Slashdot Mirror
Bundeswehr Says Microsoft Software Verboten
deran9ed writes: "The German foreign office and Bundeswehr are pulling the plugs on Microsoft software, citing security concerns, according to the German news magazine Der Spiegel. Spiegel claims that German security authorities suspect that the US National Security Agency (NSA) has 'back door' access to Microsoft source code, and can therefore easily read the Federal Republic's deepest secrets. Article in German, English article"
The terrorists dream...
I_LOVE_YOU_2.TXT.vbs:
END IFHave you ever tried the SuSE german version of Linux? even the kernel messages are in german (talking about make menuconfig)...
.. english
As for MS or MacOS - you get the OS itself with localized version - and they're applications which Apple or MS written with localized version. If you'll install for example Quicken - you'll get it by default in
Hetz (Heunique)
I remember this from a while back, but it's nice to see other people asking these questions.
My question is, why doesn't someone with a Source License check this out? And if they have, are they allowed to tell us?
Windows source code isn't available to the general public, but a lot of people out there can get their hands on it. Anyone with access to it wanna pipe up and tell us?
---
pb Reply or e-mail; don't vaguely moderate.
pb Reply or e-mail; don't vaguely moderate.
There may be truth to the rumors. Xerox was reported to have rigged a copy machine in the Russian Embassy to make extra copies on film. The machine would break down periodically, and a Xerox repair guy would go out fix it and put in a new film.
Besides, it's not at all common for countries to throw up barricades to trade in order to boost their own industries.
Good for them, maybe Germany will actually build some software that competes on the market as a result.
Interesting. I suppose the whole WWII thing causes us to believe we are morally superior. But you're right on one point. The US tries not to use foreign products in our own government.
Not quite sure how you could justify that comment.
I wasn't talking who won or lost, but rather how the war was fought.
I thought that was pretty obvious. I guess not.
I wouldnt call this paranoid, it is a fact that there was a backdoor in Lotus Notes, and Notes was used by german military. So it seems like they have learned from their mistakes...
Well we at the Communist Jihad never plan our terrorist attacks through ICQ. Although we are foreigners, and therefor a little slow and backward, even we can see that you need more secure methods for this. We encrypt our data with software that we illegally downloaded from a USA based server.
The NSA sure stays busy, what with putting backdoors in Windows and securing Linux.
Next thing you know we'll have a Congressional panel on why the NSA is being so... um... un-American.
---
Thing is, it is absolutely crazy to let matters of national security rest on imported software. Maybe there are back doors in Windows and maybe there aren't -- but the fact that the government doesn't KNOW means they should have disqualified this software years ago. I hope other governments follow suit, including the US. Some things require the use of in-house products, whether that's more inefficient or not.
Learn to spell: nickel, missile, lose, solely, amendment, speech, kernel, probably, ridiculous, deity, hierarchy, versus
Yep. The US will use just about any tactic they can get away with to get big contracts for US companies overseas. For instance, the US told Australia that it had to buy submarine combat systems from US companies, instead of a competing European bid, because they wouldn't participate in joint exercises with these submarines if the subs used the non-US software. This, despite the fact that they happily conduct these kind of exercises with their NATO allies, who, shock horror, design their own submarines, tanks, helicopters, and planes, all with their own non-US combat systems.
Like most countries, the US believes in free trade when it suits.
Any sufficiently advanced technology is indistinguishable from a rigged demo
--Andy Finkel (J. Klass?)
I wasn't aware of any international treaties that placed limits on espionage activities - the only international treaties I can think of that relates to activities of spies are the Geneva convention (what you can do with spies once you catch them), and the Berne Convention (if they're diplomats, they've got diplomatic immunity). What are you referring to?
Any sufficiently advanced technology is indistinguishable from a rigged demo
--Andy Finkel (J. Klass?)
There isn't anything *but* Microsoft software, if you think about it; with 95+% of the desktop market, even if it isn't made in Redmond, its written for their products.
Besides, that German company may very well be SuSE...
ZOMG I WOULD LOVE TO KNOW ABOUT YOUR FEELINGS ON MACINTOSH VERSUS WINDOWS, VI VERSUS EMACS, AND HOW YOU'RE NOT A DORK
...the US secret service has a documented history of using its snooping on its allies, mostly for the benefit of US businesses.
