Slashdot Mirror

CWmike writes "Microsoft last week killed the Office Genuine Advantage anti-piracy service that first checked — and later nagged — whether customers were running legal copies of Office. ZDNet blogger Ed Bott first reported on Microsoft's move after a tipster pointed him toward a support document on the company's site. That Dec. 17 document simply noted that Office Genuine Advantage 'has been retired,' but offered no explanation. A Microsoft spokeswoman told Computerworld on Monday, 'The program has served its purpose and thus we have decided to retire the program.'"

beetle496 writes "One of the things Microsoft has done well for many years now (since they got called on the carpet about Windows 95) is providing compatibility with assistive technology used by the blind. Their current push is for a set of APIs called User Automation. Many of us in the field have remained skeptical of the early promises, especially those related to cross-platform compatibility. The news that Microsoft is now backtracking is disappointing, but hardly surprising. It looks like IAccessible2 is the way to go."

theodp writes "Assuming things go patent reformer Microsoft's way, answering multiple choice, true/false, or yes/no questions in a classroom could soon constitute patent infringement. Microsoft's just-published patent application for its Adaptive Clicker Technique describes how 'multiple different types of clickers' can be used by students to answer questions posed by teachers. The interaction provided by its 'invention', explains Microsoft, 'increases attention and enhances learning.' Microsoft's Interactive Classroom Add-In for Office (video) provides polling features that allow students to 'answer and respond through their individual OneNote notebooks, hand-held clickers, or computers, and the results display in the [PowerPoint] presentation.' So, did Bill Gates mention to Oprah that the education revolution will be patented?"

theodp writes "Assuming things go patent reformer Microsoft's way, answering multiple choice, true/false, or yes/no questions in a classroom could soon constitute patent infringement. Microsoft's just-published patent application for its Adaptive Clicker Technique describes how 'multiple different types of clickers' can be used by students to answer questions posed by teachers. The interaction provided by its 'invention', explains Microsoft, 'increases attention and enhances learning.' Microsoft's Interactive Classroom Add-In for Office (video) provides polling features that allow students to 'answer and respond through their individual OneNote notebooks, hand-held clickers, or computers, and the results display in the [PowerPoint] presentation.' So, did Bill Gates mention to Oprah that the education revolution will be patented?"

ttsiod writes "Back in 2001, I coded HeapCheck, a GPL library for Windows (inspired by ElectricFence) that detected invalid read/write accesses on any heap allocations at runtime — thus greatly helping my debugging sessions. I published it on my site, and got a few users who were kind enough to thank me — a Serbian programmer even sent me $250 as a thank you (I still have his mails). After a few years, Microsoft included very similar technology in the operating system itself, calling it PageHeap. I had more or less forgotten this stuff, since for the last 7 years I've been coding for UNIX/Linux, where valgrind superseded Efence/dmalloc/etc. Imagine my surprise when yesterday, Googling for references to my site, I found out that the technology I implemented, of runtime detection of invalid heap accesses, has been patented in the States, and to add insult to injury, even mentions my site (via a non-working link to an old version of my page) in the patent references! After the necessary 'WTFs' and 'bloody hells' I thought this merits (a) a Slashdotting, and (b) a set of honest questions: what should I do about this? I am not an American citizen, but the 'inventors' of this technology (see their names in the top of the patent) have apparently succeeded in passing this ludicrous patent in the States. If my code doesn't count as prior art, Bruce Perens's Efence (which I clearly state my code was inspired from) is at least 12 years prior! Suggestions/cursing patent trolls most welcome."

An anonymous reader writes "Microsoft has caught up with the fact that open source web-based software exists, today announcing an open source project written in PHP is the first 'Certified for Windows' software that (a) follows an OSI-approved license and (b) runs via a webserver rather than operating as a native Windows executable. The software in question is SilverStripe CMS, free software released under a BSD license, that is used to build and manage websites. Certification entails a third-party performing various tests and audits on the software and giving it the green light. If other open source projects can follow suit, this will be another step in getting business folk to see that open source is ready for enterprise use. And heck, maybe even a .NET application could now seek to be certified!"

symbolset writes "In a surprising turn of events, Engadget is reporting that the Microsoft Kin One and Kin Two will have an encore in the market. Some years ago Microsoft purchased Danger, Inc, services provider for the legendary Sidekick line of phones, and set upon refreshing them for a new generation in 'Project Pink.' Several project restarts and one data loss incident later, the project had lost favor internally and relations with the launch carrier Verizon had gone sour. The product was launched anyway to dismal sales and yanked from the market in under two months. According to the article, the costly data plan was thought to be to blame for the poor sales, so cellular data services and features that require them have been removed."

