Microsoft Security Whitepaper

An anonymous reader writes "Microsoft last week published a document on its Web site that describes how the company manages security on its own 300,000 node corporate network. The document is basically a dry discussion of IT risk management strategy, with lots of references to 'asset classes' and 'stakeholders,' and about five, nearly identical 'cycle of life' type diagrams showing how one risk management strategy leads to the next and so on, in a never-ending process. However, the document does open a window on how the biggest, richest software company in the world does security: from the deployment of 65,000 smart cards (let's see, at $50 a piece, that comes to....?), to MS's admission that 'there is a medium to high probability that within the next year, a successful attack will occur that could compromise the High Value and/or Highest Value data class.' According to the document, that includes things such as source code or human resources data."

is it ALL white?

[BFedRec]

cause the oxymoronic nature of using MS and Security in the same vicinity... one would think it's just an all white blank sheet of paper.

Re:is it ALL white?

[Fruny]

one would think it's just an all white blank sheet of paper.
No, I believe it comes triple-thickness, extra soft unscented rolls.

Re:is it ALL white?

[Lost+Dragon]

No, no, silly. It's white text on a white background. That's part of their security layer.

they

[AnonymousCowheart]

they recently published the bug list too

Good to see

[H.G.+Pennypacker]

It is encouraging to see a big security industry leader such as Microsoft make such a public display of its unwavering belief that security through obscurity is not security at all - by publishing an open document on its security infrastructure. Perhaps other large players could take a cue from this (IBM, Sun)?

Re:Good to see

[jon3k]

Microsoft's philosophy on "security through obscurity" is all but irrelevent. Its the administrators who'll be implementing the technology we need to be concerned with.

Re:Good to see

[throughthewire]

The white paper is surprisingly detailed, which makes it actually useful - it even mentions specific non-Microsoft products (such as Trend Micro Viruswall.)

But security through obscurity is alive and well at Microsoft. Tell me, when you select "store password using reversible encryption" in Active Directory, what algorithm is used to (reversibly) encrypt the user passwords? Where are the published specifications for PPTP? For MS-RDP? Obscurity goes hand-in-hand with closed source.

Note that, especially for corporate security, obscurity is a legitimate component of "defense in depth." I might mandate standards-based encryption; maybe even open-source firewalls based on an open-source OS. But it's none of yer business what kind of firewall or IDS or smart cards I'm using. That's for me to know, and you to try to find out.

What is unfortunately obscure in this white paper is the name(s) of the author(s). I know a few people involved with security at Microsoft. I was curious whether any of them had a hand in this. But there's no indication of authorship at all. I suppose it was written by the collective. How's that for obscure?

Re:Good to see

[Phantom_newbie]

Its only when Microsoft gets pulled to shame about security problems, is when they actually start focusing on security, and putting it as a big priority. How lame is that? One can imagine about having to trust their products for security wise, and you always never know what comes around apart from more features and paying a premium prices for these sorts of products?

Its about time they actually did something about security.

No Problem

However, the document does open a window on how...

Sounds like somone needs to switch to Mozilla to avoid these annoying pop-ups! ;)

Re:No Problem

[jjhlk]

Or get an equally unobtrusive and effective plug-in for IE. Like this one.

Re:No Problem

[bhtooefr]

Or get one that's slightly more obtrusive, but adds a shitload of other USEFUL features (unlike the one that I saw that had a button for "Cumshots" - you're not going to get any work done with that one). Like this one. Of course, IE sucks. That's one reason! (Personally, I can't stand Mozilla - I tried forcing myself to use both Moz and Firebird, and found I could stand it less than I could stand IE - I use Opera, thank you very much)

Re:No Problem

[jjhlk]

Bah. Doesn't Opera still have a huge, bulky toolbar? And the free version still has ads in it? No thanks.

Re:No Problem

[26199]

Hmm, one out of two... Opera's toolbars are fully customizable, and of course Opera itself is skinnable.

But the free version does still have ads. Think of it as an opportunity to see if it's worth the $30 or whatever they charge these days... you might be surprised. (Or not).

Re:No Problem

[bhtooefr]

Fully customizable toolbar, thank you very much. Yes, the free version has ads in it, but now they give you the choice between Google text ads or the old graphical ads. Besides, if you like living on the wrong side of the law, serials for Opera are RATHER common.

Microsoft is insecure? I never saw that coming!

[Qweezle]

My goodness, you would have never thought that the maker of such *cough* secure operating systems such as the rock-solid Windows 95, the one the kiddies love, Windows ME("Mommy it's made just for ME!"), and the interface that only a 3 year old Teletubbies addict could navigate through, Microsoft Windows XP!.

Seriously, though. If Microsoft was a car, every time you went over a speed bump the radiator would dislodge.


hit me with a rimshot scottie!

*Bah-dum swish!*

Re:Microsoft is insecure? I never saw that coming!

[TheNetAvenger]

and the interface that only a 3 year old Teletubbies addict could navigate through, Microsoft Windows XP!

Oh get over it already. It doesn't take 20 scripts and ten screens of typing to make an OS powerful or functional. Some 'power users' actually like the idea of using a couple of clicks to print photos or play music with the OS UI model.

This reminds of DOS/UNIX people bashing all GUI interfaces in the 80's.

Are we really back to the days of using words like WIMP and telling everyone that GUI's are inherently bad, or are we just saying that ones that are easy to use are bad?

The open source world needs to learn a little about UI consistency and try to make things easy to use if any Open Source OS is ever going to be taken seriously on the desktop or in the home.

(And don't bring OSX into this as a champion of Open Source usability - it is not Open Source.)

PS *cough* Windows95 was NEVER designed to be a secure OS, it has NO inherent security, just like Mac System software did not as well. People forget it was a consumer OS and was designed in a time of the early internet where massive consumer connectivity via the internet was not something that was happening in the home markets.

Back then, there were things like CompuServe, AOL, and the new MSN, and at the time AOL had just recently added the ability to browse HTML, MSN was a folder based browsing service, and CompuServe was a text system with a new GUI that made it look pretty to interpret the text interface.

Most people had no clue about ISPs, especially when Win95 was being designed in 1993-1994.

If you want to talk about Microsoft's security track record, pick on something like NT, which in 1996 was far more stable and secure than even Linux of 1996. (With both being about the same age)

Oh, and by the way, have you ever heard of cars being recalled? Almost EVERY Model and Make of car has had at least one type of recall that has required dealer service. Don't believe it, go look up whatever you are driving, there will be a list for what has been a 'required' and a 'requested' recall for your car. - At least if Windows fails it doesn't kill you. (And if you are driving a Ford Truck or a Pinto, you REALLY might want to take a look at your vehicle recall list) :)

Re:Microsoft is insecure? I never saw that coming!

[Yenhsrav_Keviv]

Seriously, though. If Microsoft was a car, every time you went over a speed bump the radiator would dislodge.
Also you wouldnt be able to open the hood of said M$ car and place the radiator back in the correct spot, as their os is closed source I'd assume their cars would be too....

Re:Microsoft is insecure? I never saw that coming!

[Unregistered]

every time you went over a speed bump the radiator would dislodge.

fords do this too

Re:Microsoft is insecure? I never saw that coming!

Oh get over it already. It doesn't take 20 scripts and ten screens of typing to make an OS powerful or functional. Some 'power users' actually like the idea of using a couple of clicks to print photos or play music with the OS UI model.

Without dismissing the usefulness of a GUI I would argue that an OS that does not have a simple yet powerful framework for scripting and command based interface is not a powerful OS. Although GUIs can be useful, there are many tasks that are much more cumbersome with a GUI then with a command based interface. Compare the MS Windows graphical Find Files facility, with the UNIX find(1) command.

Anyway, personally I feel the GUI of Windows XP sucks. It sucks up more screen real estate for no apparent enhancement in usability over its predecessors. Of course a slack-jawed mouth-breather must think differently.


