When downloading files the computer shows the fault
message " NT AUTHORITE/SYSTEM " RPC (Remote Procedure
Call) service, system will stop in about 40 seconds.
The computer then reboots without downloading any file.
This is as good a place as any to raise a point that I have not seen
in this newsgroup.
Over the last several months, many new internet security threats have
appeared which exploit Microsoft's DCOM and RPC flaws. Each time a
new threat appears, Microsoft releases a new patch tailor-made to
counter that one new threat. Each time Microsoft tells everyone to
just update their computers. Again.
This approach is not enough. Each patch does nothing to block any new
variations that inevitably arise. As a result, any unprotected
Microsoft-based computer today will be attacked within minutes after
connecting to the Internet, before they even have a chance to download
and install the latest patches. You don't have to visit any nasty
websites. You don't have to receive any malicious emails. You just
have to connect without protection.
Now,what has me confused is why Microsoft chose to unconditionally
enable DCOM and RPC on every installation in the first place. Because
of this one decision, all NT, 2000, and XP computers, and only these
computers, are at great risk for little practical benefit. Few
end-users will ever use these services. To my knowledge, their only
practical use has been to infect millions of computers worldwide.
And what has me really scratching my head is why Microsoft doesn't
just issue one patch to turn off DCOM and RPC, and instantly block all
existing and future threats based on these services.
That is exactly what I have done on all the computer in my care, and I
have noticed no loss of performance or functionality on any of them.
There is a very small program, created by Steve Gibson, which
selectively enables and disables these services. It is call
DCOMbob.exe, and is available at
http://grc.com.
I invite all to share with this newgroup any facts and/or opinions
they have on these issues.
FWIW