Slashdot Mirror

Anonymous Coward writes "For the second year in a row, Microsoft has waited for Novell's annual BrainShare show to start before claiming a huge customer migration win off NetWare and onto Windows. According to this article Microsoft says that there were more than 1.8 million successful commercial sector migrations in 2005 alone, and a total of 3.3 million customers migrated over the past two years. It has also launched a new program to lure customers in the education and state and local government sectors off NetWare and onto Windows." Novell's comments are enlightening about where they see themselves within the market.

An anonymous reader writes "eWeek is reporting that Ward Cunningham, creator of the wiki, has predicted an encouraging future for open source and collaborative development. From the article: "Cunningham, who is director of committer community development at the Eclipse Foundation, said open-source software will continue to grow and thrive because it enables user innovation. '[...] No end user wants to be a programmer; they just want to get their jobs done,' he said. But more and more people with powerful tools and powerful languages will be able to work together to build better systems, he said."

Jason Lind writes "Much earlier than anticipated, Microsoft announced the release of Atlas this afternoon at MIX 06. For those who don't know, Atlas is Microsoft's AJAX API for ASP.NET 2, which they claim will greatly reduce the effort in developing AJAX style applications on their platform."

Tenacious Hack writes "According to a story on eWeek, lab rats at Microsoft Research and the University of Michigan have teamed up to create prototypes for virtual machine-based rootkits that significantly push the envelope for hiding malware and maintaining control of a target OS. The proof-of-concept rootkit, called SubVirt, exploits known security flaws and drops a VMM (virtual machine monitor) underneath a Windows or Linux installation. Once the target operating system is hoisted into a virtual machine, the rootkit becomes impossible to detect because its state cannot be accessed by security software running in the target system."

Anonymous Coward writes "eWeek is reporting that The Software Freedom Law Center has published a white paper that dismisses recent publications from embedded systems seller Wasabi Systems. Wasabi recently released statements focusing on alleged GNU General Public License violations in relation to the Sarbanes-Oxley Act of 2002. The white paper, titled "Sarbanes-Oxley and the GPL: No Special Risk," essentially counsels users of the free software license that they have no need to worry."

OnFour writes "The MIT-backed startup behind SiteAdvisor has slapped a red "X" warning label on approximately 5 percent of all Web traffic and warned that there are roughly one billion monthly visits to Web pages that aren't safe for surfing. About 2 percent of all Web traffic was given the "yellow" caution rating." A more general SiteAdvisor blog entry overview was covered earlier on Slashdot.

Orange Eater writes "eWeek has a story about a group of high-profile security researchers intensifying the search for the command-and-control infrastructure used to power botnets for malicious use. The idea is to open up a new reporting mechanism for ISPs and IT administrators to report botnet activity." From the article: "Operating under the theory that if you kill the head, the body will follow, a group of high-profile security researchers is ramping up efforts to find and disable the command-and-control infrastructure that powers millions of zombie drone machines, or bots, hijacked by malicious hackers."

dots and loops wrote to mention an eWeek article that's something of a life lesson: Don't be too smart for your own good. The article tells the tale of a college student who cleverly chose null@vtext.com as his cellphone email address. He's been getting thousands of wayward emails and text messages since 2001. From the article: "Initially, the content of the messages was innocuous, he said. It was things like don't forget to drop the car off at baker's and to call mom at 781-XXX-XXXX, stuff like that, Bubrouski wrote. The problem worsened in mid-2002, when Bubrouski's phone began channeling what he claims were dozens of messages from an e-mail address used by General Motors' then-new "OnStar" system. The messages quickly filled up the memory on his cell phone and contained diagnostic response to tests on a beta version of OnStar. 'Basically, peoples' cars were sending messages to my phone, Bubrouski wrote. "

rebvend writes "eWeek is reporting that two of the biggest honeypot projects (mwcollect and nepenthes) have merged operations. A new meta-portal at mwcollect.org will become a top-level community covering malware collection efforts while nepenthes will become the official tool for malware collection."

ttyp0 writes "The maker of the BlackBerry on Wednesday gained some ground as it fights a battle over patents with NTP, which is trying to shut down most sales and service of the portable e-mail device in the United States. The U.S. Patent and Trademark Office issued a final rejection of one of five disputed patents owned by NTP, another step in a long process that Research In Motion Ltd. hopes will allow it to keep operating its U.S. BlackBerry service. NTP, a closely held patent holding company, has successfully sued RIM for infringement of its patents. I've been following the case closely as our company is about to invest in BES, a costly venture indeed."