This reminds of DOS/UNIX people bashing all GUI interfaces in the 80's.

You show your ignorance by associating DOS and UNIX. The two have practically no historical connection and very little common philosophy. Where there is common ground, it is always a case of the later versions of DOS borrowing from UNIX (not the other way around).

Futhermore, GUI systems were developed on UNIX systems, including W and X, long before Mac OS and Windows.


Are we really back to the days of using words like WIMP and telling everyone that GUI's are inherently bad, or are we just saying that ones that are easy to use are bad?
You are overly sensitive. The use of the WIMP acronym dates back to Xerox and Apple. Its use was considered completely innocuous.


The open source world needs to learn a little about UI consistency and try to make things easy to use if any Open Source OS is ever going to be taken seriously on the desktop or in the home.

So What? I, and many others, have no vested interest in seeing Linux or *BSD succeed on the desktop (whatever that is). We use it because it works for us, nothing more. Anyway, Debian Linux has been used in my home (my non computer savvy family members) as what many would consider a Desktop operating system. As far as I'm concerned, Debian Linux is taken seriously on the desktop.

A little insecure are we?

Re:Microsoft is insecure? I never saw that coming!

[TheNetAvenger]

Buffer overruns have been well understood for years, are easy to automate tools to search source code for and any that leak through are easily tested for

If you think buffer overruns are a Microsoft OS only problem, you have no idea what you are talking about.

I've heard (and mine) are about the damned cartoonish color scheme and the total waste of screen space in each and every window that dosn't add any functionality to the GUI itself.


And the funny thing, you can turn on/off what level of extra functionality you want in the GUI, even the Colors. In fact you can skin it to look like a MAC if that is your bag (using a simple UI patch)

As for the added functionality, have you actually ever looked at the items in the sidebar of an open folder? There are a lot of quick features available for novices and even power users that like to be able to click "Play Selected Songs 'Albums' " and just have the songs play.

And if you are real power user that needs the screen space, just turn off the side bar, these features are also available from a right click even if the side bar is off.

Maybe Microsoft is foolish in assuming that users have displays greater than 640x480 and are using the extra screen space to add functionality, but then again, maybe it is time for some people to get a new monitor. 1024x768 is becoming a minimum for desktop real estate. Even my laptop is 1600x1200 and it a year and a half old.

Re:Microsoft is insecure? I never saw that coming!

[TheNetAvenger]

Win95 was just as navigable as XP with only a keyboard. They got some things right, at least

This is an example of UI Consistency that filters throughout the applications in Windows.

So even if the programmer is a fool, chances are their program inherits the basic concepts of using keyboard navigation from the Windows GUI model.

I don't think people that don't work with end-users realize how important consistency and a UI model that inherently defines this consistency are.

When working with new users, I also get SO tired of trying to explain the Delete and Backspace keys to Mac users. (Sometimes they do this, but in other programs they might not work, or do the opposite of what they did in a previous program.)

This is something you never have to deal with in Windows as well. The keys always work as expected, period.

I also dislike a lot of MS software, and a lot of things MS has done in the past, but that doesn't mean I think everything they have brought to the computing world is 'evil'.

Everything with MS doesn't have to be black and white. So you may see me defending some of the Microsoft technologies I think were good, or at least good ideas that the Open Source world should look at more closely, but you won't find me defending the first versions of Outlook or Bob. :)

Re:Microsoft is insecure? I never saw that coming!

[TheNetAvenger]

Without dismissing the usefulness of a GUI I would argue that an OS that does not have a simple yet powerful framework for scripting and command based interface is not a powerful OS. Although GUIs can be useful, there are many tasks that are much more cumbersome with a GUI then with a command based interface. Compare the MS Windows graphical Find Files facility, with the UNIX find(1) command.

Where have you been? Everything in Windows 2k, XP, and 2003 is fully scriptable via the command line, or even the GUI scripting engine. This was a major administrative revision in Win2k that was even taken further in XP.

There is virtually NOTHING that cannot be accesses, queried, or changed via administrative level scripting either via the command line scripting interface, or the GUI scripting technologies. (Check out MSDN, you will find what I am referring to.)

As I mentioned in another post, this is somehow a hidden secret to the non-Windows world.

Anyway, personally I feel the GUI of Windows XP sucks. It sucks up more screen real estate for no apparent enhancement in usability over its predecessors

Then turn off what you don't want, it is only a couple of mouse clicks to remove all the extra stuff. Besides, have you actually read the context level of assistance in the sidebars for example? There are features even 'power' users like, from printing photos, to starting music based on the albums selected. If that is not your bad, turn it off. Just like the colors, turn them off.

You show your ignorance by associating DOS and UNIX. The two have practically no historical connection and very little common philosophy. Where there is common ground, it is always a case of the later versions of DOS borrowing from UNIX (not the other way around).

Futhermore, GUI systems were developed on UNIX systems, including W and X, long before Mac OS and Windows.

I never said they had commonality, I just referenced that hard core UNIX zealots and MSDOS zealots (i.e. command line power users) continually dismissed all GUIs as silly, childlike and made up the WIMP acronym because most command line 'power users' thought a GUI was a waste of time for real productivity.

And I suggest that you do not lecture me on the start of W and X, I actually worked in the XWindow project at one time. I wasn't referring to this at all.

Maybe I should of just said 'command line OS' users instead of even mentioning MSDOS and UNIX so you wouldn't have been confused.

The use of the WIMP acronym dates back to Xerox and Apple. Its use was considered completely innocuous.

Yes it origins were playful, but it was a solid argument by 'command line' geeks and wannabes to dismiss GUIs, especially in the late 80's and early 90's. It became a strong acronym referencing that if you needed to or used a GUI you were not bright enough to use a command line interface. (Maybe you missed this era)

So What? I, and many others, have no vested interest in seeing Linux or *BSD succeed on the desktop (whatever that is). We use it because it works for us, nothing more. Anyway, Debian Linux has been used in my home (my non computer savvy family members) as what many would consider a Desktop operating system. As far as I'm concerned, Debian Linux is taken seriously on the desktop.

You still don't get it, and until you do and push your *nix variants to get it, they will never have the consistency model needed to bring usability and productivity to the levels already offered my MS and Apple. Not only will their OS GUIs be filled with inconsistency holes, but every application written for them will suffer the same fates.

I have no insecurity; I am trying to pry your eyes open a little bit. Does Plato's Cave allegory ring a bell?

Re:Microsoft is insecure? I never saw that coming!

[llefler]

If you think buffer overruns are a Microsoft OS only problem, you have no idea what you are talking about.

They aren't the only OS to have them, there are sloppy programmers everywhere. But two years ago Microsoft announced to the world that they were focusing on security. They supposedly stopped development on everything and put all of their programmers through new training to be security conscious. Yet a problem that a simple code review should have exposed still exists. And please keep in mind, Microsoft also maintains the compiler that builds all of their products. If they were really serious about security, they could have fixed it there.

We all need to make sure we aren't putting out code that is vulnerable to known exploits. And Microsoft shouldn't be preaching to the industry about security until they have at least addressed a common, well known flaw in their products.

Re:Microsoft is insecure? I never saw that coming!

[TheNetAvenger]

They aren't the only OS to have them, there are sloppy programmers everywhere. But two years ago Microsoft announced to the world that they were focusing on security. They supposedly stopped development on everything and put all of their programmers through new training to be security conscious. Yet a problem that a simple code review should have exposed still exists. And please keep in mind, Microsoft also maintains the compiler that builds all of their products. If they were really serious about security, they could have fixed it there.

We all need to make sure we aren't putting out code that is vulnerable to known exploits. And Microsoft shouldn't be preaching to the industry about security until they have at least addressed a common, well known flaw in their products.

Sure they could have changed the compiler, but moving a compiler like in Visual Studio for C++ to a compiler that 'manages' both buffer overflow and memory allocation would BREAK many applications because of the inherent nature of C++ programming model and compiler that is required.