Can you name a major country that doesn't? Seriously, the Germans do it, the French have been caught a few times recently, the Japanese have been caught a few times. The list goes on.
-
Canada probably doesn't spy on its allies.
The US passes it's information on to Canada, and the rest of our allies.
So if they aren't guilty by deed, they're certainly guilty by association.
-
Oh, yeah? Read this.
Perhaps you should stop relying on the German news agencies for coverage of German government excesses.
-
Because the original article (not written by timothy) specifically mentions Microsoft products as a security risk. See my translation below.
------------------
------------------
You may like my a cappella music
I am pretty confident that the German secret service does not snoop on Boeing headquarters to make sure that Airbus (a company co-funded by the German and several other European governments) gets hold of the latest deal.
At least, there hasn't been any report about such scandals here or in other country's news media, unlike many reports of such behaviour about the US secret service.
Given the fact that the German secret service is probably (surely) far less competent than their American counterparts and the additional fact that German news media are very critical of our government and love to dig up such stories, it seems that Germany is not among them.
Not yet.
------------------
------------------
You may like my a cappella music
Question is, who made the US the "mother" of Europe, in charge of educating its allies? The US does this because it is the one current superpower and knows it can get away with it.
That still doesn't make it right since the very same things that Woolsley critizies are done by the US as well.
------------------
------------------
You may like my a cappella music
Thanks. I stand corrected.
------------------
------------------
You may like my a cappella music
Maybe "shoot" was the wrong choice. While that word was used, it wasn't used in its literal meaning. More like "German army targets Microsoft" or "pinpoints Microsoft".
:-)
Even "farts in the general direction of Microsoft" would have been appropriate.
------------------
------------------
You may like my a cappella music
...the US secret service has a documented history of using its snooping on its allies, mostly for the benefit of US businesses.
A former CIA director explained that this is done for moral reasons, but his article sounds awfully bigot to me...
It should be expected that Echelon and similar technology that the NSA has access to will be used in a similar manner.
------------------
------------------
You may like my a cappella music
[Everything in brackets is my comment. I am German.]
1 70,00.html
http://www.spiegel.de/netzwelt/politik/0,1518,123
Enemy Software
German Army bans Microsoft Software
In fear of US secret services, the German foreign ministry and the German army are planning to close security holes. Instead of American software, federal computers will run German software in the future. [German software? There is no German operating system that I know of. DPA has a competent staff of tech writers, but I doubt they got this right.]
Original article by Deutsche Presse Agentur [an independent, but huge commercial German press agency].
(Image caption: In danger of spies - the German army shoots against Microsoft.)
Computers that are used in security-sensitive areas shall not run Microsoft software anymore. According to German government security advisors, the American secret service NSA has full access to the complete source codes of the US company and is thus able to read even encrypted [Microsoft] files. Because of this, the German ministry of defense uses encryption technologies offered by the local companies Siemens and Telekom [the formerly state-owned, now largest telephone and internet provider].
Meanwhile, the ministry of foreign affairs has halted plans to use video conference technology to communicate with their embassadors and foreign offices. During a Telekom presentation in Berlin at the beginning of March, State Secretary Gunter Pleuger was informed that for technical reasons, every satellite transmission is routed to the American city Denver, Coloroda.
Pleuger thinks the detour to the USA is a security risk. "Then we could do our conferences in Langley right from the start" joked a staffer of the Pleuger office. Langley, Virgina, is the location of the US secret service CIA.
------------------
------------------
You may like my a cappella music
No, no "backdoors" in software means that the author, publisher, NSA, etc. can get in while you think the software is secure.
Outlook, on the other hand, is not a backdoor, it tends to "backdoor" the user. This is using "backdoor" as a verb, in the sense of prisons, or porn put out by Seymour Butts.
