Ads by TechWords

See your link here
Receive the latest technology news and information.
Networking
Computerworld Daily News (First Look and Wrap-Up)
Computerworld Blogs Newsletter
The Weekly Top 10
Cloud Computing
View all newsletters




Privacy Policy
 

Hands On: A Hard Look at Windows Vista

November 10, 2006 12:00 PM ET

Security
If you distilled down all the forces driving the design goals for Windows Vista, their essence could be described in a single word: security. Many decisions that Microsoft has made regarding various aspects of Vista have been made for obscure security reasons. As you get to know Vista better, some of the changes make more sense when viewed through that prism. But at first blush, several changes and new functions are obviously about security.

Internet Explorer Security
Internet Explorer has long been a hackers' favorite target, and in Windows Vista, Microsoft has built in a variety of protections to help keep IE, as well as your computer, safe.

First and foremost is Protected Mode, which shields the operating system from actions taken by Internet Explorer or any Internet Explorer add-ins. So even if malware breaks Internet Explorers security features, it shouldn't be able to do harm to your PC, because Protected Mode in essence locks Internet Explorer inside a safe box. Protected Mode isn't available in IE 7 in Windows XP; it works only in the Windows Vista version.

A Hard Look at Vista
 
Internet Explorer in Windows Vista also benefits from the same security features that are built into the Windows XP version. The antiphishing filter does an excellent job protecting against phishing attacks, and the browser has also cracked down on potentially dangerous ActiveX controls and dangerous add-ins. (See our in-depth review of Internet Explorer 7 for details about these and other improvements in IE7.)

Windows Firewall
Those who have been longing for a true firewall for Windows will be pleased to know that Windows Vista includes a two-way firewall. The firewall in Windows XP only blocked dangerous inbound connections but did not provide any protection for unwanted outbound connections. So if your PC was invaded by a Trojan or spyware, those programs would be allowed to make outbound connections unimpeded. Windows Vista changes that, and the Windows Firewall includes outbound protection as well.

As with Windows XP, you can customize how inbound protection works by opening and closing ports, blocking and unblocking programs and so on through Windows Firewall Settings, available via Control Panel > Security > Allow a Program through Windows Firewall.

But oddly, at first it appears that you can't do the same for outbound connections. In fact, you can, but you'll have to do a bit of digging to find out how. You need to run Windows Firewall with Advanced Security. To do it, at a command prompt, type wf.msc and press Enter.

Now you can protect both inbound and outbound connections. 
Now you can protect both inbound and outbound connections.
(Click image to see larger view)

Given that Windows Firewall now has outbound filtering, there's little reason for most people to need a third-party firewall such as ZoneAlarm.

Windows Defender
The Windows Defender antispyware built into Windows Vista is no different than the one available as a free download for Windows XP, or the one built into Windows Live OneCare. It's a solid, serviceable antispyware application that includes live protection as well as automated spyware scanning.

The best thing about Windows Defender is that it was purposely designed not to pop up frequently, requiring user decisions. The worst thing about Windows Defender is that compared to products like Webroot's Spy Sweeper or Safer Networking's Spybot Search & Destroy, it offers limited protection.

One of Defender's more useful features is its Software Explorer, which provides help beyond spyware. Software Explorer lets you see programs running on your PC in a variety of categories, including Startup Programs and Currently Running Programs. It provides in-depth information about each program, including its name, executable file, publisher, path, file size and more. You can enable, disable or remove any program.

Windows Defender doesn't give a whole lot of advice in helping you decide which programs you should let run -- but on the other hand, if Windows Defender allows a program to run, it considers the program safe. You can always do a Google search to track down any application about which you're suspicious, and Windows Defender gives you plenty of information about each app, so it should be easy to do a search.

The Software Explorer gives you in-depth information about programs running on your PC. 
The Software Explorer gives you in-depth information about programs running on your PC.
(Click image to see larger view)



Jump to comments

Microsoft Windows Vista operating system

Additional Resources

EFD vs. HDD - What You Need to Know
WHITE PAPER
Enterprise flash drives provide a new Tier 0 storage layer capable of delivering high I/O performance at a very low latency. Proper use of EFDs in an Oracle environment can deliver increased performance compared to fibre channel drives. Read the recommendations for identification of the best DB components for EFDs.
Gartner Research Report: Magic Quadrant for Application Delivery Controllers, 2009
WHITE PAPER
The market for products to improve the delivery of application software over networks remains dynamic and innovative. Vendors focused on solving enterprises' most-pressing application problems have become the top players.
Eight Criteria for Server Load Balancing
WHITE PAPER
Server load balancers are a simple yet highly effective means to scale an application environment while ensuring its availability. Today's solutions should also address application performance and security. Read about the top eight criteria you should consider when choosing a server load balancer and how Citrix NetScaler meets those requirements.

What People Are Saying

White Papers & Webcasts

Death to PST Files
Download Now  

Business Process Framework Demo
Learn about Configurable Business Processes and Calculated Fields. Watch Now!

A Green Architectural Strategy That Puts IT in the Black
Levergage green computing across your data center. Read more now.  

Manager Experience Demo
Go beyond self-service solutions to perform more effectively. Watch Now.

Quantifying the Business Value of VMware View
Learn why you should invest in a centralized virtual desktop.  

Asia-Pacific Enterprise Network Solutions
Learn through this Webcast how your business can achieve reliability, performance and value in hard-to-reach locations within the Asia-Pacific region.

Mainsoft Webcast w/ Forrester Research: Drive SharePoint Adoption in Lotus Notes Shops
How can you drive mainstream user adoption of Microsoft SharePoint when your users rely on Lotus Notes?


IT Jobs