Microsoft knew this, but also knew it couldn't be done at the time.

Microsoft has started moving to 'managed' code, even major parts of DirectX 9.0 have been moved to managed code, and Longhorn should be almost if not fully moved to managed code.

It isn't that Microsoft was ignorant of the circumstances of 'their' compiler, and what flaws this type of programming model left open, instead they realized it would take a major progressive moment away from non-managed code.

Microsoft's security revision two years ago was not to be an 'instant' fix, anyone that understands security realizes that such a prospect is ridiculous.

But they did identify where they needed to take their products to get away from security problems, and fix the current software in development at the time using the methodologies and technologies they had available at the time.

Windows 2003 Server, was a result of that movement, and had dramatic initial security changes from Win2k Server. However, even though it has a high rating of security, it is not, nor will ever be perfect. There is no such OS.

The fully 'managed' compilers that Longhorn will be built on are not even finalized, but they have been designed around the security shift that occurred 'two years' ago.

Re:Microsoft is insecure? I never saw that coming!

[timothy_m_smith]

Actually in WinXP SP2, I believe that most of the core OS components are being recompiled w/MS's Prefast, PostFix (or did I flip those around) options that should eliminate Buffer Overruns in those components.

Smart cards $50???

[terraformer]

from the deployment of 65,000 smart cards (let's see, at $50 a piece, that comes to....?)

Where does the $50 figure come from? I have two of them in my wallet (AE and Fleet Fusion) and two readers (useless on a mac) that retail for $29.99 a pop that I got for free being that I was an "early adopter". So where does that $50 really come from? And yes, I read the story, I just want to have a better handle on why someone supposedly "in the know" would trow out a figure like that for a quantity purchase of 65,000.

Re:Smart cards $50???

[rindeee]

$50 is cheap for some cards. Depending on the type of card you have there are a lot more things than simply a contact chip involved (multiple frequency radio power/emitters, blah blah blah etc.). $50 is probably a good average figure when one considers the range of cards on the market.

On a different but related subject, I think that three factor authentication will become the universal norm...a good thing me thinks. If anyone has seen the new military ID's, they are also CACs for login, med, etc. Very cool once they (EDS) gets things to speed up a bit.

Re:Smart cards $50???

I was thinking along similar lines, then I has a look at the linked document which states:

"OTG estimated that at a price range of approximately $55-75 per user, including labor for deployment and tool development as well as hardware such as cards and readers, Smart Cards were an inexpensive way to significantly strengthen corporate security."

So evidently $55-75 per user is a reasonable amount for them to pay for each user inclusive of hardware and software development.

To be honest it sounds a lot to roll that out to 65,000 users, but when you consider that this cost is tiny compared to what those guys get paid, the actual investment across the workforce is negligible. I mean if you can afford to pay 65,000 employees, you can afford to spend $55+ on each of them. And considering that a network instrusion might be the outcome of not doing it (See Valve for more information) it's incredibly cheap.

Re:Smart cards $50???

[nick_davison]

from the deployment of 65,000 smart cards (let's see, at $50 a piece, that comes to....?)

Either way, the implicit statement's invalid (that buying 65,000 x $n is wasteful).

Microsoft has, what, $40 billion in cash floating around? I work for a company that is lucky to have $40 million in cash floating around - does that make 65 smart cards wasteful? If your company has $4m, are 6.5 smart cards wasteful? If you have under a half a million in readily available assets, should you not use smart cards at all?

It's a simple scale thing. Microsoft is stupidly large when compared to most other companies. 65,000 of anything sounds like a big number, and it is. Still, relative to the size of their business, it's bordering on frugal, not wasteful.

See, I have so much Karma I can even occasionally support Microsoft on something. ;)

Re:Smart cards $50???

[Multics]

Wasn't that 65,535 cards? ;-)

and $50 * 65000 is around $3,250,000. but I'll guess a deployment like that costs around 10x the cost of the [?Java-based?] cards.

-- Multics

Re:Smart cards $50???

[swillden]

Where does the $50 figure come from?

I can't answer that, but I can tell you what smart cards cost.

The costs depend heavily on both volume and capabilities. At the low end, there are cards available in large volumes for substantially less than $1. At the high end, programmable cards with both contact and RF capability, lots of fancy printing, etc., plus some loaded and personalized applications can be up to $10, in large volumes, and over $50 each in developer quantities.

So, in general, $50 each for 65,000 cards is ludicrous.

However, in this case the figure may actually be accurate. The numbers I mention apply to "stock" cards, where the R&D investment is spread over hundreds of thousands, or even millions, of cards.

Microsoft, however, may very well have used Windows for Smart Cards cards, from their brief flirtation with the smart card business. These cards are based on a 32-bit processor from Atmel, which is itself significantly more expensive than many of the more common cores. In addition, the cards run a custom smart card operating system developed by Microsoft. They're high-end programmable cards that interpret (what else?) Visual Basic bytecodes (eeeeewww).

So the cost of these specialized, low-volume chips, plus the cost of developing a smart card operating system, building tools to construct, load and manage applications, implementing the card applications, implementing the workstation and server software, implementing the key management systems, issuance systems, etc... Yeah, $3.25M is not only believable, it's impossibly low.

I suspect that the $50 per card figure is accurate, but that it includes more than just the cost of the cards.

Re:Smart cards $50???

[computechnica]

If you think that is waistfull, Imagine how much it costs to buy smart cards for all Military and DOD employees + readers on all computers + extra servers and admins to implement the system. The military is now replacing all ID cards with smart cards.

Re:Smart cards $50???

[rfsayre]

Microsoft, however, may very well have used Windows for Smart Cards cards

Ha! That's like saying they use SourceSafe for source control.

Re:Smart cards $50???

[nosredna]

The tone of the /. article seemed to indicate not that it was a wasteful expenditure, but that it's significant to note that a sizable chunk of capitol was put into a single security measure. YMMV, but to me that speaks volumes about the amount of emphasis they put on corporate security. Is it a major dent in their accounts? No, not by any standards, but any expense that large that can get past the beancounters has to have some serious justification from somewhere.

obMicrosoftBashing: Now if they'd only put that kind of capitol into ensure that I don't have to apply a security patch more than once a fortnight...

Re:Smart cards $50???

[Alsee]

Going off-topic.

Swillden, we were talking a couple of days ago about TCPA. I was wondering if you saw the Slashdot story: Cisco Working to Block Viruses at the Router, and if you caught that Slashdot got the story wrong? These routers don't block viruses, what they really do is deny anyone a connection unless you are running TCPA. The "virus blocking" spin comes in that they could then use TCPA to attest that you are running specific anti-virus software. If you carefully read their press release you can see it really does use this Trusted Computing mechanism.

Of course they are spinning it for corporate use, to secure an internal network and to allow laptops and employee's home PC's to link in. But what happens when ordinary ISP's start installing them? Yeah yeah, they just do it to ensure everyone is running anti-virus software, groan. This is even worse than the scenario I expected, I figured more and more random websites would start requiring TCPA. With this, if you aren't running TCPA you could be denied internet access, period. Now THAT's scary!

-

World Domination?

[SuperBanana]

to MS's admission that 'there is a medium to high probability that within the next year, a successful attack will occur that could compromise the High Value and/or Highest Value data class.' According to the document, that includes things such as source code or human resources data.

What about World Domination plans? Are those Highest Value data class? Or Really Highest Value?

I have a friend who now works for Apple, and they had training on the various classifications of stuff - I forget what any of the acronyms were, but they were pretty oddly named. I fully expected a bunch of troopers dressed in titanium and perfectly polished clear plastic(hopefully Ti in the, uh, right places) to come storming through the door to erase my brain after being told of such things.

Oh crap- maybe they DID!

Re:World Domination?