CokoBWare wrote to mention an eWeek report on the NSA's domestic spying program. A federal judge has ordered the Department of Justice to release records from the program by March 8th. From the article: "In ordering the Justice Department to expedite the FOIA request processing, Judge Henry Kennedy Jr., of the U.S. District Court for the District of Columbia, said that the department's opinion that it could determine how much time is needed was 'easily rejected ... Under DOJ's view of the expedited processing provisions of FOIA, the government would have carte blanche to determine the time line for processing expedited requests,'"

ShinyBrowncoat writes "Borland recently announced they are putting their IDE business up for sale (JBuilder, Delphi, etc.)." This move comes at the same time Borland announced they would be aggressively pushing forward with their Application Lifecycle Management (ALM) business by purchasing Segue Software Inc.

constab writes "ActiveState, the Sophos-owned company that makes free distributions and commercial programming tools for programming languages like Perl, Python, PHP, Tcl and Ruby, has been sold to a Canadian VC firm. According to the article, ActiveState will go back to its open-source roots and continue development of ActivePerl, ActivePython and ActiveTcl. A full set of Mac OS X on Intel downloads is also in the works."

rts008 writes "eWEEK is reporting that NIST has published the biometric data specs on the new Federal ID cards for employees and contractors that will be issued in October. From the article: 'Specifically, the guidelines state that two fingerprints must be stored on the card as "minutia templates," mathematical representations of fingerprint images. [...] Guidelines require that all biometric data to be embedded in the CBEFF (Common Biometric Exchange Formats Framework) structure. This ensures that all biometric data will be digitally signed and uniformly encapsulated. This format will apply not only to PIV cards, but also to any other biometric records kept by federal government agencies.'" The published standards [PDF] are also available from the NIST web site.

tero1176 writes "Eweek has a story with information from Kaspersky showing that exploit code used in the WMF malware attack was being peddled on underground sites by rival Russian hacker groups for $4,000 in early December. The first sign of an exploit was traced back to the December 1, 2005, a full month before anti-virus vendors started noticing mysterious WMF files rigged with malicious executable code. It serves as more proof that the market for malware is well and truly alive."

Billosaur writes "A report by Robert Lemos of SecurityFocus in The Register states that Oracle is being criticized by David Litchfield of Next-Generation Security Software for failing to rapidly patch a known flaw in its database software. Litchfield had made Oracle aware of the flaw last October and is now taking them to task for their slow response to the exploit. Oracle, in turn, has attacked Litchfield: 'We are always disappointed when researchers feel the need to publish details of vulnerabilities before a fix is available... What David Litchfield has done is put our customers at risk.'"

Charmless1 writes to tell us eWeek is reporting that Microsoft has release new previews of their upcoming developer tools. Some have even dubbed these new tools as "Flash killers". From the article: "Microsoft's Expression Suite consists of the Expression Graphic Designer, Expression Interactive Designer and the Expression Web Designer. Microsoft has yet to release a CTP for the Web Designer, also known by its codename Quartz." Slashdot also covered some of the pre-release sentiments back in September.

Bard Of Vim writes "Microsoft has issued critical security patches for beta testers running the Windows Vista December CTP (Community Technology Preview) and Windows Vista Beta 1, and warned that the new operating system was vulnerable to a remote code execution flaw in the Graphics Rendering Engine. The Vista patches address the same vulnerability that led to the WMF (Windows Metafile) malware attacks earlier this month. The recent out-of-cycle security update for the WMF vulnerability (see slashdot coverage) makes no mention of Windows Vista being vulnerable, but with the release of this weekend's patches it is clear that the poorly designed 'SetAbortProc,' the function that allows printing jobs to be canceled, was ported over to Vista."

greengrass writes "eWeek.com is running a story about another Microsoft 'study'. This one discusses how good Microsoft is at providing patches for their OS. This is Part 2 of 3 in a series of articles, the first of which compared Linux and Windows on legacy systems." From the article: "Bill Hilf, who is director of Platform Technology Strategy at Microsoft and heads its Linux and open-source lab, told eWEEK in a recent interview that 'the differentiator for customers is not the number comparison, but which vendor makes the patching and updating experience the least complex, most efficient and easiest to manage.'"

comforteagle writes "MySQL has won a five year contract with the US General Services Administration office putting it in yet another government office on top of NASA, the Dept. of Def., Los Alamos National Labs & the Census Bureau. This additional win allows around 70 Government customers to purchase and deploy MySQL."

