As technology marches on, some people get trapped using decades-old software and devices. Here's a look inside the strange, stubborn world of obsolete Windows machines.
If the other layers of security are in place, the risk can be managed.
The problem you describe is from things like that XP user running as admin, a failure of security layering.
Security isn’t just having all the updates, which is the implication statements like this makes.
I have XP VM’s with no service packs that connect to the internet. They’re NAT’ed in VMware to an isolated subnet that has its own firewall. No MS ports are permitted out of that subnet other than RDP, and that only from specific IP addresses. There’s more, but even just this addresses most security concerns.
This is used for testing specific software that only runs on XP.
I have to work with some of these machines. When they fail, it’s an ever increasing gamble if we’ll even be able to repair them. I already have to resort to buying parts off eBay “as is” and hoping they work. At some point, there’s not going to be any left and we’ll be utterly fucked.
If it still works for the purpose, it is NOT obsolete.
Stop fetishizing the new.
If it’s connecting to the Internet and not getting security updates, that’s probably not good.
So what you said is mostly true, but there are certainly people running windows XP thinking “I just check my email and read the news, this is fine”
Meh.
If the other layers of security are in place, the risk can be managed.
The problem you describe is from things like that XP user running as admin, a failure of security layering.
Security isn’t just having all the updates, which is the implication statements like this makes.
I have XP VM’s with no service packs that connect to the internet. They’re NAT’ed in VMware to an isolated subnet that has its own firewall. No MS ports are permitted out of that subnet other than RDP, and that only from specific IP addresses. There’s more, but even just this addresses most security concerns.
This is used for testing specific software that only runs on XP.
It’s hilarious that you think someone running XP on the internet knows anything about computer security.
totally.~
I have to work with some of these machines. When they fail, it’s an ever increasing gamble if we’ll even be able to repair them. I already have to resort to buying parts off eBay “as is” and hoping they work. At some point, there’s not going to be any left and we’ll be utterly fucked.
If it is connected to the internet, and it is not actively receiving updates, it is not working for its purpose.
If it is airgapped from all networks, I agree with you completely.
Nightmare fuel, at this point. NOTHING but shiny updated firewalls connect to the net themselves.