I’m new here, and I very worried about security. I’ve always used Windows XP, I’m going to give the opinnion of a Windows-user. After many years searching, at least I’ve found (I think) the “definitive security tool”. It is called “geswall” and can be downloaded at www.gentlesecurity.com. Basically it adds an additional layer of ACLs at application level. It permits any user to create permissions to any application (independently of user account rights) for acceding to folders, services, objects, registry keys, etc. Moreover, it avoids applications for using OLE messages.
The problem? Well, it’s a great tool…but very complicated for a non-advanced user. For other part, it’s a lot of work to create permissions for each application in hard disk!!! Finally, the non-permission of using OLE eliminates a powerful feature of Windows, and some applications could not work properly.
As one said above, I think the definitive security could be reached with automatized “sandboxed” apps, which only can accede to their installation folders, user folder and memory space, and can execute another apps (for example, internet passwords could be saved in web-browser folder, only browser can accede to them). In addition to that, a system folder with non-critical customizations, but only allowed to write with password; the rest of system folders could not be acceded by any application, only can be reinstalled, no more.
As said here, I don’t think the multiuser could add “more security” (??) And what if an app cointaining a trojan is installed thinking it is reliable? Multiuser is an unnecesary complication, the better could be anyone would have his own folder protected by password.
Innovative concepts are neccesary to avoid falling down in “virus career”, like Windows. If Win is so extended, it is because of the easy of use with root-account, but forgetting security; people is so used to re-install Win every 15 days, that virus creators have no limits. I’ve been using Win XP since 5 years, and only been infected once, during browsing with root account. I’ve been more than 3 years without reinstalling SO and it runs very fast, after a lot of work optimizing it. I don’t use antivirus since many time, and have not any problem.
All security process shall be “automatic”, so that noone should be worried about virus, trojans, etc…If Haiku is intended to be a realistic alternative to Windows, it shall be as (or even more) easy as Windows, and include non-intrusive security concepts.