GenieGenieGenie writes "eWeek reports a rootkit-like 'feature' in Symantec's Norton Systemworks, discovered by the Mark Russinovich, who was also responsible for blowing the whistle on Sony's DRM rootkit. The cloaked directory is intended to prevent users from accidentally deleting important files, but could compromise a system by serving as a hiding place for malware, as was the case with Sony's rootkit. Russinovich says Symantec had good intentions, but they were right to post an update to fix this hole."

Michael writes "Microsoft Corp.'s Linux and open-source lab on the Redmond campus has been running some interesting tests of late, one of which was looking at how well the latest Windows client software runs on legacy hardware in comparison to its Linux competitors. The tests, which found that Windows performed as well as Linux on legacy hardware when installed and run out-of-the-box, were done in part to give Microsoft the data it needed to effectively 'put to rest the myth that Linux can run on anything.'"

answers writes "Two months after an anonymous researcher released the first public example of an Oracle database worm, the exploit code has been advanced and republished, adding new techniques to attack databases. From the article: "It's still very theoretical right now, but I don't think any DBA should be underestimating the risk," said Alexander Kornbrust, CEO of Red-Database-Security GmbH. "If you're running a large company with hundreds of valuable databases, a worm can be very destructive. It is very possible to use this code to release a worm. I can do this right now if I wanted to.""

Microsoft Windows still dominates the desktop. But in many other areas, including Web servers and supercomputing, Microsoft is just one player among many, and often a weak player at that. On the gaming side, despite the latest xBox getting all kinds of media buzz as "the" console to buy, Sony's Playstation outsells the xBox at least two to one, and many analysts expect Sony to widen that gap even more when Playstation 3 comes out in the Spring of 2006. On the Internet, MSN and MSN Search are so far behind AOL and Google that it isn't funny. And even on the desktop, Linux keeps getting stronger, while Mac OS X is commonly accepted as more reliable, secure, and user-oriented than Windows. So why do we keep saying Microsoft is a monopoly? Microsoft (Slowly) Moves Away from Monopolistic Behavior

If a major IT user tells a Microsoft salesperson that he or she is thinking about switching to Linux, Microsoft will usually come back with a cut-price offer, something the company never used to do. Microsoft also now sells something called Windows Starter Edition in some parts of the world -- supposedly for as low as $37 or $38 (US) in Thailand, including a basic version of Microsoft Office. In other words, Microsoft is starting to compete on price, which is not monopoly-style behavior.

This does not mean Microsoft has suddenly adopted a "let's all love one another" attitude.I believe Microsoft is getting more concerned about interoperability not out of goodness, but because of market pressure. But in the long run, as long as Microsoft stops treating every other operating system and file format as some sort of devilspawn, life is a little easier for those of us who would rather not use their products, and that's what really matters.

Microsoft Explorer No Longer Rules the Online World

A majority of desktop computer users may still run Microsoft's Internet Explorer browser, but it no longer has 95% market share. In a 2002 book, and again last year in an online article, I warned Web designers not to make IE-only sites, just as in the (distant) past I'd warned them not to make Netscape-only sites. Some listened. Some didn't.

Firefox adoption may have slowed in 2005, but it certainly hasn't stopped. Opera has become enough of a force that we hear rumors about first Google, then Microsoft, buying it. In any case, whether MSIE is currently running on 90% of all desktops or on only 70% (as a few surveys indicate), it is becoming less popular every month. Now Microsoft has decided that Explorer is no longer fit for Mac users, so its market share will drop even more. Sure, there's a new version of Explorer coming out, but it isn't going to help the millions of "legacy" Windows users who don't want to buy XP. If they want modern browser functionality, they must switch to Firefox, Opera or another non-Microsoft browser.

'The Network is the Computer'

I don't think this is quite true today, if by "the network" we're talking about applications delivered over the Internet instead of over well-maintained LANs. Back in October I explained why I don't think Internet-delivered applications are quite "there" yet. More recently, Salesforce.com had an outage that angered many of its (claimed) 350,000 subscribers. Worse, ZDNet blogger Phil Wainewright pointed out that Salesforce.com compounded the problem, and possibly made users leery of all Internet-delivered applications' claims of "99.9% reliability," by poor communication with its users.

Most of the Web 2.0 (and even Web 3.0) stuff that's getting so much hype these days is not OS-dependent. You can run things like Google Maps on Linux, Mac OS, Unix, and even Windows, using any standards-compliant browser you choose.

Even Microsoft is trying to get into the Web 2.0 game. I got a press release from their PR people that included this sentence:"And if you enjoy taking a drive to check out your neighborhood’s Christmas lights visit this great Windows Live Local developer application at http://msnsearch101.com/searchmap."