--
--
"Outlook not so good." That magic 8-ball knows everything! I'll ask about Exchange Server next.
the intelligence community protects its secrets under layers of "need to know." Though we know that some NSA agents worked at MS, we did not know what they were doing there. We didn't have the need to know. Even the president can be shut out from info because he may not have a need to know. so he won't know that he doesn't know, so he will not want to see info he doesn't know exsists. It would be naive to think that the NSA doesn't use the most widely used software for government and business, for its own purposes. It is also naive to think that MS isn't getting something in return. And to think that the Justice department wouldn't go after MS is naive too. To not go after them would raise suspicion. the software community would have blown the whistle, saying they are backing off the case because MS is in bed with the NSA. Most NSA guys are just normal geeks who like the work, and don't think of the moral consequences of what they are doing. They party as hard as they work.
photosMy Photostream
Linux is not US Software, it is from Finland.
Don't count on Siemens having the nerve to say no to Microsoft. If you look at the most recent Dr. Dobbs, they are the featured "client" of Microsoft NT Embedded. Also, I work for a company that just got aquired (peacefully) by Siemens AG. We were a long time user of LynxOS for realtime embedded medical software. The word has now come from above that we will discontinue the use of LynxOS, and use Syngo(tm), which is Siemens Medical Software divisions' WinNT/2K based ActiveX framework.
A Government Is a Body of People, Usually Notably Ungoverned
98% of SuSE is not german.
If I wanted the ultimate secure OS for a PC-based server, I would want to use OpenBSD. But too bad, it's developed in Canada...
A Government Is a Body of People, Usually Notably Ungoverned
You know I can't say who it is :-)
Suffice it to say that we used to be an engineering organization with an engineer/physician CEO. Now our Siemens CEO is a marketing dude, and our marketing department, dancing on their puppet strings, are creating our engineering *specs*. Gaaagh!
We were best of breed, the most respected company of our type. And we got bought out by number eight in a field of nine competitors.
It's time to get my resume in order...
A Government Is a Body of People, Usually Notably Ungoverned
Linus Torvalds, Richard Stallman, Larry Wall, and Guido van Rossum are but four major authors of SuSE Linux that are not German. You see, SuSE did not write 98% of SuSE. They only took existing components and fit them together, along with some of their own. SuSE may have created the SuSE Linux operating system, but they didn't create the vast majority of components.
A Government Is a Body of People, Usually Notably Ungoverned
This really is a bit silly, and I wonder if it isn't just a magazine report blowing comments out of proportion. Remember the old story about China dropping Windows for Linux? It turned out to be a complete exaggeration and misunderstanding. Besides, if they're really concerned about backdoors, why don't enter into Microsoft's new source code sharing program? I'm no more a fan of Windows than any other Slashdotter, but I do recognize that MS makes a lot of money overseas, and they'll take whatever steps they consider necessary to regain trust in these areas, especially as the US software/PC markets slow due to economic concerns and market saturation. --JRZ
Well, can you tell me what part of an airplane could be more important?
Well, the Army's new berets are going to be made in China.
If we find the receipt, can we give it back?
:-)
Learning HOW to think is more important than learning WHAT to think.
I have to use M$ crap at work so actually things are not so great for me...
--
You think being a MIB is all voodoo mind control? You should see the paperwork!
A man who wants nothing is invincible
I guess their problems with NT were't as bad as many people here would like to believe.
Nevertheless it's a good idea. Every time a german buys an MS operating system some money flows out of germany and into the US. Great for us, sucks for germany. Every country should make a policiy to use it's own products in it's own government. Anything else is saying your own countryman could not create a decent product and what the hell kind of an endorsement is that?
I am always shocked when I hear that another government has standardised on some american product or another. Even if the products made in your own country are somewhat inferior why would you give away the tax dollars collected from your own citizens to a foreign corporation? Besides I am finding it hard to believe that a country which can make BMWs could not produce quality software.
War is necrophilia.
Well, the NSA apparently felt the need for a secure operating system. They went about it in the only sensible way (i believe) with an open source system. If there was a sensible alternative out there the NSA wouldn't have felt the need to throw money at the problem. This means, that even the NSA feels that Microsoft products don't do their job securitywise, and even if they can look at the source (i think the NSA has the necessary influence to do this) they might find it too complicated, apparently it's easier to start over with Linux anyway. Now, if even the US american NSA doesn't consider windows in their search of a secure OS why should the German Bundeswehr, or any other country for that matter. I think an Open Sourced OS would be the cheapest solution (and even allow for some interoperability).
...).