[drinkypoo]

Actually, you hope it's the clear plastic in the right places; with all Apple's emphasis on look and feel, all their clone warriors will look like that iMac girl that we saw rendered and rerendered on every mac site and its sister.

Poor old closed-source paradigm

[FunWithHeadlines]

"MS's admission that 'there is a medium to high probability that within the next year, a successful attack will occur that could compromise the High Value and/or Highest Value data class.' According to the document, that includes things such as source code "

Poor Microsoft, still stuck in the old paradigm of closed-source software. Oh sure, it's been a profitable paradigm for them, but those days will gradually erode as the trend toward Free and Open Source continues over the years ahead. Meanwhile Microsoft is stuck spending mega-bucks and lots of time trying to protect themselves from having anyone actually...gasp...see the source code. Horrors!

ROFL!

Re:Poor old closed-source paradigm

[frogsarefriendly]

Well, all the dangers aren't in looking at the source code. If you have access you could *change* things, like backdoor every Windows installation. And besides, with the GNU and Debian servers getting rooted (and probably other high profile linux projects i forgot), the security record isn't great on either side.

Re:Poor old closed-source paradigm

[/dev/trash]

Fuck that, keep the data like my SSn and pay scale secret.

Sounds about right

[SargeZT]

Microsoft hit the nail on the head this time! It's security is as strong as white paper.

Twisting a quote...

[psifishdot]

[A] successful attack will occur that could compromise the High Value and/or Highest Value data class.

Hey, even without all the security holes this would happen! Let me re-define some terms to my liking.
A successful attack: Linux on more machines.
High Value data class: Microsoft's stock price.
Highest Value data class: Bill's bank account.

See, if you twist a quote out of context, it can mean whatever you want!

It has to be said...

>MS's admission that 'there is a medium to high probability that within the next year,
>a successful attack will occur that could compromise the High Value and/or Highest Value data class.'
>According to the document, that includes things such as source code or human resources data."

Microsoft's source code has "highest value"?

Re:It has to be said...

Sorta the same way that the Diebold machine's code does.

Uh, they ALREADY have had a compromise in security

[Svartalf]

Didn't those Russian hackers get ahold of some of their "highest" value data, namely the entire source tree for one of their operating system versions?

No, no, no...

[Svartalf]

They still missed the mark...

It's security is as strong as white tissue paper.

uhm

[SweetAndSourJesus]

yes.

Given that their entire business model relies on their source being closed, I'd say it's pretty damned important that they keep it that way.

Re:uhm

[larry+bagina]

Keep in mind they do have some code available as "Shared Source", and they've also made the source code available to some companies and universities (I had access to most of the NT 4 source code when I was in school) [and governments now?]

Of course, it would be bad for business if someone without an NDA got ahold of the complete longhorn source code.

Re:uhm

[tftp]

Of course, it would be bad for business if someone without an NDA got ahold of the complete longhorn source code.

Not necessarily. It would be extremely hard to compile, and why bother if there are millions of perfectly compiled copies already? If you want only to look at it to find exploitables, you don't even need to try that hard; most Windows boxes have plenty of well known and unpatched vulnerabilities. Finally, if you are some sort of uber-spy and have to break into a very specific Windows box, you either will get access to the source, or will just walk into the building pretending to be a plumber ;-)

If you want to feel how Longhorn code would look like, grab an old source tree of Netscape 4.x and enjoy whatever little sanity you will have left after that :-)

ROFLMAO!

[Svartalf]

I went a similar direction just a moment ago in reply to someone, but this is sooo much better.

Keep laughing, moron.

[duffbeer703]

Perhaps you forgot about the compromise of kernel development servers and the Debian website?

Microsoft's concerns regarding source code are likely less about preventing someone from SEEING it (you can pay them money to look at code) and more about modifiying it.

Open Source is a wonderful thing -- but it isn't a silver bullet. Sophisticated programmers with access to any source repository, open or closed can create all sorts of havoc.

Re:Keep laughing, moron.

[penguin7of9]

Perhaps you forgot about the compromise of kernel development servers and the Debian website?

Yes, and I bet the Debian developers were shaking in their boots that someone was going to steal the Debian source code, right?

Microsoft's concerns regarding source code are likely less about preventing someone from SEEING it (you can pay them money to look at code) and more about modifiying it.

Microsoft has said again and again that they consider the closed source nature of their code itself highly valuable. Whether that's a marketing gimmick or actually the truth is another question, but it seems to be working. And, no, you can't get all of Microsoft's code.

If they were actually concerned about an intruder modifying the code, it would only be a further admission that their code maintenance practices leave a lot to be desired. But, then, we suspected that already.

Open Source is a wonderful thing -- but it isn't a silver bullet.

No, it's not a silver bullet, but at least it's a bullet. Microsoft is shooting with blanks.

Re:Keep laughing, moron.

[FunWithHeadlines]

I'm no moron; you misunderstood my message. I wasn't talking about security exploits. I was merely talking about how when you choose the closed-source paradigm, you are forced to spend a lot of time and money to keep people away from your source code. A problem that is non-existant in the open source model. That's all.

I wasn't saying open source is a silver bullet, so that part of your message was off-topic as well. All I was saying is that there is one inherent advantage to the open source model, and here was a stark example of this. How my message got so misunderstood by so many people responding is a mystery. I guess what I said brought out people's biases into play.

"Highest value" stuff isn't

[Animats]

The real risk is if Microsoft loses a signing key, like the one that allows Active-X controls to be trusted implicitly by Internet Explorer.

Of course, that's a risk to Microsoft's customers, so that may not be considered as critical.

Re:"Highest value" stuff isn't

[spectral]

uhm, is there such a key? Considering I have to agree to get the windows update v4 control on my system..

Re:"Highest value" stuff isn't

[Anonnymous+Coward]

If there is, it's probably reserved for law enforcement or NSA backdoors. Or he could have meant by "trusted implicitly by IE" to mean so after the user has clicked the checkbox next to "Always trust content from Microsoft Corporation."

Re:"Highest value" stuff isn't

[Waffle+Iron]

uhm, is there such a key? Considering I have to agree to get the windows update v4 control on my system.

... And what do 99% of the users base their decision on when they click "yes" to do the update? It's the fact that the dialog box says it verified that the control has been signed with Microsoft's secret key.

However, I'd be surprised if they would be dumb enough to keep such a key on any system that is physically attached to any network.

Re:"Highest value" stuff isn't

[Stile+65]

That happened once. Someone got their hands on a copy of one of Microsoft's private keys for code signing.

They very quickly put out a Critical Update that added the key to IE's certificate revocation list, IIRC. I remember installing that update. :)

Re:"Highest value" stuff isn't

[VCAGuy]

Actually, the PC that key is on would have to have an Internet connection. Otherwise, it has no way of accessing the VeriSign TimeStamp server (timestamp.verisign.com), which verifies the date and time of signing (and prevents the signature from expiring when the certificate does).

Re:"Highest value" stuff isn't

[Anonynnous+Coward]

I would be very surprised if Microsoft hasn't cooperated with law enforcement. While they may not have strictly signed law enforcement code, they may have signed code of their own to make things easier in the course of warrants. Perhaps in 100 years, our grandchildren will find out that "Magic Lantern" was a feature of the OS or a component of a commonly distributed ActiveX control.

Or maybe I need to adjust my tinfoil hat; the government is taking to me through my fillings again :).

Re:"Highest value" stuff isn't

[Stile+65]

Hrm... yeah, I think you're right. Same sort of idea though - MS issued a new CRL entry using Windows Update.

so now they're finally admitting it?

[the_mighty_$]

within the next year, a successful attack will
occur that could compromise the High Value
and/or Highest Value data class.

since when did we think microsoft was secure any
ways? is it news that people can get into
microsoft's systems?

all i say is:
a computer without a microsoft operating system
is like a dog without bricks tied to its
head.