I found this online utility's behavior strange and primitive, not nearly up to the standards of Google Maps and some of the mashups based on it. "Ah," I thought, "that's probably because I'm trying to use it with Linux and Mozilla." So I turned to my one Windows (XP) computer and checked the site with both Firefox and Explorer. For some reason the map background didn't load at all in Firefox, on Windows, and its behavior in Explorer, on Windows, was just as clunky as it was in Mozilla, on Linux.

If this is supposed to be a sample of what Windows Live Local can do, I don't think Microsoft is headed for any kind of monopoly -- or even much market share -- in the online map business. Not only that, it makes me wonder how good their promised Microsoft® Office Live is going to be. If even a quarter of the rumors we've heard about Google and Sun joining up to produce a Webified version of OpenOffice.org are true, I suspect Microsoft is going to be a distant also-ran in the (inevitable) Internet-delivered office software business, too.

Hundreds of Thousands of Competitors

It's fun to play the "Google is cooler than Microsoft" game and talk about how Google, not Microsoft, has become the hot place for top-end programmers to work if they want to make their mark on the world, but even Google can only hire a tiny fraction of the world's software development talent. There are over 100,000 Open Source projects on SourceForge.net (which is owned by the same company that owns Slashdot), and SourceForge.net is but one of many Open Source and Free Software hosting services out there. There are literally millions of programmers working on Free and Open Source Software, plus countless others working on personal proprietary projects.

We've all heard -- probably too many times -- the old saw, "If you have enough monkeys banging randomly on typewriters, they will eventually type the works of William Shakespeare." This may or may not be true. But it is certain that if you put millions of programmers in front of millions of computers and let them do whatever they want, some of them will turn out brilliant, world-changing work. Even if 999 out of 1000 of our putative programmers work on established projects or never finish what they start, that still gives us thousands of potential world-changing software projects, most of which won't be developed by Google (or Microsoft) employees.

I've been to India, and the smartest programmers I met there weren't working for outsourcing mills but worked for themselves. I'm sure there are plenty of self-employed programmers in China, Brazil, Kenya, and almost everywhere else on this planet, too, and there are certainly plenty of them here in the United States. And, all over the world, millions of programmers have day jobs doing routine work for corporate employers to put food on the table, and do their "real work" at home, at night.

Neither you nor I nor Google's management nor Microsoft's management know what might be going on right now in the mind of a brilliant Saudi woman with a computer science degree who can't work outside her home because her country's laws keep her from mixing with men who aren't related to her. There may be a poorly-dressed young man coding furiously in a Beijing Internet cafe, while you read this article, whose new operating system will make all current ones obsolete -- and you may not learn about his work until it shows up in a Chinese-made $100 laptop computer.

When Bill Gates and his friends started Microsoft, it was one of very few companies that sold nothing but personal computer software, and the others were so small that Microsoft managed to buy most of its competitors -- or at least license their best work or hire away their best programmers. Back then, programmers were scarce and expensive, as were the computers they programmed on. Now there are both programmers and computers all over the world, linked together by the Internet. The Internet not only helps programmers collaborate with each other across geographic boundaries, but allows them to distribute their work without shipping physical products.

The only reason to have a software company's employees work in an office these days is control, both of employees' schedules and of what they work on. Self-motivated geniuses have no need of offices and may even resent being asked to show up at one on a regular schedule, which means that many of the world's best programmers will never work for Google, Microsoft or any other company. Instead, they'll start their own software companies or, in many cases, Open Source-based consultancies.

So Microsoft doesn't face a few dozen competitors, as it did in the 1980s, but hundreds of thousands. And these competitors are spread all over the world. This kind of competition is a lot harder to co-opt, buy out or fend off than competition from a single company, a la Netscape, or even from a group of companies as substantial as IBM, Sun, Oracle, and their computing industry peers.

Competition has Forced Microsoft to Improve its Products

Microsoft may no longer be able to hire all the top programmers it wants, but there is already plenty of talent among its 60,000-plus employees, and they have done some excellent work in recent years. Windows XP is immeasurably better and more stable than Windows ME or Windows 98. The next generation of Explorer will have many of the modern browser features that those of us who use Firefox or Opera have gotten accustomed to. Microsoft Office may not have some of the features OpenOffice.org users take for granted, like a built-in graphics utility, the ability to act as a front end for industrial-strength free databases like MySQL, and the ability to save your work in 30+ different Open and proprietary formats, including PDF. But Microsoft Office today is a lot better than it was 10 years ago, and the next version may even use a sort-of free XML file format that may not be as open and standardized as the OASIS Open Document Format used by OpenOffice.org, but is less closed and less proprietary than previous Microsoft file formats.

