WindowsUpdate.com Secured, Permanently

Precisely nineteen months ago, Bill Gates sent out a memo to employees (and the press) announcing that security was Microsoft's number-one priority. Today, about a hundred readers have submitted the news that Microsoft.com went down last night. And now, the company has "extinguished" WindowsUpdate.com (future updates will come from a different domain). All this because of some Microsoft worm that triggers at midnight. Related news: Windows Update says you're protected, but maybe you're not; WU.com briefly ran Linux, heh; worm variant with clever "anatomical term."

Next Week..

[msblaster.exe]

Don't worry next week there will be another memo with the URL for the new update

Re:Next Week..

[Ledskof]

secured permanently? So they unplugged it from the network to finally get that C2 security level eh?

Re:Next Week..

[cravey]

I wonder why they didn't just point DNS for the website to 127.0.0.1.

Let the infected servers work it out amongst themselves. :)

Re:Next Week..

I wonder why they didn't just point it to sun.com

Re:Next Week..

[cdecroes]

I'm suprised microsoft didn't point it to 129.42.19.99 (www.ibm.com)

Re:Next Week..

[RevRa]

Overheard:

Co-worker1: "I wonder what would happen if I pinged 255.255.255.255?"

Co-worker2: "Don't do THAT! You'll ping the whole Internet!"

hahah. :-)

Re:Next Week..

[malfunct]

I thought with microsofts great resources they would have funded an effort to change time. The could just never let clocks get to the 16th and the worm would be totally neutralized.

Re:Next Week..

I for one am willing to donate 16kbs of my bandwidth to help take out windows update for a while. Everyone should, it'll be fun. This is what community is all about, working together and stuff. Where can I d/l my copy of blaster? I think I'll get right on it.

Power outage related to Microsoft

[Interesting+Username]

It seems the power in one of the most populated areas of North America was out around the same time Micrsoft was making these fixes? Coincidence? I think not. For those of you in the power outage area, expect it to happen again tomorrow as the DoS is about to begin.

Re:Power outage related to Microsoft

[mfivis]

mmm, I believe it can be attributed to overload. Think about the sheer amount of Windows machines that were frozen and unable to turn off without hard Reset or power buttons, i.e. stupid new gen Dells and so forth.

Re:Power outage related to Microsoft

[Cromac]

I personally wish the US would update it's power infrastructure, and I'd be willing to pay for it.

Just send that personal check for several hundred billion dollars to:

U.S. Department of Energy
1000 Independence Ave., SW
Washington, DC 20585

Re:Power outage related to Microsoft

[FreeUser]

Take it from someone who's soon-to-be-parents-in-law are up to their necks in the power + safety industry ... no, they don't run Windows.

Control frontends and GUIs may run Windows. They may also run Java apps. The back-end is ALL Unix (and specifically NOT Linux), because there are very few OS vendors who will certify and indemnify the use of their OS in that kind of safety critical environment.

Ah.

SCO UNIX.

No wonder.

(*duck*)

Re:Power outage related to Microsoft

[harley_frog]

I personally wish the US would update it's power infrastructure, and I'd be willing to pay for it. Retire old, inefficient nuclear plants and build new, more powerful, safer ones. Add in more redundancy into the network, more real-time failovers. They are modernizing it, don't get me wrong, but they aren't going at near the pace I'd like to see.

Interestingly enough, Bush says that the nation's power grid needs to be updated, but doesn't know how or how much it will cost. Hmmm, I wonder if these means replacing the hampsters with ferrets?

Re:Power outage related to Microsoft

[Wingnut64]

"Is there any way this 'DoS' can be stopped?"
"Impossibly, there's too many compromised machines. You'd need to turn off every computer on the East Coast..."

Loopback anyone?

Microsoft should take a clue from User Friendly!
We (a 30,000 student Midwest University) are currently thinking about making our DNS servers authoritive for windowsupdate.com and and pointing the A record bac k to loopback.

What did they do?

[Tirel]

Did they point windowsupdate.com to 127.0.0.1 ? I hope not, there was a mail on FD explaining that such an action would cause it to DOS the local network.. Also, wtf is up with the site running lunix?

Re:What did they do?

[ceejayoz]

Pity they don't know the virus writer's IP... heh...

Re:What did they do?

[golgotha007]

why would i want to help allievate the situation? hell, i get to have all my computers attack microsoft for free! and legally! wohoo! sick 'em!

Re:What did they do?

[xanadu-xtroot.com]

Anyone thinking about putting a Win2K box on without MS03-026, and running a packet sniffer to grab IPs?

Sure I was thinking about that. Let's use YOUR network for it...

Re:What did they do?

[Fly+Ricky+-+The+Wine]

I know, I use a mac and I'm about to turn on my copy of virtual PC just to join in on the fun! Rock and roll. Take that for buying Connectix you bastards.

Fly Ricky, the wine taster

...in related news...

[Guano_Jim]

...all HTTP requests to WindowsUpdate.com will be directed to goatse.cx.

Some speculate that this will considerably improve Microsoft's customer service.

Well, at least Microsoft

[Rorgg]

Has a license to use those Linux boxes!