The Emperor's New Clothes, by George Orwell

[rice_burners_suck]

Doublespeak. That's what this document is. To quote George Orwell:

Here is a well-known verse from Ecclesiastes:

"I returned and saw under the sun, that the race is not to the swift, nor the battle to the strong, neither yet bread to the wise, not yet riches to men of understanding, not yet favour to men of skill; but time and chance happeneth to them all."

Here it is in modern English:

"Objective considerations of contemporary phenomena compels the conclusion that success or failure in competitive activities exhibits no tendency to be commensurate with innate capacity, but that a considerable element of the unpredictable must invariably be taken into account."

All you need to do is add, "By leveraging innovative Microsoft technologies, content providers streamline compelling enterprise solutions," and you have something very similar to this security whitepaper.

To make a long story short, this document is an "Emperor's New Clothes"-style piece of PHB-speak/business-speak/market-speak/PR-speak that nobody really understands, but every business IT strategist that reads it will pretend that its meaning is very profound, like the emperor pretends to see his nonexistant clothes, to avoid appearing stupid to colleagues.

Microsoft. Where do you want to go today?

Horrors indeed.

[Fruny]

Meanwhile Microsoft is stuck spending mega-bucks and lots of time trying to protect themselves from having anyone actually...gasp...see the source code. Horrors!

Have you considered that the masses should actually be protected from Microsoft's source code ? You wouldn't want your neighbours to become stark raving lunatics after having been confronted with the lovecraftian abomination that is Hungarian Notation, would you ?

Trust me my friend, there exist Code Man Was Not Mean to Read. Microsoft is dutifully protecting reality as we know it. We should be thankful.

What I want to know

[boatboy]

How can they afford the all the Licenses?

This is the same company

[DAldredge]

This is the same company that said, under oath, that reveling the windows source code would harm the National Security of the United States, then they gave the source code to China.

Isn't that perjury?

Re:This is the same company

This is the same company that said, under oath, that reveling the windows source code would harm the National Security of the United States, then they gave the source code to China.

Isn't that perjury?

Or treason?

Re:This is the same company

[AJWM]

Isn't that perjury?

Well, either that or treason.

(Except that the legal standard for treason is quite a bit higher than that in this country, otherwise some folks from Loral-Hughes would probably be doing jail time now over certain launcher technologies. Hmm, maybe there's something in the PATRIOT Act we can throw at Microsoft?)

Re:This is the same company

[fredrikj]

Isn't that perjury?

No, terrorism.

Re:This is the same company

[bobthemuse]

This is the same company that said, under oath, that reveling the windows source code would harm the National Security of the United States, then they gave the source code to China. Isn't that perjury?

Nah, let's call it treason instead.

Re:This is the same company

[anti-tech]

Or both. I wrote my Senators and Representatives, who responded with a collective resounding "We will look into this", but have never heard more. Time to photocopy their response (suprisingly, it wasn't a form letter) and write them again asking if they found anything in their investigation.

Uh, riiight...

[Svartalf]

I do believe the issue isn't just code compromise (i.e. putting back doors in...), but in the case of the closed source, finding exploits and backdoors. I need only point to the rationale that MS gave for not disclosing pieces of their source code- it would endanger National Security. Now, either that was a dodge, in which case, Allchin should be doing time in at least Club Fed for lying to a Judge, or it's the God's truth. If it's the God's truth, being in the open is going to reveal most of those things and get them zoomed right off the bat- if it's closed, only the people working on it know about the code (well, and anyone that manages to see it without them looking...) so you don't have as many people looking over the code in question so you end up with things like MS Blaster which caused a packet storm from Hell on the Internet.

Re:Uh, riiight...

[topham]

MS claimed they couldn't release the source to windows becaause of National Security; then promptly started a program where a country such as China could buy access to it.

Finding bufffer overflows has little to do with scanning through source code, it has more to do with feeding bad data and watching if a program crashes, coredumps or otherwise fails.

Re:Uh, they ALREADY have had a compromise in secur

[pilot1]

What Russian hackers? Was there an article I missed?

Awww man...

[Qzukk]

Now the black hatters are going to have to call off their plans for the year so they can prove Microsoft's "high probability" wrong.

That, or switch to trying to take over their Mr. Coffee instead of their source code.

Real discussion

[ambar1073]

Boy, is there any Microsoft-related posting on /. where the comments aren't only modded as "funny"? And you call some of these off-repeated insults funny?

I think the whole world would take the Linux vs. Windows religion more seriously (and less religiously) if there was some real debate, not the obstandard trolling-bordering-on-mildly-funny.

Obtroll: You would think the world's biggest DOJ-sanctioned illegal monopoly would have the money to better secure their own network. Maybe Oracle or Sun or IBM would like to describe how their networks are far-better protected, given that they're secured by industry-leading, open-source Linux that has never had a security bug of any kind, and simply can't be hacked. That would be a far better source of information than this "crap" put out by Bill Gates' mindless minions in Redmond.

Re:Real discussion

Thank you! I too tire of the 'ms sucks' posts.

I work with MS once and awhile to get a bug fixed. Like ANY major software out there they have bugs just like the rest of us. Worked with a nice gentleman yesterday. He traced through their code for me. I have done if I had the code. But its their code, and I respect that. They were looking into why an API I use in my code changed after a 'security' hotfix. After an hour of tracing he found that it was wrong. I knew that, but thats ok too, he had to prove it to himself. After all that he told me 'if its a security hotfix it will not be fixed your lucky the code ever worked the way you were using it'. He was right, I knew what they had done and its a good thing.

The moral here? They are deadly serious about security. They will not back out a fix just 'cause'. They are fixing the holes that are there.

I am convinced they are enduring some of the most punishing testing on the face of the planet. To use a term from open source, 'many eyes make all bugs shallow'. They are on a much larger number of desktops then any other OS out there.

I have never found them 'arrogant', 'loud mouthed', or 'bullying'. Like I find on slashdot sometimes about open source. I have found them to bend over backwards to fix ANY bug they have. They do not pounce on it. But they DO fix it. They do not 'hack' it into the code. They test it and make sure its good. If you act like an ass to them they respond in kind. They have THOUSANDS of bugs to fix and they have prioritized them. They only have so many 'core' developers and they are trying to write new stuff and retrofit old stuff.

They have a serious challange. The code is basicly done. They now have to go through it ALL and fix things that were never a priority for them. I would cringe at someone coming up to me and saying my code has the same serious problem in every module, and every function. That is basicly the problem MS has. And making the code 'open source' would make the problem better in some ways, but much worse in others. Also would you want them to rush out a fix for something? Or test it and make sure it works? Also if you want top shelf support out of MS you need to talk in the language of the corporate world. You need money to wave at them. Otherwise get in line with the thousands of other people.

Also do not be fooled by that linux has no 'serious' bugs. They exist, can you say 'root kit'. If you belive that linux is secure by default your living in a dream world neo.

I look at the two systems as tools for me to do things. I have both types of boxs. I use both for many things all the time.

Re:Somebody hack into Windows Source Code?

[DigiShaman]

I hope the source code does NOT get released. If you thought SCO was bad, imagine MS going after anyone sneeking code into an open sourced program. Also, MS is an American company. Buy opening up the code to black hats and viri coders, your doing America a disservice through the loss of billions of dollars. And eventually, that will hit my pocket...

A new low, even for Slashdot

[duffbeer703]

Did any of the idiots commenting on this story with sophmoric (hehe, M$ security sUx045!) even start to read the Whitepaper?

If they did, they would probaly notice that the paper describes a methodology of security management, including dealing with operating system & application security issues.

Information security is more reliant on process than using x product or y product. If you have established methods to classify what needs protection, identify vulnerabilities & intrusions and rectify the situation, you have a secure IT shop.

All about the cycles eh?

[BWJones]

.....and about five, nearly identical 'cycle of life' type diagrams showing how one risk management strategy leads to the next and so on, in a never-ending process.