A true monopoly would not need to make these improvements in its products. It would give you whatever it wanted, at whatever price it wanted to charge. It would not be selling cut-down versions of its products at cut-rate prices in developing countries -- many of which, you may note, are rapidly turning into "software developing" countries.

Without Linux, combined with Apple's move to BSD-based Mac OS X, I doubt that Microsoft would have put much development effort into Windows. They sure didn't do much with Explorer between the time they crushed Netscape and the time when Firefox started making a big splash, did they?

The U.S. antitrust case against Microsoft wasn't about the company being a monopoly (which courts agreed that it was at the time), but about illegal misuse of that monopoly. That case was settled in a way that left Microsoft essentially unharmed, but with a judge overseeing its actions for five years, a time period that is going to end before long.

The Age of the Software Monopoly is Over

IBM tried to create a monopoly in the business desktop computer business, but failed to hold onto its market-leading position as dozens, then hundreds, and later thousands of competitors made better/faster/cheaper PCs. Even today, while Dell is the world's largest personal computer vendor, if you add up all the market share reports from major computer vendors in this C|Net article, you'll see that they account for around 60% -- not 100% -- of total sales, with smaller companies getting the rest. (And some of those companies are *really* small, like the one-man Bradenton, Florida, shop where my sailing buddy Gene just bought his latest home computer.)

The personal computer hardware business has become totally demonopolized, decentralized, democratized, and internationalized. If you have enough mechanical ability to assemble components neatly (and enough sales ability to get people to buy what you make), you can get into it yourself with a very small investment, just as Michael Dell started out reselling computer components and assembling systems in his college dorm room.

Starting a software business takes even less investment. If you're a competent programmer -- or you have a friend who is a competent programmer and you are a whiz-bang marketing person -- you have everything you need to get going. You can either produce and sell proprietary software or customize (and probably install and maintain) Free or Open Source Software for corporate clients. If the Internet is your primary sales and distribution channel, you don't need to live and work in expensive IT business hotbeds like Silicon Valley or Boston, either: JBoss, for example, is based in Atlanta, Georgia; and Digium, the company behind Asterisk, is in Huntsville, Alabama.

There are software businesses springing up all over the place. Most of them are tiny, and few of them will ever get big enough that analyst firms like Gartner or IDC will track their market share (or even notice them). But there are so many of them being started that, in aggregate, they are becoming a more significant market force than any single big software company, even Microsoft.

This doesn't mean Microsoft will be replaced next year by 100,000 startups. The company will still be around, it will still get lots of press, and -- assuming it embraces (but does not keep trying to extend and extinguish) Open Standards -- it will still be a powerful force in the software world.

But no matter what Microsoft does, it will never have a software monopoly again. Nor will any other company. The barriers to entry in the software business have become too low for that to happen, and too many skilled software developers are learning that they can earn at least as much working for themselves as they would by working for big software companies.

Small is Beautiful was a fine book title in 1973. Today, it's a fine description of the software industry's future.

-----

Have something important to say to the Slashdot community? Email roblimo at slashdot period org the complete article (or an article proposal).

linumax wrote to mention that Google, Microsoft, and Kai-Fu Lee have reached an agreement, after months of negotiation. From the article: "In a brief statement released late Thursday, Microsoft spokesman Jack Evans said the parties had entered into a private agreement that resolved all issues to their mutual satisfaction. He also declined to give any details on the agreement, saying the terms were confidential and that all parties had agreed to make no other statements to the media regarding it. However, he did say that Microsoft was 'pleased with the terms of our settlement with Google and Dr. Lee.'" We originally reported on this back in July.

the_flyswatter writes "Anti-virus vendor Symantec Corp. has publicly acknowledged that a high-risk buffer overflow vulnerability in its AntiVirus Library could lead to code execution attacks when RAR archive files are scanned. The company confirmed the issue was a buffer overflow in the AntiVirus component used to decompose RAR (Roshal Archive) files. 'A specially crafted RAR file could potentially cause this buffer overflow to occur and execute hostile content from the RAR file,' the advisory read. The bug also affects 15 consumer products, including the widely deployed Symantec Norton AntiVirus, Symantec Norton Internet Security Professional, Norton Personal Firewall and Symantec Norton Internet Security for Macintosh."

