bz wrote:


> NEVER hook a vulnerable machine to the network. Download the latest AV
> program and definitions on another machine and transport via CD or thumb
> drive.


How should that stop the compromise? Exactly not at all.
And why are you ignoring obvious things like
- downloading *patches* on another machine
- configuring the host properly
- using a host-based packet filter

Each of those would do the job. A virus scanner surely doesn't.

> As of OE as a news reader or mail client, do you leave your car with the
> engine running and the doors unlocked?
> Microsoft[in the head] software was designed, from the ground up, like a
> car with no ignition key and no locks on the doors.
> Over the years, they have drilled holes in the door and used self tapping
> screws to tack on hasps and loops to allow you to hang a padlock on the
> door,
> but 15 seconds with a screwdriver and the hasp is undone. 1 second with a
> pry bar and the hasp is popped off.


Once again total nonsense. OE is well-documented to not being intended to be
secure in a untrusted environment, so the only problem is that Microsoft
often creates the impression of the contrary.

> Vista has spot welded the hasp onto the door but requires you to unlock 2
> locks each time.


Even more nonsense. Windows Vista is well-documented to be insecure in an
untrusted environment.