[rimshot]

Thanks folks, I'll be here all week!

In other news...

[GillBates0]

Computing is more important than any other part of our work. If we don't do this, people simply won't be willing--or able--to take advantage of all the other great work we do.

Breathing is more important to us than any other activity. If we don't breathe, we will die.

Ahhh, the perfect security

[Froze]

1) Disconnect box from all external cords
2) Encase box in several hundred cubic meters of concrete
3) Surround concrete with meter thick lead lining
4) Bury under radioactive waste in a geologically stable region
5) Saturate the surface with nuclear land mines
6) Curse MicrSoft, becase you still get hacked!

Re:Ahhh, the perfect security

[stwrtpj]

1) Disconnect box from all external cords
2) Encase box in several hundred cubic meters of concrete
3) Surround concrete with meter thick lead lining
4) Bury under radioactive waste in a geologically stable region
5) Saturate the surface with nuclear land mines
6) Curse MicrSoft, becase you still get hacked!

7) Profit?

Man....

[frodo+from+middle+ea]

that gotta teach a lesson to those lousy worm writters. Changing domain name, who whold have thunk , microsoft would come up with such an ingeneous solution.
Take that you microsoft hackers, bet you are scratching your head now.

Re:Man....

[Interesting+Username]

They are getting smarter, this time the IP isn't hardcoded.

Re:Security is #1.... again?

[micromoog]

Wasn't this the subject of a famous memo about a year and a half ago, when they were spending 10 months doing nothing bug security?

Oh, you mean this?

Precisely nineteen months ago, Bill Gates sent out a memo to employees (and the press) announcing that security was Microsoft's number-one priority.

It's the first line of the fucking story! For cryin' out loud, we know you're not going to read the fucking article, we don't really expect you to even read the whole story, but can't you at least fucking read the first line?!?!

Saved?

[PovRayMan]

Last night I finally went to go upgrade from Windows Media Player 6.4 to 9.0 so I can test out those high definition WMP9 videos for once. I couldn't figure out why microsoft.com wasn't loading but now I find out it was because of a DOS attack.

Now I'm thinking, was this intervention from a higher force to protect me from installing WMP9 or just odd luck?

Gotto think fast

Shit, now I've gotto think of something clever/insulting to say about Microsoft....it's 2:30 in the afternoon....and my great mind isn't too active either, after a heavy lunch.

/. editors should give us some advance warning before posting demeaning stuff about microsoft/RIAA/SCO, so I have enough time to think about rude stuff to write up, before 300+ posts are posted.

Re:Gates Memo repost - slowing...

[otisaardvark]

Today, in the developed world, we do not worry about electricity and water services being available.

You have to give it to the guy; his timing is impeccable...

Re:Security is #1.... again?

[druske]

Funny, it looks to me like Microsoft's security is #2... ;)

What took out Microsoft.com last night???

[TopShelf]

At least we know where the DDOS attack didn't come from: New York, Detroit, Cleveland, Toronto, et al.

How to get Good MS PR

[linuxislandsucks]

A question ..

Assuming that all old windows systems are unsecure or badly written..

Would it not make sense to take 75% fo $45 billion and offere to replace hardware and update to winXp or longhorn to every MS custoemr worldwide?

It would be the PR stunt of the century..

cool title

[pyros]

Marc Maiffret, chief hacking officer for security software maker eEye Digital Security

That is the coolest job title. I'd have to negotiate a gold plated machette as a hiring bonus for a title like that. And anyone working for me would be officially titled a Hacking Minion!

Or point DNS to resolve to SCO.com !

NT

Ironic?

[Bandman]

Today, in the developed world, we do not worry about electricity and water services being available.

Maybe he didn't get the memo?

Re:A moving target is still a target

[RLW]

M$FT doesn't have time to fix bugs. These problems are an annoyance and only after they have been taken to task time and time and time again - they have finally decided to do something about it. They have been rushing software out the door for so long that they don't know how to perform genuine quality control. M$FT is not a software company that makes money so much as it is a company that makes money by making software. Well, buying up other's software slapping on some lip stick and then putting it out as their own.

Bill Gates: "Leave us alone so we can innovate"
User: "You keep using that word. I do not think it means what you think it means."

Re:Security is #1.... again?

[SillySlashdotName]

I don't know, PISS POOR seems to describe it pretty well - and that would be #1 - unless you were going for shitty, which it is and is, therefore, indeed #2. :->

Today, in the developed world

[elinenbe]

From the memo:

"Today, in the developed world, we do not worry about electricity and water services being available"

Well, at least some people don't have to worry about electricity...

September's Memo

[msblaster.exe]

From: Bill Gates
To: Microsoft staff


Last month I sent out a memo. Well here is another one. It has come to my attention that people on the website www.slashdot.org make fun of me and how I run my business.
On another note there is another Windows Update available at the url www.windowsupdate2.com please download this due to the fact there were major holes in the last update.

-Bill

I just had to mention it...

[SillySlashdotName]

"Microsoft.com went down last night" - See? Microsoft really DOES suck!

Re:Security is #1.... again?