miahrogers writes "The IRS Scam from a few weeks ago was not the the usual canned phishing attack; it exploited a vulnerability in the IRS benefits website to make users think they were at a government site. Also, according to Infoworld, eBay's own fraud team was tricked into thinking a phishing email was legitimate eBay correspondence. Mix the above IRS exploit with a phony email and you have misplaced trust that foils even professional fraud teams. Interestingly enough, the newest addition to my bookshelf predicted these attacks in full detail. From chapter 4: 'Combined with vulnerable Web servers allowing the "trusted" domain to launch the attack, it will be harder to determine whether the email is or isn't legitimate. When a person turns in the e-mail to question its legitimacy, due to the known marketing campaign a tech support representative may overlook the fraud report and tell the customer that XYZ company did send out such a marketing e-mail and it is OK to click the links.' Are phishers using this book as a tool, or is it a legitimate prediction? As an IT professional, what efforts should our corporate IT department be making to proactively to eliminate these vulnerabilities?"

corp-dollar writes "According to this eWEEK story on the poor adoption of LUA (least-privileged user account) in Windows, a pair of Microsoft security consultants are pitching the idea of a security deployment repository to serve information and tools to handle LUA bugs and other problems businesses are facing. Sounds like a decent enough idea to cut back on the compatibility problems when trying to run business apps in no-admin mode."

Vizquel wrote to mention an eWeek article reporting that Microsoft is frustrated with the lack of Service Pack 2 usage overseas. From the article: "During a keynote at the Security Summit East here, McKee said Microsoft has so far distributed more than 250 million copies of XP SP2 to provide a hardened shell around the operating system but the low upgrade levels remains a disappointment."

linumax writes "Microsoft Corp. on Wednesday clinched Common Criteria security certification from the U.S. government's National Information Assurance Partnership for six versions of its flagship Windows OS. The products receiving CC certification include Windows XP Professional with Service Pack 2 and Windows XP Embedded with Service Pack 2. Four different versions of Windows Server 2003 also received certification. Common Criteria certification, which was ratified as an international standard in 1999, helps customers in key market segments evaluate IT products when making software purchase decisions and contribute to higher levels of consumer confidence in IT product security, Lipner said. SuSE Linux ES 9 has already achieved the certification and almost a year away from being released, Red Hat Enterprise Linux 5 is on the path toward EAL4 certification."

Strauss writes "Windows Server 2003 R2 was launched. Press coverage by eWeek and BetaNews. [Insert here some FUD/funny question about Microsoft Windows future]"

geo_2677 writes "Someone had put up for auction on eBay the details of an exploit in Microsoft Excel according to a recent article on Securityfocus. According to the article Microsoft has confirmed that this vulnerability exists, but in the meantime the original listing on eBay has been pulled. " The now pulled auction, but it does appear that Microsoft has confirmed the vulnerability in an eweek article.

Slashback tonight brings some corrections, clarifications, and updates to previous Slashdot stories, including the demystification of Australia's "Mystery Cat", the US Government backs Microsoft in their battle against Korea, RedHat joins the fun and decides to invest in India's economy, the ICANN community slams the VeriSign deal, and Clinical results from the cancer-killing virus trials - read on for details.

Australia's mystery cat demystified. Bitsy Boffin writes "Back in October Slashdot ran a story from the Herald Sun about the shooting of a mystery "Big Cat" in Australia. At the time the tail (the only part the hunter brought back) of said cat had been sent off for DNA testing. The Herald Sun reports the findings of those DNA tests which show that the mystery cat wasn't a leopard or jaguar, just a really, really big feral cat."

US backs Microsoft in Korean antitrust case. CODiNE writes "Stating that 'Korea's remedy goes beyond what is necessary or appropriate to protect consumers' the Justice Department's antitrust division rejects the recent Korean FTC ruling. 'Sound antitrust policy should protect competition, not competitors, and must avoid chilling innovation and competition even by "dominant" companies.'"

RedHat follows Indian investment trend. An anonymous reader writes "After several other companies have decided to invest in the Indian economy it looks like RedHat will be following suit. According to the article, RedHat plans on hiring about 300 people for an investment of about $20M."

ICANN community slams VeriSign deal. Rob writes to tell us that an overwhelming amount of the ICANN community recently took a stand against a proposed deal that would allow VeriSign to raise the price of .com domain names by up to 50%. VeriSign accused ICANN of illegally "regulating" its business. ICANN had previously blocked services VeriSign wanted to launch on the grounds that they would harm the stability of the internet.

