user vs) has the KPR and aggressively defends the kernel to the 
point of making it almost impossible for administrators to get anything 
done without being hassled about everything they are doing and even then 
it is skeptical if the OS will allow you to do as need be.

Please keep in mind that the vast majority of Vista 64 bit or other will 
NOT have this level of protection.
> Obviously KPP will have some workarounds (there is already known hacks to
> kill it), but it will stop the main channel vendors from hooking the
> kernel with their software/drivers, thereby possibly de-stablizing the OS
> - at the same time giving Microsoft the flexibility to change the kernel
> without notice (which they haven't been able to do in ... forever?)
>   
yes there are several workarounds, aka hacks and viruses, so far all 
proof of concept as Vista has not been deployed long enough or in enough 
numbers for crackers to go after it in ernist.
> But again, I don't believe all of this added functionality is available in
> the 32-bit version of Vista.  From what I understand, all you really have
> in Vista (32-bit) over XP is some fancy new GUI, everything re-arranged on
> the desktop, and malware protection built in.  Whoppee!  And oh yeah,
> BitLocker.
>
>   
yes the 32 bit and even the 64 bit for home users is XP on steroids with 
the GUI and much higher level requirements for the software to run.
> -Carter
>
>
> _______________________________________________
> Leaplist mailing list
> Leaplist at leap-cf.org
> http://lists.leap-cf.org/mailman/listinfo/leaplist
>   


-- 
Raymond L. Brunkow
5th Degree Black Belt
Chief Instructor & Owner
Sun State Martial Arts
407-786-2525
http://www.SunStateMartialArts.us

-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.leap-cf.org/pipermail/leaplist/attachments/20061228/084bbe2d/attachment.html

More information about the Leaplist mailing list