[PhxBlue]

You're new here, aren't you?

Microsoft != reliable

[Thud457]

"Actually, there are rumors that safety systems that would have prevented such widespread failure were running on Windows and were down because of blaster. "

If those rumors are true, then the worm didn't cause the power failures, it just disabled the systems that would have prevented them. That this happened at around the same time is just a coincidence, - or maybe minor power failures happen frequently and were just prevented from spreading?

Who the fuck runs mission-critical systems on Windows?!! HOMER SIMPSON?!!!

Re:Microsoft != reliable

[pyros]

yes ... yes ... yes ... .. y ... <hmmmm> y ...

<stupid filler to avoid the fscking retarded lameness filter>

Re:Microsoft != reliable

[pyros]

redundant!? Guess I should have quoted the bit I was responding to (who runs windows on ...? HOMER SIMPSON ) The yes over and over being a reference to him running his mission critical system, where he just typed yes all day, until he figured out he could just hit y, until he set up that toy bird which leans forward and stands back up over and over. Man, I can't believe I had to explain that one.

Re:not quite

[RoLi]

What's your point?

The sorry fact is that Micrsoft's complete Internet infrastructure would immediately break down without Unix/Linux.

Remember when microsoft was offline for half a week? They migrated their DNS-servers from Windows to Akamai(Linux)

Now they migrated the whole load-balancing and caching system.

The only thing left is their measly webserver-box, so it seems.

Patent

[Arpie]

Will someone please patent something like this before micro$oft:

"Method to prevent worm attacks by changing site hosting locations as many times as needed".

This way they'll either have to fix the damn holes or pay up.

I'm joking... but if someone wants to try and the USPO actually accepts it (not totally unlikely) just give me some credit, and some 10% of the profits will do. ;-)

Military Definitions of "Secured"...

[Speare]

Reminds me of the old military joke,

• The reason the Air Force, Army, Navy and Marines bicker amongst themselves is that they don't speak the same language. For instance, take the simple phrase
• "secure the building".

  The Army will post guards around the place.

  The Navy will turn out the lights and lock the doors.

  The Marines will kill everybody inside and set up a headquarters

  The Air Force will take out a 5 year lease with an option to buy.

Disk Operating System

[Tired_Blood]

While Windows was getting all the attention from their common creator Microsoft, DOS has secretly been waiting for its opportunity to strike at both.

From the infoworld article:
The company is cooperating with federal law enforcement officials to investigate the attack, which is the second successful DOS attack against Microsoft.com this month.

Two successful DOS attacks this month. And what a sense of irony: revolt against the creator by manipulating "the favorite" to do its bidding.

What's so hard about using a lower-case 'o'?

Re:Here's the deal on Linux for windowsupdate.com

[nobodyman]

Of course, it's extremely amusing that they're paying to have their content served by a flock of 15,000 penguins.

Man, that's gotta be embarassing -- their ass is being saved by the OS they are trying to kill. Good thing they paid SCO for that Linux license.

Re:windowsupdate.microsoft.com

[Polo]

Not a huge deal, since the official URL is windowsupdate.microsoft.com . The start menu, Tools in IE, and Windows Help all have that address. The worm author was kinda stupid, he should have pointed it to microsoft.com or windowsupdate.microsoft.com.

darn...

cvs co msworm.asm
click. tap. clack. click.
cvs commit -m 'fix url'
make;make install

ok, done. Thanks!

Breaking news tomorrow

[the_one_smiley]

The impending DDoS attack on Microsoft scheduled in the MSBlast worm was drastically mitigated by Microsoft's DNS shuffing, the diligent patching by systems administrators around the world, and the lack of electricity in several population centers. However, it was replaced by a much more potent DDoS attack by people checking to see if Microsoft's site was dead yet...

Wow

[Cyno]

With Microsoft getting DOS attacks and viruses all the time one might begin to think that someone doesn't like them. Hrmm. Wonder who that could be..

As Reliable as Electricity and Water???

However, even more important than any of these new capabilities is the fact that it is designed from the ground up to deliver Trustworthy Computing. What I mean by this is that customers will always be able to rely on these systems to be available and to secure their information. Trustworthy Computing is computing that is as available, reliable and secure as electricity, water services and telephony.

Today, in the developed world, we do not worry about electricity and water services being available. "

I guess Bill hasn't seen the news in the last 24-48 hours. I haven't seen a virus yet that can take down all systems in less than nine seconds. If the reliability of power is what Bill aims to achieve we (MS) admins will always have a paycheck...

Re:No third party distribution of patches

[GordoSlasher]

From an article in a local newspaper

In Colorado, Comcast and Qwest said customers who couldn't access the Internet bombarded the company with calls. The companies directed their customers to Web sites offering software fixes.

That's some really useful advice for someone who can't access the Internet! Maybe they expect granny to drive to the web site?

Re:Security is #1.... again?

[PhxBlue]

I dunno. I just saw someone else's signature line say it's a guaranteed +5 Funny, so I figured I'd do a one-shot experiment to see for myself. 'Course, it only got to +3, so I guess the guy wasn't right after all. :)