Clinical results from cancer-killing virus. just___giver writes "Results from human clinical trials show that terminally ill patients with aggressive metastasized cancer are receiving benefit from the recently covered virus that kills cancer when it is administered intravenously. They still have higher doses to test in this ongoing study. This safe, naturally occurring, unmodified virus has a remarkable ability to infect and kill cancer cells, without affecting normal, healthy cells. Numerous other third party studies show that the Reovirus should be an important discovery in the treatment of 2/3 of all human cancers. It is patented, easy to manufacture in large quantities, and even increases the effectiveness of conventional chemo and radiation therapy. Numerous phase 2 studies are being planned for 2006." OncolyticsBiotech also has a short video describing the process.

AKAImBatman writes "While everyone was busy with the holiday season, Sun Microsystems quietly announced the start of the OpenSPARC project. Unlike previous CPUs that were based on the "Open" SPARC specifications (such as LEON), Sun is releasing the complete Verilog source code to their latest and greatest microprocessor. Their current time frame for releasing the source code to the public is in March of 2006. Given their success with the OpenSolaris project, it seems that this is likely to be more than just vaporware. So get out your Virtex FPGAs and your Verilog compilers, and let's get ready to hack some hardware!"

Tenacious Dee writes "The patent quarrel between Microsoft and Eolas takes a strange turn with an announcement from Redmond that the Internet Explorer browser will be modified to change the way ActiveX controls are handled. A Microsoft white paper details the behavior change."

aychamo writes "The American Civil Liberties Union today joined an expanding group of organizations filing lawsuits against a new rule that increases the FBI's power to conduct surveillance on the Internet. The rule being challenged is one the Federal Communications Commission adopted in September, granting an FBI request to expand wiretapping authority to online communications.he ACLU charged in a petition to the U.S. Court of Appeals for the District of Columbia Circuit that the ruling goes beyond the authority of CALEA, which specifically exempted information services. "The ACLU seeks review of the CALEA order on the grounds that it exceeds the FCC's statutory authority and is arbitrary, capricious, an abuse of discretion, unsupported by substantial evidence, or otherwise contrary to law," the organization charged in its petition."

UltimaGuy writes "Microsoft is working on a new feature for Windows Vista, known as Restart Manager, which will update parts of the operating system or applications without having to reboot the entire machine. From the article: 'If a part of an application, or the operating system itself, needs to updated, the Installer will call the Restart Manager, which looks to see if it can clear that part of the system so that it can be updated. If it can do that, it does, and that happens without a reboot.'"

aychamo writes "The ICANN (the company that distributes most of the world's internet addresses) is denying that it gives the US government too much control over its operations. For instance, the US was the only country able to stop ICANN from using .xxx for pr0n domains, instead of .com. The ICANN is planning events to show that it is not US influenced." From the article: "ICANN's board of directors appears to favor a proposal for a new set of Internet addresses that end in .Asia, which would more easily identify Asia-focused Web sites. Approval of the new top-level domain could come during the ICANN board of directors meeting on Sunday. One other major development this week involves progress toward allowing the use of non-English language characters when steering a Web browser to a particular site. ICANN is now exploring a proposal to open Web browsers up to dozens of the world's other alphabets. Actual tests of just such a system are now in the works, Twomey said. "

sheasie! writes "eWeek is reporting that Microsoft is readying an online marketplace, code-named Fremont, which is apparently in response to a similar feature that rival Google Inc. introduced a few weeks ago." From the article: "The software giant will enhance the Fremont listings with localized maps, and make them available through Microsoft's newly revamped Internet portal, now known as Live.com, according to the company."

avik42 wrote to mention an EWeek article discussing Microsoft's attempts at an Open Document Standard. From the article: "According to a Microsoft representative, 'The covenant language is what was referred to as the updated license for the Open XML formats that will be submitted to ECMA International for the standardization process.' The only difference between Microsoft's November 2003 open and royalty-free license for the Office 2003 Reference Schemas and today's Office 2003 license, according to the company, is that 'Microsoft is offering a covenant not to sue for the Office 2003 Reference Schemas.'" We reported on this initiative when it was first announced.

Durinthal writes "The biggest blip on the security radar over the Thanksgiving holiday was the realization by the security community that an Internet Explorer problem first identified six months ago was a lot worse than it appeared, as what appeared to be only a DoS vulnerability also allows for execution of arbitrary code. The realization caused Secunia to issue a rare 'Extremely Critical' advisory."