Hrmmmm. Kinda like their upgrade cycles. :-)

Whoa, all joking aside...

[zelurxunil]

Ok without putting in some microsoft bashing statement I have to say Im horrified at the idea that Microsoft admits in their own white-paper that they might be compromised on the highest level. Screw source code, what about automatic "updates" (They have been in the past few months especially promoting their automatic-update software, and it is expected within the next few years to be a binding part of their EULA, but even now I know for a fact most users will chose to let windows download selected updates automatically)? The same company millions are trusting to push updates unknown to them to their computer is admitting they will probably be compormised within the next year??? Does this not shock anyone? It would take next to nothing with access to their automatic update ability to wreck havoc on millions of users, imagine delete IE, and then their update system (after uploading the update itself) and 99.99% of all the users would be toast! this is serious stuff, we're talking millions of users potential take over at the hands of a script kiddie....and its glossed over in some security white paper? You have to be kidding me, where is the whole Homeland Security Department? NSA? DoD? who always seem to want to stick their noses in everything else done in the IT world? A company convicted of monopolizing the OS business now without skipping a beat making statements in a security white paper such as "There is a medium to high probability that within the next year, a successful attack will occur that could compromise the High Value and/or Highest Value data class." and "robability: High. Even with current controls, attacks have occurred and will likely happen again."

Re:Whoa, all joking aside...

[duffbeer703]

The whitepaper simply presents the dirty little secret that highly technical IT people have always known -- there is no such thing as a totally "secure" system.

Sophisticated hackers identify exploits before they get mentioned on bugtraq and before a fix or patch is even looked at. Those people are a big threat to a company like Microsoft.

Instead of being horrified at Microsoft, you should be pleased. They are taking a remarkably straightforward tack by highlighting the industry's dirty little secret. That is an about face from typical Microsoft FUD.

Re:Whoa, all joking aside...

[zelurxunil]

I wouldn't be horrified if a company putting out a competing OS admitted that they are working towards a more secure network due to a poor level of security at the moment. What horrifies me is a monopoly, seeking to gain the power to push updates to millions of computers instantly, simply stating that their current level of risk is medium to high. How is that any different from NORAD saying there is a Medium to High level of risk of Islamic Extremists infiltrating their facilities gaining access to the countries nucleur arsenal?

Before I go drinking

[teamhasnoi]

Wouldn't a leak of Windows source be a great excuse for MS to sue everyone who codes, ala SCO?

I know when the BeOS source was leaked, every smart programmer stayed away from it - else be blamed for stealing 'IP'.

Consipiracy Theory #234,345,234: MS deliberately leaks the source to some EOLed code such as Win 95 or NT, and sues anyone who is making inroads with alternate OSes or applications, such as Linux, Mozilla, Open Office etc.

What fun! No doubt, there will be no need to show their code for National Security reasons. We'll just need to trust them.

Easy

[Mistlefoot]

It's easy for them to afford 65,000 licences.

The sell them to themselves as a loss. Therefore using them as a tax deduction twice - once for the loss and once for the cost......and if the loss is great enough they might even make a profit!

Re:Easy

[windex82]

uhm, its a business expense?

I'm just guessing, I'm not tax accountant, but was in the process of starting up a new business, and after talking to my tax person, left with the impression that any money you spend on anything to do with the business can be deducted.

Easy math example:
If in a month you used your car for 70% business related activity and paid 10$ for an oil change, you would be able to deduct 7$.

Buy 30 windows licenses at 100$ for 100% business related activity, and deduct $3,000.

Also when you deduct these things, IIRC, your really doing this: Revenue - Deductions = Taxable amount.

More simple math using above example:
If you pull in 10,000$ normally you would be taxed this amount, but once adding your deductions to this, 10,000 - 3,000 = 7000 taxable.

But I didn't pay too much attention in accounting and we didn't touch too much on taxes, but this is how the preparer described it to me.

Re:Easy

[Xenographic]

The sell them to themselves as a loss. Therefore using them as a tax deduction twice - once for the loss and once for the cost......and if the loss is great enough they might even make a profit!
-----

Let me guess: you were an accountant/financial analyst during the .com boom? :]

No Patch Policy

[VirtuaKnight]

"Microsoft last week published a document on its Web site that describes how the company manages security on its own 300,000 node corporate network." Does this include the policy, "Do NOT patch MySQL servers, so we can get infected by the Blaster Worm again."

Re:No Patch Policy

[VirtuaKnight]

Er... SQL servers :x mv /dev/foot /dev/mouth

Re:No Patch Policy

[Stile+65]

Not only that, but it was Slammer that infected them. Blaster used an RPC exploit. :)

more of the same, over and over and over

[kuzb]

It amazes me that most of you really can't be constructive at all any time 'security' and 'microsoft' are uttered together.

What's more, the moderators encourage this lack of constructive talk by modding up things purely because they decry microsoft. How many days in a row are we going to hear the same old tired MS jokes?

Just because you run linux/bsd doesn't mean you're safe. Hell, by being connected to the internet at all you're at risk. Anyone with enough time, education and willingness to exploit you is going to eventually find a way in.

Anyone running any operating system can be attacked and comprimized. Security is only as good as the people who maintain the machines. You people sometimes seem to forget that despite MS's faults, they do employ some of the best and brightest in the world. I imagine some of you may not believe that, but I do.

Personally, I think that if linux were a home desktop platform that had enough popularity to be a significant enough player in that market you'd be seeing a whole lot more hackers focusing specificly on linux. Realisticly, what is the point of trying to exploit linux? Why exploit the little guy when you can go after the big fish? Especially when the majority of people running the big fish's stuff couldn't secure _any_ box to begin with, regardless of what it was running.

Same thing with the mac. I love it when macos users say "I never get viruses/worms!" well, who would write a virus/worm for such a miniscule percentage of computer users? The whole point of a virus/worm is to propigate, and if you don't have the userbase for it to propigate well, what's the point?

I apologise if I've offended people here, but I really felt this needed to be said. This persistant catscrap between linux and windows users doesn't help anything, or anyone.

Linux/BSD ARE good operating system
MacOS/OSX ARE good operating systems
Windows IS a good operating system

and they ALL have faults.

Re:more of the same, over and over and over

I also am really tired of all this ms-hate crap.
People should act more seriously.

Now,
There might be no (very few) viruses or worms for linux/unix, but it is also reasonably endangered to security exploits. Nobody wants to hack a linux desktop machine, but it is very interesting to break into the banks' unix servers.

So, there's no way of saying that linux isn't affected by hackers.

Re:more of the same, over and over and over

[Lehk228]

What about menuet? it can run a tiny server and was coded in pure assembly, I wouldn't be suprised if it's code was tight enough to resist any network attack due to the very small number of network services (shoutcast server, web server, and i think an FTP server) I'm not a security expert but i would imagine a product like that could be made air tight, perhapse boxes running customizable Assembly coded OS's will be the future of network security for at least the highest priority systems,

Re:more of the same, over and over and over

[mao+che+minh]

We are always scarcastic when it comes to Microsoft's relationship with security because of the many unpaid hours of overtime it has cost us.

I, like many here I would imagine, have to manage a lot of computers. In any common enterprise environment systems tend to range from old Windows 95 systems whom's only purpose is to drive some old piece of software with a very specific function, to Windows 98 and 2000 workstations, to Macintosh boxes for the marketing folk, to Linux servers running enterprise anti-virus solutions, to Netware servers running ZENworks, to 16 processor HP-UX beasts for databases, to OS/2 servers that run physical security systems (like magnetic card readers that grant access to the NOC for certain people/staff).

Of all of these operating systems that we people manage, a disturbing trend of insecurity has always plagued the Windows operating system(s) and the applications that Microsoft pushes for it. For years. Email clients, mail servers, web servers, core OS compenents, or just plain bad OS design that leads to the easy proliferation of things like viruses and worms. ANd worst of all: there is no escape from it. Everyone uses it, the management only wants stuff that is "supported" and/or "warrantied", and let's face it, it gives us job security.

