Vista4Experts

Three days ago I got sick (not unusual for me) and had to stay in bed. Unfortunately, I easily get bored by just staying in bed. Ok, I watch some movies, I read, but then I feel the urge to do something. On the other hand, I wasn’t in the mood of working on the CFF Explorer or finishing my new article. So, I decided to work on something more relaxing (even though it turned out to be more stressful than I thought).

The result of these three days is Vista4Experts, which is, in my opinion, is kind of a treat for people like us (meaning experts), who don’t want security center notifications, User Account Control dialogs, automatic Windows Defender scannings, automatic update installations (which cause you to reboot your system if you don’t react quickly enough). People who want MSDN (or google) set as default search engine in the Internet Explorer search bar, who want the start menu power button to shut down the system instead of hibernating it, etc. These and many more fixes are included in Vista4Experts. All of these changes can be discarded, enabled or reversed. Vista4Experts is the first expert utility of its kind and works on every platform.

I realize, of course, that many fixes in Vista4Experts lower Windows Vista’s default security, but that’s the difference between users who feel enough confident to decide what’s best for their system and users who don’t. Many of Windows Vista’s security features are extremely annoying to many developers and other IT experts.

I even think it’s bad that Microsoft didn’t provide a permanent way to disable the driver signature verification and making it possible only for signed drivers to run on x64 (that if the user isn’t in the mood of pressing F8 on every boot). A way of replying to my criticism is to say that many hardware manufacturers would force the user to disable the driver verification in order to use their drivers, but that’s non-sense! No serious manufacturer would do that. This is my system and I want to run any driver that I want to! I’m pretty sure I won’t involuntarily execute a rootkit, don’t worry about me Microsoft…

Let’s take for example TrueCrypt. It’s a top quality free software and, of course, works through a file system driver. Why should the author/company pay 500$ (or less) for a 1-year certificate to sign their driver? Ok, it’s not a problem for TrueCrypt, since this product was famous long time before Vista came along. Its community surely will cover all the expenses, I suppose. But what about a new project which may start now. Should the developer invest 500$ for something which might not even cover his expenses? Oh, sure, 500$ isn’t that much, and he can do pay this amount without selling computer, but the questions are: is it right? Will he?
And myself, the user, why shouldn’t I be able to run his driver if I absolutely want to? That, of course, without being bothered by the terrible F8 or by installing a test certificate?

We keep going in the direction where the user has less and less control over his own system. It’s unfair and disappointing.

Coming to an end…

Today I uploaded the .NET Generic Unpacker for x64. It may turn useful sometime…

Yesterday I wrote the disassembler for the CFF Explorer. Very slowly the new release is coming to an end. Truth is I’m tired of working on it, but I can’t release it berfore everything is ready. I’m sure there never have been (and never are going to be again) that many updates in a new release of the CFF Explorer as in this version.