> > > Perhaps we ought to start getting rid of the OS's that don't use
> > > (this modern concept of) protected memory instead?
> > That would be nice, but protected memory won't stop an EXE infector from
> > invading an NT box.
> Or a boot-sector or partition-sector infection on an NT box (or any
> other x86 machine, regardless of operating system).
Um, yes, it will keep a boot sector infector from infecting a box. You
can't write to the boot sector under NT or UNIX from a user program.
(you're still subject to floppy infections, but we're talking firewalls,
not armed guards in computer labs)