CWmike writes "Roger Thompson, chief research officer of AVG Technologies, said Sunday that an exploit for the newest IE flaw had been added to the Eleonore crimeware attack kit. 'This raises the stakes considerably, as it means that anyone can buy the kit for a few hundred bucks, and they have a working zero-day,' Thompson said on his company's blog. Microsoft has promised to patch the vulnerability, but last week said the threat didn't warrant an 'out-of-band' update. Microsoft will deliver three security updates Nov. 9, but won't fix the IE bug then."

theodp writes "Before a large crowd of students at the University of Washington computer science department, Microsoft CEO Steve Ballmer was asked why students should care about Microsoft enough to want to work there. Aside from the ending, which begs for an if-you're-happy-and-you-know-it-clap-your-hands remix, Ballmer seemed to handle the question adequately for an MBA-type, although TechCrunch has a different opinion, suggesting 'maybe it's time for the great salesman to hang it up.' Oddly enough, a recent resignation letter from a Microsoft developer en route to Facebook ('Microsoft has been an awesome place to work over the past twelve years. In college, I never thought I'd work for Microsoft. Then I interned in 1997 and fell in love.') may be more what the skeptical CS student was looking for in terms of a Microsoft endorsement."

CWmike writes "In a paper published Wednesday (PDF), Scott Charney, who heads Microsoft's trustworthy computing group, spelled out a concept of 'collective defense' that he said was modeled after public health measures like vaccinations and quarantines. The aim: To block botnet-infected computers from connecting to the Internet. Under the proposal, PCs would be issued a 'health certificate' that showed whether the system was fully patched, that it was running security software and a firewall, and that it was malware-free. Machines with deficiencies would require patching or an antivirus update, while bot-infected PCs might be barred from the Internet."

Trailrunner7 writes "The crypto attack against ASP.Net Web apps has gotten a lot of attention this week, and with good reason. Microsoft on Friday night issued a security advisory about the bug, warning customers that it poses a clear danger to their sites. Also on Friday, the researchers who found the bug and implemented the attack against it released a slick video demo of the attack, clearly showing the seriousness of the problem and how simple it is to exploit with their POET tool."

theodp writes "This week's NY Times Magazine — a special issue on education and technology — is tailor-made for the Slashdot crowd. For the cover story, Sarah Corbett explores the games-and-education movement, which she notes is alive and well at Quest to Learn, a NYC middle-school that aims to make school nothing less than 'a big, delicious video game.' Elsewhere in the issue, Paul Boutin writes about Microsoft's efforts to inspire The 8-Year-Old Programmer with its Kodu Project, and Nicholas Carlson reports on Columbia University's efforts to mix journalism and hard-core computer science with its unique dual-degree master's in journalism and CS. There's also an accompanying timeline that nicely illustrates how learning machines have progressed from the Horn-Book to the iPad."

Trailrunner7 writes "Google has released a new version of its Chrome browser and has included more than a dozen security fixes in the update. The new version, 6.0.472.53, was released two years to the day after the company pushed out the first version of Chrome. Google Chrome 6 includes patches for 14 total security vulnerabilities, including six high-priority flaws, and the company paid out a total of $4,337 in bug bounties to researchers who reported the vulnerabilities. A number of the flaws that didn't qualify for bug bounties were discovered by members of Google's internal security team." (Read on for more, below.) Also on the Chrome front, morsch writes "Chrome 7 for Linux is planned to tie in with the Gnome Keyring and the KDE Wallet to securely store saved browser passwords. Users of the stable version of Google's Webkit-based browser might be surprised to find out that, so far, passwords are stored on the hard disk as clear text. On Windows, Chrome has always used a platform-specific crypto API call for encrypted storage. The corresponding Linux function was never implemented — until now. Unstable versions of Chrome 7 still disable the feature by default; it can be enabled using a parameter."

