Are you running any XP machines that touch our billing/licensing information?
While not a direct answer to your question, http://community.logos.com/forums/t/83374.aspx would lead me suspect the answer is no.
-dan
I read that, but that is not directly related as I understand it. Though I could be wrong.
There are no computers at Logos that have access to billing or licensing data that are running Windows XP.
Are you running any XP machines that touch our billing/licensing information? There are no computers at Logos that have access to billing or licensing data that are running Windows XP.
Found out my local hardware store and grocer are both still using XP on their Point of Sale stuff. I told them I can't do business with them till its fixed . Several local banks are running XP on their ATM's
You realize that XP is still as safe as it was while Microsoft was supporting security patches. In the future it may become more vulnerable but most companies use security beyond that in the OS ... and likely the security community will build the patches that Microsoft no longer supplies. It is your personal computer or small businesses that don't contract out their computer services that will most likely be the first targets.
*chuckle*
Its actually not nearly as safe; the people I know in the IT security world ordered new debit cards leading up to april 8th, and refuse to use their debit cards unless they have confirmation from the vendor that they are not using XP. Paranoia? Not really. April the 7th an exploit for XP was worth 50,000-75,000$, whereas on april the 9th, after the final patch rolled out the price went up over 150,000$. There are already 10 known exploits that MS won't be patching (for the average customer or business customer) that are actively being used. Which means if you are still using XP, and are not on the 25$ a month (available to large corporations only) maintenance plan then your private data, usernames, passwords, pictures, and so forth are all fully exposed to any person with nefarious intent who chooses to look your direction. Anyone you do business with that uses XP is also vulnerable; and any information they have on you is also vulnerable. XP was less secure on the 8th (and increasingly so) than it was on the 7th.
Well, here in Arizona, even if a business is using XP registers, an XP ATM in the corner, plus has dangerous IP phones to boot, and an unsecured website, we're plenty 'armed'. Just shoot the dang things.
I can't imagine going forward what's going to happen. Travelers? Small internet business sites? We'd already tried to centralize on Amazon/Paypal since our CC gets whacked elsewhere. I'd suspect there's going to be a larger move toward heavy-duty gateway sites, servers, etc.
*chuckle* Its actually not nearly as safe; the people I know in the IT security world
Its actually not nearly as safe; the people I know in the IT security world
I would suggest that you need to find a better quality of IT security friend - (a) one with better logic and/or (b) ones who are better informed ... my primary source is a friend who is one of the most sought after security experts in the country.
No new maintenance means no new vulnerabilities only the discovery and exploitation of current vulnerabilities which, when known, can be taken into account by security patches/programs provided by other sources. The vulnerabilities prior to April 8 are the only possible vulnerabilities after April 8.
*chuckle* Its actually not nearly as safe; the people I know in the IT security world I would suggest that you need to find a better quality of IT security friend - (a) one with better logic and/or (b) ones who are better informed ... my primary source is a friend who is one of the most sought after security experts in the country. No new maintenance means no new vulnerabilities only the discovery and exploitation of current vulnerabilities which, when known, can be taken into account by security patches/programs provided by other sources. The vulnerabilities prior to April 8 are the only possible vulnerabilities after April 8.
Abondservant replied with most of what I would have said. Your last sentence is missing the phrase, "known or unknown." There will be no new MS-introduced vulnerabilities. But there well may be vulnerabilities that existed before the 8th that aren't discovered until well after. Further, there may well be known but unrevealed vulnerabilities that malicious folks have been holding onto in anticipation of the 9th and beyond.
Beyond that, any 3rd party updates may themselves introduce vulnerabilities. Third party firms can only go so far in providing updates for newly-discovered issues, e.g. virus, malware, rootkit kinds of protections. But if the fix requires MS code, they're out of luck for now.
Finally, other 3rd party updates not intended to address vulnerabilities could introduce new ones. I'm thinking especially of that blight on the internet's existence, Adobe Flash; but also updates to browsers, Quicktime / iTunes, or anything else that continues to receive XP-compatible updates.
Donnie
Donnie - I basically agree with you as you are saying pretty much what I said with more detail. The one element not mentioned is that the banks' etc... security people had a long period of time to calculate risk vs. cost - something individuals and small businesses may not have done. The results of that risk vs. cost analysis is visible in the number of ATM's still on XP. Most individuals are, unfortunately, reacting only to what they read in the newspaper. It reminds me a bit of an employee who quit to bicycle around the US because of the economic disaster that Y2K would bring. He was actually working on Y2K at the time.
Ignore this. I had a post I was editing and deleted more that I wanted. I will try to fix in a bit.
Just in case there was any confusion, I'm not recommending that anyone quit their job and go bicycling around the country. Just to take reasonable security precautions with your identity, and financial information. Its a simple question, and a significant risk at the present moment. take it as serious or as lightly as you like. But you've been warned. What you do with that info is up to you.Also - y2k - according to my friend, caused our spy and gps satellites to go "down" (in the opperational capacity sense, not in relation to their orbit) for well longer than anyone was comfortable with (hours IIRC). This made the news, and some tech journals... But was not widely publicized to people who were not in the industry at the time (as I was).
Y2K is seen as a joke by the news media because nothing BIG happened. They ignore all the work put it to stop any problems from happening.
As for XP - my XP machine has had its internet connection removed. The only problem I may have is if they break in and come at it with a hammer.
Same here only thing i use the parallels with windows XP for is my NIB CDROM.
-Dan