Also consider that MS' might build something into their OS so it can be switched off remotely (maybe if they think you didn't buy the licence, or you didn't update often enough). Also it becomes harder and harder to keep control over your computer once you installed an MS OS or MS applications. Already you have to turn off automatic updates. The system actively resists some tampering with system files (yeah, it's for the best of the user, but even someone who knows what he is doing can't turn it off). Well an obscure blackbox wich doesn't allow for tampering isn't what makes a happy security expert. He prefers a modular and well structured overseeable system (not an easy feat with todays OSes). I think a version of Linux would be a good start, but maybe some people at Siemens did some lobbying (that is to be expected, although american politicians call it bribery when it happens outside of the US, of course none of that happens in the US at all, and G. W. Bushs plans to distibute money to his rich friends are for the best of USA, but i digress
"By the way if anyone here is in advertising or marketing... kill yourself." -- Bill Hicks
Even if MS shows them the source, there's no guarantee that the source that they get shown is the same source that gets compiled. You could just diff in your NSA backdoors right before compiling and no one would ever know the difference.
I'm trying to teach myself to set people on fire with my mind... Is it hot in here?
I believe that they can't simply bar American software for various trade legalities. So they need to use "security concerns" as a cover to justify this. It doesn't mean that MS has backdoors in its code; rather the *rumor* that such things exist is the perfect reason for the German's to use software from their country.
Last night I shot an elephant in my pajamas. How he got in my pajamas I'll never know.
Another oddity is why would they just come out of the blue and state these transmissions are going to Denver?
Read the Omega File. The NWO headquaters will soon be under Denver International Airport. It also says that Germany is set to be a key player in the coming of the New World Order, and that they were heavily involved with Grey aliens in WWII. It all makes sense thanks to conspiracy theories!
Trolls make great pets. Adopt one today!
Hmmm, ever heard of SuSE? Nothing stops them from making a DGSE-linux in cooperation with SuSE, sort of analogous to the NSA's security enhanced linux... (Was DGSE the german foreign intelligence agency or do I even have the right country? oh well, what ever acronym is right the point is the same) Now does this mean that they'll release a new linux binary called /usr/local/bin/sniffgermansecrets? doubt it. but if they find and release fixes for kernel bugs and whatnot, hey, that's a win...
--
News for geeks in Austin: www.geekaustin.org
News for Geeks in Austin, TX
The NSA has to report to someone right? If they spy on foreignors while the FBI spies on Americans, the thing kinda looks like
NSA->State Dept
FBI->DOJ
Well there has to be some sort of oversight such that
(diagram removed because it was 'lame')
And I'm sure that oversight can coordinate a little information exchange between the NSA and the DOJ. I'm of the opinion that there is no NSA backdoor in Windows, because it would have been found and exploited by now. I think it's just some European nationalism thrown in to cover up the fact that someone in the IT dept. fucked up and now they need an alternative.
It's fairly obvious where Deutsche Telekom hails from, but I didn't know Siemans was a German company... I suppose asking them to use NSA Linux is out of the question =) Anyone have any insight into what design decisions they'll be making?
--
Peace,
Lord Omlette
ICQ# 77863057
[o]_O
US corporations of course receive no money from their government.
Because the NSA have it and the German government doesn't. If they used a truly open system then backdoors could be planted but a security audit would find them.
Trying to keep conflicts down? Ha! I think you should have a look at this and then judge how great a force for peace the US has been over the past 30 years. Not that the Europeans or Japanese have exactly covered themselves with glory either.
How to look an idiot by forgetting to close quotes. Try looking here.
Well Microsoft did it. Sort of anyway.
In which case then, the Vietnamese must be the master race.
John Logie Baird invented the television, and you're right it wasn't an Englishman who invented the first car it was a Frenchman. Saying that Daimler invented the car is as hilarious as saying it was Henry Ford that did it.
What point was that? Don't start dissing the Germans for losing a war 55 years ago if you don't want to be reminded of losing a war 25 years ago, and to an allegedly inferior force of communists no less.
And how was the Vietnam war fought? With Napalm, Agent Orange and soldiers who didn't care about the difference between a village of rice farmers and a VietCong base. The Nazis were evil scum, but the Yanks didn't exactly act with honour in Vietnam either.