An anonymous reader writes "Ever since it launched the Xbox, Microsoft has had a fickle relationship with Windows as a gaming platform. On one hand PC gaming is a major driver of hardware and operating system sales, but on the other hand the PC is inherently less secure than the Xbox console, with piracy much more likely to impact sales of a PC title than a console one. Games for Windows Live has been an attempt to bring some of the success of Xbox Live to the PC, and while many games have shipped with support for Games for Windows Live, it hasn't exactly been a favorite of PC gamers. After all these half-hearted efforts, the last thing anyone expected was for Microsoft to announce new PC-only reboots of two classic game franchises, Flight Simulator and Age of Empires. But yesterday it did just that, announcing a massively multiplayer version of Age of Empires and a new Flight Simulator called Flight. The big question is whether Microsoft can make Games For Windows Live relevant in a market where Steam has taken hold, or if it's too late."

ramandeeps noted a Microsoft research project on an adaptive keyboard that is essentially a touchscreen that updates to make it easier to keep complex keybindings to a minimum. This is part of the 2010 Student Innovation Contest, so if you want one and happen to be a student, you can sign up to do research on the device.

An anonymous reader writes "At the annual SIGGRAPH show, Microsoft Research showed new technology that can remove the blur from images on your camera or phone using on-board sensors — the same sensors currently added to the iPhone 4. No more blurry low light photos!"

Trailrunner7 writes "Microsoft will issue an out-of-band patch on Monday for a critical vulnerability in all of the current versions of Windows. The company didn't identify which flaw it will be patching, but the description of the vulnerability is a close match to the LNK flaw that attackers have been exploiting for several weeks now, most notably with the Stuxnet malware. The advance notification from Microsoft on Friday said that the company is patching a critical vulnerability that is being actively exploited in the wild and affects all supported Windows platforms. The LNK flaw in the Windows shell was first identified earlier this month when researchers discovered the Stuxnet worm spreading from infected USB drives to PCs. Stuxnet has turned out to be a rather interesting piece of malware as it not only uses the LNK zero day vulnerability to spread, but it had components that were signed using a legitimate digital certificate belonging to Realtek, a Taiwanese hardware manufacturer."

theodp writes "For show-and-tell at SIGGRAPH 2010, Microsoft Research brought Street Slide, 'a multi-perspective street slide panorama with navigational aides and mini-map.' Very slick (demo video). Technology Review explains that Street Slide stitches together slices from multiple panoramas, making it possible to see all the shops on a street at once. Someone using Street Slide's panoramic view can slide along the facades looking for places of interest (perhaps guided by logos or ads at the bottom), and zoom back in to a classic Bing Streetside bubble view at any time."

Vectormatic writes "As can be seen on the product page for Windows XP, support for SP2 ends tomorrow, while the majority of Windows XP users still haven't upgraded to SP3. This could open up millions of users/businesses to exploitation, since security updates for SP2 will stop coming in while security fixes to SP3 may clue hackers in to vulnerabilities."

Glyn Moody writes "Microsoft created its CodePlex, 'an online collaborative software development portal,' four years ago, as the latest in a string of attempts to play nicely with open source. Well, maybe not: Microsoft saw the open source software projects it hosted there as reflecting 'the open community-building spirit of Microsoft's Shared Source Initiative.' In September last year, it tried again, launching the CodePlex Foundation, 'a forum in which open source communities and the software development community can come together with the shared goal of increasing participation in open source community projects,' and not to be confused with CodePlex.com, 'a Microsoft owned and staffed forge that encourages the development of open source software based on Microsoft technology.' The only problem is that all the funding for the CodePlex Foundation still comes from Microsoft. But the new Technical Director of the CodePlex Foundation, Stephen Walli, thinks it can become truly independent of Microsoft, open to all companies to create open source software for any platform using only OSI-approved licenses. Will the CodePlex Foundation take its place alongside existing foundations addressing this sector, like Apache and Eclipse, but complementary to them? Or is it forever doomed to be ignored by the open source world because of its origins?"

alphadogg writes "Microsoft researchers have slashed desktop energy use with a sleep proxy system that maintains a PC's network presence even when it is turned off or put into standby mode. Microsoft has deployed the sleep proxy system to more than 50 active users in the Building 99 research facility in Redmond, Wash., according to the Microsoft Research Web site and a paper that will be presented at the Usenix technical conference in Boston later this month. ... Sleep proxies allow machines to be turned off while keeping them connected to the network, waking the machines when a user or IT administrator attempts to access them remotely."