So, when we relax, unwind, and gripe, we tend to end up taking a stab at the shitty software that has absorbed so many of our hours - time that could have been better spent having fun, or with our families, or responding to morons on web forums. You know.

Re:more of the same, over and over and over

[kuzb]

I appreciate some of your points, but I'm afraid I just can't take the bait. You know :)

Re:more of the same, over and over and over

[Tony-A]

It amazes me that most of you really can't be constructive at all any time 'security' and 'microsoft' are uttered together.

A minor password incident at Debian and it's front-page news.
Similar incidents at Microsoft, we'll never hear about it.

Security is only as good as the people who maintain the machines.
There are many factors affecting security. The people maintaining them are one factor, and probably far from being the most important factor. Making a system inherently insecure and then blaming the people maintaing them does not make for credible security.

Re:more of the same, over and over and over

Linux/BSD ARE good operating system
MacOS/OSX ARE good operating systems
Windows IS a good operating system

and they ALL have faults.

Bullshit! Windows is NOT a good operating system. And, more importantly, Windows software written by Microsoft and forced by Microsoft to be run with Windows OS is NOT good software! they are bug-ridden, security-hole-laden pieces of crap!

I have made my Windows systems secure here. BUT it took a Linux firewall, non-Microsoft replacements for IE and Outlook, non-Microsoft anti-virus tools and what amounts to a total jailing of Windows systems with only a few barred windows looking out onto the Internet. I sailed through the last few virus problems without a whimper from my lazily patched Windows systems.

My point is; I can make Windows secure, not only from the discovered and patched virus exploits, but from all future, as yet undiscovered, exploits as well. But it takes work and it takes non-MS resources to do it. I have to ask why? And the answer comes back, unequivocally, because Microsoft is not doing their job very well.

I don't have to defend the above statements; history speaks quite eloquently for me.

Yes, you missed an article...

[Svartalf]

A quick Google search ("russian hackers microsoft") comes up with:

http://www.newsmax.com/articles/?a=2000/10/27/1800 52.txt

There's tons of others. It made a big splash on the tech news circles- and then was apparently promptly forgotten for some unknown reason. Strictly speaking, MS has already had one of their critical breaches they talk about and they couldn't have instituted a scheme like they're talking about in the timeframe from when this was discovered to now (i.e. It pretty much had to be in place or largely so because of the scope and scale of the effort in question...).

maximum security

[sewagemaster]

you want maximum security on your windows box?
go to download the software and uninstall outlook express and internet explorer.

Re:maximum security

[nosredna]

Going to the Windows update server (windowsupdate.microsoft.com) using Mozilla comes up with the following page:

" Thank you for your interest in Windows Update

Windows Update is the online extension of Windows that helps you get the most out of your computer.

You need to be running a version of Internet Explorer 5 or higher in order to use Windows Update.

Download the latest version of Internet Explorer

Once Internet Explorer is installed, you can go to the Windows Update site by typing http://windowsupdate.microsoft.com into the address bar of Internet Explorer.

If you prefer to use a different Web browser, updates to Windows may be downloaded from the Microsoft Download Center."



They do graciously provide a link at the bottom of that page to download the updates manually with another browser. Unfortunately, when looking through the updates, you can only sort by category (drivers, security updates, etc) or by product (WinXP, Office 2000, etc).

Searching by Windows (Security and Updates) gives a list of 50 items, including several cumulative security patches for Win2000 (as opposed to the logical step of only offering the latest one, or possibly the latest two)

Searching by Windows XP gives 366 results, sortable by date, popularity, and title. Sorting by date, finding actual security updates will generally take you to at least the second page. Popularity sort will give you the updates to fix Blaster and other high profile virii/worms quickly, but quickly (within the first ten results) hits floppy boot disks for installation (three of these) and MSN Messenger. Furthermore, with a few exceptions, the security updates refer directly to Microsoft Security Bulletin ####### (without a link to said bulletin), rather than giving information on what service is being patched in the description. Title search uses standard alphabetic sorting, and there is no 'jump to page n' option. Since all of the security patches are listed under 's' for security, this makes it extremely inefficient to find them.

Maybe I'm just lazy, but I find it much easier to deal with IE and be able to check for new security patches in Windows Update than to have to go through every single thing they've come out with in the last week to see if anything needs to be patched.

Reading Comprehension Problem

[Punchinello]

The quote from the article (There is a medium to high probability that within the next year, a successful attack will occur that could compromise the High Value and/or Highest Value data class) is being taken out of context. The white paper was giving an example of how an assessment is made to justifiy the "IPsec project." It seems pretty clear to me that if MS published this article saying they were vulnerable in this area that the project was approved and completed, thus eliminating the threat risk in this area. RTF White Paper.

Re:Reading Comprehension Problem

[zelurxunil]

You certainly have a valid point, but still would we accept "we are making improvements" on security for our nuclear arsenal?

Re:Reading Comprehension Problem

[bonch]

It's the same statement that would be made for any operating system.

Re:Reading Comprehension Problem

[zelurxunil]

You could say the same for any operating system that monopolizes the market and is pushing for the ability to push updates to their users (unbeknownst to them). Which narrows it down pretty thin.

Smart cards do not cost $50

[Call+Me+Black+Cloud]

from the deployment of 65,000 smart cards (let's see, at $50 a piece, that comes to....?)

Smart cards are much cheaper than $50 each. For development work I get them (for this device) for under $10 each in quantities of 10 and that's expensive. In large quantities they are available for a few dollars each. I'm sure MS buys them in quantities to ensure some sort of discount is applied.

300k node?

[Billly+Gates]

That seems a bit excessive. Especially since only 50k workers work there since the last time I looked.

Not to sound old fashioned, but I wonder if using several large systems and dumb terminals would help lower costs and problems?

This was the standard motto in the early 80's when pc's were considered toys.

But 300k nodes sounds like an administrative nightmare.

I wonder if we would all be using network computers and thin clients now if MS never existed. They put all sorts of fud and raised the price of client licenses of terminal servers to make it look like a pc, in every desk was cheaper then a windows terminal.

Re:300k node?

[vample]

No, its not really excessive. When I worked there, I usually had 4 machines for myself, in my office, and I did development work. Oh, and I had a laptop as well. Testers often used, many, many more machines.

Then add the build machines, servers, a laptop for many people, machines for temp/consultants, people VPN'ing in from home, and it easily makes 300k.

Re:300k node?

[pe1chl]

Funny, I do all those tasks (including running two Windows virtual machines) on a single Linux system.

Maybe that is why they bought virtualpc?

Re:300k node?

[vample]

Wow, you run dozens, maybe hundreds of different hardware configurations on a single Linux system for testing purposes? Doesnt seem a good way to test your app compatability.

And believe it or not, but some people at Microsoft actually run Linux too. This smart one is even in the CREDITS file.

Re:300k node?

[pe1chl]

Not dozens, but some different configurations, yes.

I am not claiming it is a requirement to run Linux for that, I use VMware (which runs on Windows as well) and Microsoft have acquired a different product that provides virtual machines.

It really works well when testing in different environments, certainly for application compatability.
For driver compatability you may need some more iron.

Re:300k node?

[IM6100]

Many of us don't have the constraint that Mom won't let us have more than one computer in our 'room.'

The notion of crowding all my operating systems onto one box is ludicrous. I haven't dual booted in probably three or four years.

The 'culture' has tipped the other way. Twenty years ago dozens and dozens of people crowded onto a single time-sharing system. That was the heyday of multi-user UNIX systems, and dumb terminals.

These days, single power users have whole subnets of machines all to themselves. Connected by fast ethernet, with KVM switches, sometimes by both.

Some people at Microsoft are smart.