I work for a German Company and have visited a lot of German companys. From what I have seen is that all the companys run Windows NT and a few run Windows 2000. If they run Windows NT it's with SP5. I have also seen a lot of companys experment with Linux, mostly running internal websites.
But the article talks about secure servers, I just see the "front end" not the secure servers, and from those that I have seen, they are running Suns.
I wonder who is winning on this? SuSE?
hmm... for fun I enjoy launching DDoS attacks against 127.87.42.5
The two companies [Siemens and Deutsche Telekom] have supplanted Microsoft (and anything else American) and will be producing a secure, home-grown system that the German military can be confident in.
So basically, instead of having a proprietary American software running a major military organization, they'll have proprietary German software running a major military.
Be ot or bot ne ot, taht is the nestquoi.
From the NSA web site:
The National Security Council, a group of appointed senior officials, assists the President in formulating foreign policy and intelligence priorities. The Director of Central Intelligence (DCI) directs and coordinates the diverse activities of all the U.S. intelligence organizations. The IC has representation from many intelligence agencies, including intelligence functions in the DoD, Departments of Justice, Treasury, Energy, and State, and the CIA. While not a military organization, NSA is one of several elements of the IC administered by the DoD."Then came the Holy One, blessed be He, and slew the angel of death, that killed the shohet that slaughtered the ox that drank the water that quenched the fire that burned the stick that beat the dog that bit the cat that ate the goat my father bought for two zuzim."
It's not a backdoor. It's a feature.
...I'll procrastinate tomorrow...
Right. Let's install RedHat instead...
German security authorities suspect that the US National Security Agency (NSA) has 'back door' access to Microsoft source code, and can therefore easily read the Federal Republic's deepest secrets.And then we're going to help Mulder crack his biggest case!...
- I don't care if they globalize against free speech. All my best free thoughts are done in my head.
Right. Let's install RedHat instead...
German security authorities suspect that the US National Security Agency (NSA) has 'back door' access to Microsoft source code, and can therefore easily read the Federal Republic's deepest secrets.
And then we're going to help Mulder crack his biggest case!...
- I don't care if they globalize against free speech. All my best free thoughts are done in my head.
Comment removed based on user account deletion
What like Outlook? :)
Let's not forget the whole NSA backdoor key in Win2k debacle. There were, of course, reports from Microsoft denying that this was a key for the NSA. There is, at least, sufficient doubt to make it impossible to rule out the presence of a delibrate NSA backdoor.
Even if that weren't enough, one could argue that such a backdoor, if found, might be (or possibly has already been) classified as a bug instead of a backdoor.
PS: Believe it or not, Siemens really does have a Staines office (Siemens Building Technology). If only Wang had an office in Cologne.
98% of SuSE is not german
But at least you can examine, or modify the source code for 98% of SuSE. The other 2% of SuSE, you don't have to install.
With SuSE being a German company, they might be less inclined to spy on their own government -- or, the government migtht be able to cooperate/coerce SuSE in various ways.
I'll see your senator, and I'll raise you two judges.
I replied to another message with basically the following argument...
MS would never allow their source code outside the US. Who would they complain to if foriegn power violated the NDA? Imagine even inside the US where MS has the legal system in their pock..er.., um.., I mean, on their side. If a US company violated MS NDA, no amount of money in a legal judgement could make up for it. Period. Damage is done. So given the absence of any legal recourse, why would MS release source code outside of the US?
I'll see your senator, and I'll raise you two judges.
You know, my friends and I have joked about MS (and other companies) having backdoors in their software for years. We've always known the NSA has incredible powers when it comes to finding out what they want to know. It's only a quick leap of logic to assume they've got systems that make Carnivore look like a toy. Besides MS, I'd say the next biggest target is Cisco's routers. Think about the incredible potential if the NSA can just reroute anything they want through their own network.
You think that if the government had access to Microsoft's software then they'd have a stronger case against them...
--The space between my ears was intentionally left blank--
Sorry; my comment was more in regard to the article at The Register, which details that they are phasing out ALL non-German software from their most secure areas. For normal governmental work and other divisions, they will probably continue using Windows, since that is the platform on which you'll find most business apps.
-------
-- russ
"You want people to think logically? ACK! Turn in your UID, you traitor!"