Andreas(R) writes "Microsoft has published a set of HTML5 tests comparing Internet Explorer 9 to other web browsers. In Microsoft's own tests, IE9 performs 100% on all tests. However, the Internet Explorer 9 HTML5 Canvas Campaign has published results that show that Internet Explorer gets 0% on all their tests." The results reported here are selected with tongue in cheek: "Therefore, we'll also present shameless results from tests which have been carefully selected to give the results that the PR department has demanded."

theodp writes "Seems like those old IBM flaming logo commercials (video) should count as prior art, but the USPTO granted Microsoft a patent Tuesday for inventing Fonts With Feelings. Giving font characters sound, motion, and altered appearance, Microsoft asserts, gives a user 'the impression the fonts have personalities,' thereby enhancing the user's understanding and/or fluency of words. From the patent: 'As a few non-limiting examples, the word 'giant' can get very large; the word 'lion' can morph into a line drawing of a lion; the word 'toss' can morph into a hand that animates a ball toss; the word 'bees' could show bees flying around with or without a 'buzz' sound effect'. If you're curious, Microsoft Research offers some explanations and examples of 'fontlings' in action — don't miss 'f' kicks 'a'!"

Stoobalou writes "In a chat with fellow CEOs at Microsoft's 14th annual CEO Summit, Microsoft boss Steve Ballmer came close to admitting Vista was a dog. 'How do you get your product right? How do you help the customer? How do you be patient?' he asked, as if he knew the answer. What he did know was that Microsoft spent too many years building Windows Vista. 'We tried too big a task and in the process wound up losing thousands of man hours of innovation,' he said." You can also watch video of the speech, but 31 minutes of Ballmer is a lot of Ballmer.

adeelarshad82 writes "Microsoft opened a portion of its fifth TechFair to Silicon Valley residents, demonstrating more than 15 technologies, which included everything from real-time translation to mobile-to-mobile networking to improved image stitching. The top two that really stood out were the translating telephone, which actually used no 'telephone' at all — it was a test to discover how well Microsoft's speech algorithms could interpret speech, translate it, and then speak the translation using text-to-speech algorithms — and Manual Deskterity, a new paradigm for a user interface; a right-handed user's left hand, for example, can be used for coarse manipulations of objects, while the right can be used for fine manipulation, such as with a pen. It sounds a bit simplistic, at least at this stage. Since one of the charters of Microsoft Research is that the work should eventually be moved to product teams, there's a good chance that the prototypes will eventually be made available to the public at large."

CWmike writes "Microsoft silently patched three vulnerabilities last month, two of them affecting enterprise mission-critical Exchange mail servers, without calling out the bugs in the accompanying advisories, a security expert said on Thursday. Two of the three unannounced vulnerabilities, and the most serious of the trio, were packaged with MS10-024, an update to Exchange and Windows SMTP Service that Microsoft issued April 13 and tagged as 'important,' its second-highest threat ranking. Ivan Arce, CTO of Core Security Technologies, said Microsoft patched the bugs, but failed to disclose that it had done so — which could pose a problem. 'They're more important than the [two vulnerabilities] that Microsoft did disclose,' said Arce. 'That means [system] administrators may end up making the wrong decisions about applying the update. They need that information to assess the risk.'" "Secret patches are neither new or rare. 'This has been going on for many years and the action in and of itself is not a huge conspiracy," said Andrew Storms, director of security operations at nCircle Security. What is unusual is that Core took Microsoft's silent updates public. Saying that Microsoft 'misrepresented' and 'underestimated' the criticality of MS10-024 because it didn't reveal the two bugs, Core urged company administrators to 'consider re-assessing patch deployment priorities.' Microsoft confirmed this instance and defends the practice, noting that updates can "be destructive to customer environments." But Storms echoed Arce's concern about possible misuse of the practice, which could result in a false sense of security among users."

