WindowsUpdate.com Secured, Permanently

← Back to Stories (view on slashdot.org)

WindowsUpdate.com Secured, Permanently

Posted by jamie on Friday August 15, 2003 @06:22AM from the and-fix-your-software dept.

Precisely nineteen months ago, Bill Gates sent out a memo to employees (and the press) announcing that security was Microsoft's number-one priority. Today, about a hundred readers have submitted the news that Microsoft.com went down last night. And now, the company has "extinguished" WindowsUpdate.com (future updates will come from a different domain). All this because of some Microsoft worm that triggers at midnight. Related news: Windows Update says you're protected, but maybe you're not; WU.com briefly ran Linux, heh; worm variant with clever "anatomical term."

8 of 766 comments (clear)

Re:Security is #1.... again? by leviramsey · 2003-08-15 06:43 · Score: 0, Troll

Jesus Christ, you're an idiot. Read the fucking article (not the links, the Slashdot article). It's right there in the first line.

I'd mod you down (I have the points), but I think it'd be better to point this out to any other mods so they can mod this bozo's post to -1.
Re:really... by Tirel · 2003-08-15 06:54 · Score: 0, Troll

3. The killer Unix programs (Apache, SSH, PostgreSQL, etc.) don't run as root either. So even if they get exploited, worms can't do much with their rights anyway.

Yes, they do. the apache parent process runs as root, sshd *always* runs as root, and so does postgresql.

Also your first doesn't apply because viruses go through something called EVOLUTION, if the primary OS were UNIX, we'd have a bunch of extremely intelligent and advanced stack smashing worms and viruses. (thank god we don't though.)
Linux's worst threat... by Thud457 · 2003-08-15 07:01 · Score: 0, Troll

Is that Microsoft starts writing software for the Linux platform. Thereby making Linux a big fat target for bugs, worms and viruses.

--
the preceding comment is my own and in no way reflects the opinion of the Joint Chiefs of Staff
Re:Who cares by tweek · 2003-08-15 07:06 · Score: 0, Troll

I don't think that forcing a windows machine to use IE for windows update is a bad thing really. It uses activex VERY heavily. When was the last time Microsoft put out an activex plugin for Netscape? It's been YEARS.

--
"Fighting the underpants gnomes since 1998!" "Bruce Schneier knows the state of schroedinger's cat"
Re:...in related news... by SpaceLifeForm · 2003-08-15 07:06 · Score: 0, Troll

Not when they hear the voiceover:
"This is your butt on Microsoft. Any questions?"

--
You are being MICROattacked, from various angles, in a SOFT manner.
Hey worm writers: IDEAS! by Ex+Machina · 2003-08-15 07:15 · Score: 1, Troll

You guys should poke the registry key that indicates the patch status for the hole you are exploting So the patches, won't work.

EVIL!
Re:really... by Eric+Ass+Raymond · 2003-08-15 07:51 · Score: 0, Troll

Ah, I see.
It's the newspeak for the new millennium. "Free software" means free software - with the limitations imposed by GPL - and the "multiculture of operating systems" means multiculture - as long as Microsoft software is not involved.
Thanks for clearing that up.

--
BOO! TERRO
Re:Security is #1.... again? by Overly+Critical+Guy · 2003-08-15 11:52 · Score: 0, Troll

Yeah, that line never gets old, in every single article discussion.

--
"Sufferin' succotash."