JamesAlfaro writes "SANS warned of the switch to attacks on applications and network devices in its annual publication of the Top 20 vulnerabilities on Tuesday. The annual SANS Top 20 highlights holes in software programs that are considered the most serious for security professionals. Microsoft shares the spotlight this year with Symantec Corp., Cisco Systems Inc., Oracle Corp. and others, after a year in which warnings about vulnerabilities in antivirus and computer backup software and the surprise publication of information on a hole in Cisco Systems' IOS (Internetwork Operating System) made headlines."

anethema writes "A remote IE exploit with implementations is currently in the wild. From the article: 'Exploit code for a critical flaw in fully patched versions of Microsoft Corp.'s Internet Explorer browser has been released on the Internet, putting millions of Web surfers at risk of computer hijack attacks.' Aparently all you have to do is browse the page to be affected. There is no patch, but since it is a JavaScript exploit, you can work around it by disabling JavaScript."

MarkRH writes "Although many sites posted the Reuters story on Sony merging its optical storage operations with NEC, people forget that NEC is one of the four senior members of the HD-DVD Promotion Group. What this means is that by next year the merged unit could sell CD drives, DVD drives, Blu-Ray, and 'perhaps even that other format,' a Sony spokesman told eWEEK. A bit shocking, given the acrimonious nature of the rivalry so far."

turnitover writes "Cryptically stating that Asia wants the U.S. to become 'the France of the 21st century,' Massachusetts governor Mitt Romney made a public call for more innovation in technology, reports eWEEK.com. He urged more investment and development and, yes, a move to OpenDocument, as reported previously on Slashdot." From the article: "Underlining the challenge, Romney said leaders of one technology firm in Massachusetts anticipated that 90 percent of its skilled labor would be in Asia in 10 years. He also pointed to statistics that show the United States graduating only 4,400 mathematics and science PhDs each year compared with 24,900 math and science PhDs for greater Asia."

Channy writes Microsoft announced on last Friday that it had reached a settlement with South Korean Internet portal Daum in antitrust case of IM bundling. Daum had complained to the South Korean Fair Trade Commission in 2001, accusing Microsoft of breaking the law by tying its instant messaging software to Windows. A lawsuit on the same grounds was filed in 2004. By the settlement, Microsoft will pay Daum $30 million, including $10 million in cash. In return, Daum would drop its lawsuit. Before this decision, Microsoft has threatened to withdraw its Windows software from South Korea if the country's antitrust agency orders it to unbundle its instant-messaging and media player software from the operating system. Despite this settlement, KFTC announced plans to continue investigation of this case and conclude the final decision within this year."

under_score writes "According to eWeek.com Microsoft is adopting the agile methodology called Scrum to get software built faster. Is it working? They seem to be claiming that Scrum and Extreme Programming have helped them get recent releases such as SQLServer out the door faster with better quality. Many other large organizations are also adopting agile methods including Yahoo, and Google. Are agile methods the next big thing in software development?"

We Slashback, to provide updates to three recent stories. All happy news, for once. JoaoPinheiro writes "After last week's reports that Novell plans not to ship the KDE desktop on Novell and SUSE Enterprise products, the company got lots of feedback from its customers. Novell has listened to them and reconsidered its desktop strategy." Meanwhile, in the employment sector, sebFlyte writes "Daniel Cuthbert, recently a high-profile victim of the UK's outdated cybercrime laws, has found a job in the security industry." Finally, one less thing to worry about, as gUnit writes "eWeek is reporting that virus researchers at Trend Micro jumped the gun with a warning that a Trojan in the wild was capable of exploiting newly patched Windows security flaws. Just 24 hours after announcing the discovery of a proof-of-concept Trojan that supposedly exploits a trio of image-rendering vulnerabilities patched by Microsoft, Trend Micro is retreating from that claim and offering up a batch of excuses."

FlorianMueller writes "According to a VNUnet report, Shai Agassi, the president of the product and technology group at SAP, disparaged open source as 'more likely to break applications' than to deliver innovation. He also equated the open-source development model with 'Intellectual property [IP] socialism,' which he says 'is the worst that can happen to any IP-based society.' In Europe, it isn't a secret that SAP's management primarily views open source as a threat to its business, and that SAP is politically on Microsoft's side. SAP and Microsoft co-financed certain pro-patent lobbying activities in Europe, and recently co-founded the European Software Association, an entity that is expected to lobby for software patents and against open-source adoption by European governments."

Motor writes "In what must be one of the least unexpected announcements of recent times, Novell says that they are standardizing on one desktop rather than supporting two different codebases. From the article: 'Novell is making one large strategic change. The GNOME interface is going to become the default interface on both the SLES (SuSE Linux Enterprise Server) and Novell Linux Desktop line. KDE libraries will be supplied on both, but the bulk of Novell's interface moving forward will be on GNOME.'"