Natural != (nontoxic || beneficial)
If anyone bothers to read the article, it states that Germany isn't going to use ANY American or foreign software in its most highly secured areas. Why the hell did timothy feel the need to specifically cite only Microsoft software?
:)
In case you were thinking that this is somehow a "win" (whatever that is) for Linux, think again: They are going to home-grow their secure solutions using a German software company.
This is the same thing our United States military does. They contract with American-owned companies for custom software solutions (like the recent Windows Datacenter custom system for running Battleships and aircraft carriers, or the NSA's development work on a secure Linux system.)
Can't Slashdot just stop focusing on Microsoft for even one minute? Please?
Oh well.... life goes on
-------
-- russ
"You want people to think logically? ACK! Turn in your UID, you traitor!"
Natural != (nontoxic || beneficial)
There are some major satellite teleports in the suburban Denver area...
Under/Around/Near Denver is also a suspect spot for Area 51's replacement base and development center.
The next Slashdot story will be ready soon, but subscribers can beat the rush and slashdot the links early!
Are you by any chance referring to the SuSE A.G. in Nueremberg?
You're right, this sounds awfully suspicious, but remember there has been a lot of bad feelings over the Echelon program lately, especially considering the fact that US companies suddenly come up with a better deal just as some EU company is about to sign a major contract (as for example Boeing vs Airbus when some Arab airline wanted to upgrade it's fleet). Germany, being an industrial powerhouse, was most incensed by this suspicion of industrial espionage sanctioned by the US government, and Germans being historically paranoid about eavesdropping, this is not a surprising reaction.
Mart"I know I will be modded down for this": where's the option '-1, Asking for it'?
Yesterday someone posted a connection between Microsoft & CoS. The Germans have good reason for their decision, especially considering that the disk-caching and defragmentation utilities shipped in NT & 2K were developed by a company founded by a Scientologist. Germany and CoS are not good friends (read more on google)
The internet has spawned interesting phenomena such as rtmark, which seeks to subvert worldwide corporatization by arranging contributions to fund legal anti-corporate activities. It's about time for someone to conduct similar efforts toward confirming back doors in OS software.
Until then, we all have to wonder whether this is paranoia from the intelligence community, or reality.
If you love God, burn a church!
Ewige Blumenkraft!
besides... last uname -a I did showed FreeBSD
360 degrees of Karma
Siemens is a mega corporation, so its going to be neat to see how this plays out on other European countries using Microsoft based products, as well as the governments of Germany and America's trust in each other (remember with a company like Siemens, its not like its a mom and pop company ranting off.) Germany is a very powerful force within the European Union as well so chances of this rubbing off into other countries will likely take place in the not-to-distant future.
Another oddity is why would they just come out of the blue and state these transmissions are going to Denver? Out of all the places (for a conspiracy theorist to mention) in the US Denver and not someplace like Washington. Well here are the only places I know offhand capable of capturing, sorting info in the Colorado area along with respective information: ITS, NSA orders (keep in mind these are publicly accessible websites and known locations)
I wonder if MS would comment on this article or will they ignore it. This isn't the first time MS has been accused of having backdoored software.
(In fact here ya go enjoy... gov doc a, gov doc b, Slashdot's prior MS/Backdoor article)
Also its not the first time someone in the European Union has accused the United States of odd actions involving espionage. There was also something along the lines of ECHELON being by the U.S. used to promote industrial espionage in order to beat the EU to a large (billions of dollar large) aerospace deal with Saudi Arabia.
Anyways...
Well here's the babelfishified version of the German article:
crummy translation...
vroom vroom
360 degrees of Karma
Veni, vidi, vici.
Who needs Windows 2000 when the Germans have Enigma boxes, hah, sit on that and rotate Mr NSA! :o)
One of the reasons the British military is so much more effective than the French and German militaries is that spending is based on what is best for the job, not on politics. This often means buying American (or even French/German) equipment rather than British. The American military is fairly protectionist, but BAE Systems (formerly British Aerospace) is given equal treatment to American defence companies. In any case, the enormous size of the American defence budget is enough to make up for any inefficiencies caused by protectionism.
If the Bundeswehr anticipate a war in which the Anglophone powers will not be on the same side as Germany, I think the last thing they should be worried about is which software their systems will be running when they're vapourised.