eldavojohn writes "Some 2,000 public and 2,200 private newsgroups devoted to and managed by Microsoft support are going to be phased out in favor of forums because of newsgroup spam. The Register calls it 'killing newsgroups' but Microsoft eloquently calls it 'the evolution of communities.' Always managing to spin it in a positive light! Let's hope the spam posts and voting bots in their forums remain controllable."

figleaf writes "Three years ago, with much fanfare, Microsoft announced it would make some of the .Net libraries open source using the Microsoft Reference License. Since then Microsoft has reneged on its promise. The reference code site is dead, the blog hasn't been updated in a year and a half, and no one from Microsoft responds to questions on the forum."

figleaf writes "Three years ago, with much fanfare, Microsoft announced it would make some of the .Net libraries open source using the Microsoft Reference License. Since then Microsoft has reneged on its promise. The reference code site is dead, the blog hasn't been updated in a year and a half, and no one from Microsoft responds to questions on the forum."

An anonymous reader writes "Astonishingly, the so-called system restore feature in Windows 7 deletes restore points without warning when the system is rebooted. This forum thread on answers.microsoft.com shows some of the users who have experienced the problem. Today I did a clean install of Windows 7 Ultimate 32-bit (no dual boot), and noticed that whenever the machine rebooted after installing an application or driver, the disk churned for several minutes on the 'starting Windows' screen. Turns out that churning was the sound of my diligently created system restore points being deleted. Unfortunately I only found this out when Windows barfed at a USB dongle and I wanted to restore the system to an earlier state. This is an extraordinarily bad bug, which I suspect most Windows 7 users won't realise is affecting them until it's too late."

adeelarshad82 writes "Microsoft and HTC have signed a patent deal that will provide broad coverage under Microsoft's patent portfolio for HTC's mobile phones running the Android mobile platform. The announcement comes in the wake of a massive patent suit from Apple, which alleged 20 instances of patent infringement on the part of HTC."

An anonymous reader passes along a brief EE Times note on a suggestive Microsoft job ad. ARM is explicitly mentioned, as are solid-state disk drives as an area of experimentation in the quest to reduce power consumption; but Intel does not get a mention. Here is the ad. "Microsoft is looking for senior software development engineer to help with its Bing data centers, potentially running them on ARM hardware, according to an EE Times article. Whoever gets the job 'can own the decision on the hardware that we use,' the job description said, and added that power management is a key aspect of the job. ... Microsoft was reportedly experimenting with the Intel Atom microprocessor in February 2009 with a view to creating a green low-power data center. One issue discussed then was the Atom microprocessor lacked performance compared with other Intel processors and that therefore any power saving might be negated by the need for more processors to carry a given computational load."

cxbrx writes "Mark Pothier's Boston Globe article, 'Please do not change your password,' covers a paper by Microsoft Researcher Cormac Herley, 'So Long, and No Thanks for the Externalities: the Rational Rejection of Security Advice by Users,' from the 2009 New Security Paradigms Workshop. Herley argues 'that user's rejection of the security advice they receive is entirely rational from an economic perspective.' Herley discusses 'password rules,' 'teaching users to recognize phishing sites by reading URLs,' and 'certificate errors.' Users obviously choose bad passwords, but does password aging actually help? There was some discussion on TechRepublic. I'm especially interested in hearing about studies about password aging."

cxbrx writes "Mark Pothier's Boston Globe article, 'Please do not change your password,' covers a paper by Microsoft Researcher Cormac Herley, 'So Long, and No Thanks for the Externalities: the Rational Rejection of Security Advice by Users,' from the 2009 New Security Paradigms Workshop. Herley argues 'that user's rejection of the security advice they receive is entirely rational from an economic perspective.' Herley discusses 'password rules,' 'teaching users to recognize phishing sites by reading URLs,' and 'certificate errors.' Users obviously choose bad passwords, but does password aging actually help? There was some discussion on TechRepublic. I'm especially interested in hearing about studies about password aging."

WeeBit writes "Researchers have different ideas as to why people fail to use security measures. Some feel that regardless of what happens, users will only do the minimum required. Others believe security tasks are rejected because users consider them to be a pain. A third group maintains user education is not working. [Microsoft Research's Cormac] Herley offers a different viewpoint. He contends that user rejection of security advice is based entirely on the economics of the process." Here is Dr. Herley's paper, So Long, And No Thanks for the Externalities: The Rational Rejection of Security Advice by Users (PDF).

suraj.sun sends this excerpt from CNET on Microsoft's preview of IE9 in Las Vegas just now. "At its Mix 10 conference Tuesday, Microsoft gave programmers, Web developers, and the world at large a taste of things to come with its Web browser. Specifically, Microsoft released what it's calling the Internet Explorer 9 Platform Preview, a prototype designed to show off the company's effort to improve how the browser deals with the Web as it exists today and, as important, to add support for new Web technologies that are coming right now. Coming in the new version is support for new Web standards including plug-in-free video; better performance with graphics, text, and JavaSript by taking advantage of modern computing hardware. One big change in the JavaScript engine Hachamovitch is proud of is its multicore support. As soon as a Web page is loaded, Chakra assigns a processing core to the task of compiling JavaScript in the background into fast code written in the native language of the computer's processor." Microsoft didn't say what codec they were using for the HTML5 video demo, but the Technologizer says it's H.264.

Kolargol00 writes "Heise online reports the availability of an exploit (Google translation) for the yet-unpatched MSA-981374 affecting Internet Explorer 6 and 7. It has already been spotted in the wild by McAfee and integrated into the Metasploit Framework."

Ian Lamont writes "Microsoft has issued a security advisory warning users not to press the F1 key in Windows XP, owing to an unpatched bug in VBScript discovered by Polish researcher Maurycy Prodeus. The security advisory says that the vulnerability relates to the way VBScript interacts with Windows Help files when using Internet Explorer, and could be triggered by a user pressing the F1 key after visiting a malicious Web site using a specially crafted dialog box."

theodp writes "Microsoft says it has reached a wide-ranging IP agreement with Amazon in which each company has granted the other a license to its patent portfolio. Microsoft says the agreement covers technologies in products such as Amazon's Kindle — including open-source and proprietary technologies used in the e-reader — in addition to the use of Linux-based servers. Microsoft issued a news release celebrating the accord, while Amazon declined to comment. 'We are pleased to have entered into this patent license agreement with Amazon.com,' said Microsoft's deputy general counsel. 'Microsoft's patent portfolio is the largest and strongest in the software industry, and this agreement demonstrates our mutual respect for intellectual property as well as our ability to reach pragmatic solutions to IP issues regardless of whether proprietary or open source software is involved.' A Microsoft representative declined to say which of its products are covered by the deal."

CWmike writes "Tuesday's security updates from Microsoft have crippled Windows XP PCs with the notorious Blue Screen of Death, users have reported on the company's support forum. Complaints began early yesterday, and gained momentum throughout the day. 'I updated 11 Windows XP updates today and restarted my PC like it asked me to,' said a user identified as 'tansenroy' who kicked off a growing support thread: 'From then on, Windows cannot restart again! It is stopping at the blue screen with the following message: 'A problem has been detected and Windows has been shutdown to prevent damage to your computer.' Others joined in with similar reports. Several users posted solutions, but the one laid out by 'maxyimus' was marked by a Microsoft support engineer as the way out of the perpetual blue screens."

CWmike writes "Tuesday's security updates from Microsoft have crippled Windows XP PCs with the notorious Blue Screen of Death, users have reported on the company's support forum. Complaints began early yesterday, and gained momentum throughout the day. 'I updated 11 Windows XP updates today and restarted my PC like it asked me to,' said a user identified as 'tansenroy' who kicked off a growing support thread: 'From then on, Windows cannot restart again! It is stopping at the blue screen with the following message: 'A problem has been detected and Windows has been shutdown to prevent damage to your computer.' Others joined in with similar reports. Several users posted solutions, but the one laid out by 'maxyimus' was marked by a Microsoft support engineer as the way out of the perpetual blue screens."

eldavojohn writes "Microsoft is due for a very large patch this month, in which five critical holes (that render Windows hijackable by an intruder) are due to be fixed, in addition to twenty other problems. The biggest change addresses a 17-year-old bug dating back to the days of DOS, discovered in January by their BFF Google. The patch should roll out February 9th."

snydeq writes "Microsoft warned that a flaw in IE gives attackers access to files stored on a PC under certain conditions. 'Our investigation so far has shown that if a user is using a version of Internet Explorer that is not running in Protected Mode an attacker may be able to access files with an already known filename and location,' Microsoft said in a security advisory. The vulnerability requires that an attacker knows the name of the file they want to access, according to the company."

An anonymous reader writes "For years, Microsoft has allowed Visual Studio users to define arbitrary tab widths, often to the dismay of those viewing the resultant code in other editors. With VS 2010, it appears that they have taken the next step of forcing tab width to be the same as the indent size in code. Two-space tabs anyone?"

theodp writes "If you're in the market for a new job, Fortune has just published its list of 100 Best Companies to Work For in 2010. Topping the list this year is SAS (SAS jobs), the largest privately held software company, which Fortune notes is populated with more statisticians than engineers or MBAs, and led by a Ph.D. founder whose first love is programming. Google (jobs), which once viewed SAS as model for employee perks, took the #4 spot, and Microsoft (jobs) checked in at #51."

CWmike writes "Microsoft will release its emergency patch for Internet Explorer on Thursday, the company said, as it also admitted that attacks can be hidden inside rigged Office documents. 'We are planning to release the update as close to 10:00 a.m. PST as possible,' said Jerry Bryant, a program manager with the IE group. Microsoft has updated the security advisory it originally published last week when it acknowledged a zero-day IE vulnerability had been used by hackers to break into the corporate networks of Google and other major Western companies. Google has alleged that the attacks were launched by Chinese attackers. Subsequently, security experts have offered evidence that links the attacks to China."

theodp writes "On New Year's Eve, the USPTO revealed that Microsoft is seeking patents for controlling a computer by simply flexing a muscle. Microsoft proposes using Electromyography (EMG) sensors and a wired or wireless human-computer interface to interact with computing systems and attached devices via electrical signals generated by specific movement of the user's muscles. 'It is important to consider mechanisms for acquiring human input that may not necessarily require direct manipulation of a physical implement,' explained the inventors. 'For example, drivers attempting to query their vehicle navigation systems may find it advantageous to be able to do so without removing their hands from the steering wheel, and a person in a meeting may want to unobtrusively communicate with someone outside. Also, since physical computer input devices have been shown to be prone to collecting microbial contamination in sterile environments, techniques that alleviate the need for these implements could be useful in surgical and clean room settings.'"

Glyn Moody writes "Most people regard OpenOffice.org as a distant runner-up to Microsoft Office, and certainly not a serious rival. Microsoft seems to feel otherwise, judging by a new job posting on its site for a 'Linux and Open Office Compete Lead.' According to this, competing with both GNU/Linux and OpenOffice.org is 'one of the biggest issues that is top of mind' for no less a person than Steve Ballmer. Interestingly, a key part of this position is 'engaging with Open Source communities and organizations' — which suggests that Microsoft's new-found eagerness to 'engage' with open source has nothing to do with a real desire to reach a pacific accommodation with free software, but is simply a way for Microsoft to fight against it from close up, and armed with inside knowledge."

Cytalk and other readers tipped us to Microsoft's loss in a US appeals court, in a patent case brought by Canadian company i4i. Microsoft must now pay $290M and either stop selling Word (and probably Office) by January 11, or somehow work around the patent by that date. A Seattle PI blog reports that Redmond has a few options left: "In a statement, Microsoft said it was working hard to comply with the injunction. The company also said it is considering further legal options, including possible requests for a new hearing or a writ of certiorari from the US Supreme Court." Update: 12/22 20:47 GMT by KD : Tim Bray has up a blog post explaining why it would be no great loss if Microsoft dropped the "custom XML" feature in dispute.
Update: 12/22 23:04 GMT by KD : Reader adeelarshad82 pointed out a statement released by Microsoft earlier today, which says in part: "We expect to have copies of Microsoft Word 2007 and Office 2007, with this feature removed, available for U.S. sale and distribution by the injunction date. In addition, the beta versions of Microsoft Word 2010 and Microsoft Office 2010, which are available now for downloading, do not contain the technology covered by the injunction."

harrymcc writes "The last ten years have been an amazing era for tech — and full of amazingly dumb moments. I rounded up scads of them. I suspect you'll be able to figure out which company is most frequently represented, but Apple, Google, Twitter, Facebook, Sony, and many others are all present and accounted for, too."