And don't you forget that. Microsoft DOES have people with considerable technical skill and knowledge. I'm guessing that the probability of a security breach was calculated by the people who know what they're doing.

The problem is that you don't get to be the biggest software company in the world without selling products. (And Microsoft is arguably the most important software company - although I think overall Linux is more important in it's potential as an equalizer - there is no one single Linux company).

Selling products implies marketing. This is where it goes wrong. The second that product development is driven by marketing telling customers what features they want - things explode. I mean, really - half the crap in Windows and Office was never wanted by customers in the first place.

I'd still prefer to be using BeOS (I loved 5.0, but lack of support for new hardware meant I had to move on), so Windows 2000 is a pretty good compromise for my needs.

Not quite

[Synn]

Except that you forgot to mention that the "compromise" of the kernel never happened and the Debian compromise was a password issue and again nothing serious happened.

The difference between open source and closed source is that due to open source being so open the developers on it tend to trust no one. Closed source projects tend to be a little more lax because the closed nature of the project makes it easy to get sloppy.

Re:Not quite

[duffbeer703]

Except that you forgot to mention that the "compromise" of the kernel never happened and the Debian compromise was a password issue and again nothing serious happened.

Sounds like how a drunk driver rationalizes his actions.

The fact that "nothing serious" happened is luck.

Re:Not quite

[Avihson]

Nothing serious happened because there were eyes looking at the code.

Luck plays out in closed source, when the consumer never finds out about the holes until the " new version fix" is ready for shipping.

Microsoft is its (only) good customer

[Saint+Stephen]

Nobody uses Microsoft technology like Microsoft. Unfortuately, nobody uses Microsoft technology like Microsoft.

The reason? Only Microsoft has the source code and "really understands" Windows. Everybody elses corporate networks running Windows are dogshit -- but Microsoft really does just use the crap the way they tell you to use it, and it works wonderfully. Unfortunately, they are the *only* example of such a user on the planet!

Re:Microsoft is its (only) good customer

[The+Bungi]

Everybody elses corporate networks running Windows are dogshit

Really now. When was the last time you saw my network that you can make such a sweeping, generalizing statement?

Re:Microsoft is its (only) good customer

[Saint+Stephen]

I worked at Microsoft for 3 years and as a developer consultant have had accounts at several Fortune 500 companies. Sure, networks *work*. But, trust me, there is a WORLD of difference between a typical gigantic corporate network and Microsoft's corpnet.

I can't explain it to you if you've never experienced it. You are the proverbial man chained in the cave only seeing shadows cast on the wall.

Get a blue badge at Microsoft and then everything I'm saying will become perfectly clear to you

Re:Microsoft is its (only) good customer

[The+Bungi]

You are the proverbial man chained in the cave only seeing shadows cast on the wall.

That's nice, but first off, I have no way to verify that you ever worked at MSFT. Or for that matter, that you've played chess with the Dalai Lama. Second, I've had SIE (maybe you'll know what that is) do evaluations on existing systems and come off impressed, actually interested in seeing some of the stuff we'd done with some of their own technologies.

That *some* companies are handicapped by the lack of skilled employees and have substandard setups as a result is not something I'd argue. But to claim that Microsoft has some sort of occult knowledge about their own systems that nobody else has access to is ridiculous. If I have the time, money and resources, I can do as well, if not better, than them. And no, I don't need to "see the code" for that.

licensing costs

[b17bmbr]

damn, 300,000 desktops, 4200 servers. holy crap, they hvae to pay a ton in license fees. i wonder if they have looked to open source alternatives. well, maybe they bought software assurance.

Windows update kacked

[psgalbraith]

During the original Code Red incident, for a short time, the Windows Update webpage was showing "Hacked by Chinese Worm".

(There was concrete evidence of this but unfortunately I don't have it.)

Here it is.

Re:Windows update kacked

[IM6100]

How is a bitmap that anybody could cobble up with a screen capture and the built in Paint program 'concrete evidence'???

Re:Windows update kacked

[psgalbraith]

Well, it's not an indivisual's web site. It's a company web site. I'd be careful with the truth in that case.

Note that it doesn't mean that patches were compromised, only that the front end web site was.
Much the same way as Debian's site being comprised but the archive unaffected.

Well at least Microsoft admits the possiblity...

[inteller]

...of a High Value attack being reality instead of taking the pompous approach that your software is hack-proof. I can find 10 ignorant Linux users who think their system impregnable for every Microsoft user who thinks the same. At least Microsoft is willing to admit that yes, sometime in the future, shit is bound to happen.

Than why the hell are you reading slashdot?

[xeno-cat]

Oh those MS guys are'nt bad people their just misunderstood!

For some reason you wrote:
"Realisticly, what is the point of trying to exploit linux? Why exploit the little guy when you can go after the big fish?"

Apache is the single most prevalent web server on the internet. Why then is it that hackers "target" IIS? Maybe because it's easier?

and decided to continue:
" they do employ some of the best and brightest in the world. I imagine some of you may not believe that, but I do."

Have you seen Balmer lately? The problem with working for MS is that, even though you may be smart your just wasting your time. Who cares that you can give a lecture on some brilliant way to link corporate data to business users if your entire architecture needs to fit into a proprietary MS 5 year plan for the enterprise?

MS has had 20 years and billions in funding and the best they can come up with is Windows XP. XP solves problems that Unix, Apple, X, NeXT, Amiga, et als. solved a decade ago. MS produces over architected under engineered gaming consoles that are'nt even compatable with themselves.

If your looking for "fair and balanced" where are you going to go? Read a frigin Windows rag if you want to "balance" Slashdot. I'm sure there are plenty of fine articles on .NET just waiting to provide you with hour of fun filled and objective learning experiences.

Kind Regards

Re:Than why the hell are you reading slashdot?

[kuzb]

I read slashdot because for every 1000th person who has nothing useful to add there is someone who has something worthwhile to say. I read it because the articles are generally interesting, and it is a good place to find them consolidated in one place. At no point did I say anything like "linux and unix are inferior, we should all use windows". I'm entirely pro-choice in what your run. What I'm trying to advocate here is that slashdot could be a lot better if people at least attempted to be more objective. Some people are, most are not. If we see only Micorosoft's flaws, and not what they've done right we're running with blinders on. Windows has a place, and it has solved problems that Unix, Apple, X, NeXT, Amiga, et als. still has not solved. Lets face it, they have a dominant market share for a reason, and to say it's only because of shady marketing practices is a fairly shortsighted view of things. You may have plenty of bad things to say about Microsoft, Ballmer and Gates, but just try to do what they did. Most of us will not accomplish anything so impressive in our lifetimes.

Re:Than why the hell are you reading slashdot?

[antiher0]

> Apache is the single most prevalent web server on the internet. Why then is it that hackers "target" IIS? Maybe because it's easier?

Actually, more defacements occur every year on Apache-run sites than IIS-run sites. Normally I'd be surprised that you didn't read the /. article on this... err... I guess even normally, I wouldn't be surprised.

> Have you seen Balmer [sic] lately?

Maybe you missed it, but Ballmer (yeah, you misspelled his name) is a Harvard grad. His degree is in Mathematics and Economics. Stupid people don't breeze through a Math degree at an Ivy League school. Don't pick on the guy 'cause he's sweaty, energetic, and rich... It makes you look bad.

> MS has had 20 years and billions in funding and the best they can come up with is Windows XP. XP solves problems that Unix, Apple, X, NeXT, Amiga, et als. [sic] solved a decade ago.

That must be why they're dominating today!

> If your [sic] looking for "fair and balanced" where are you going to go?

I think at this point, most people expect an anti-MS slant on ol' /. Congratulations. You've won.

Re:Than why the hell are you reading slashdot?

[xeno-cat]

"Actually, more defacements occur every year on Apache-run sites than IIS-run sites. Normally I'd be surprised that you didn't read the /. article on this... err... I guess even normally, I wouldn't be surprised."

Key word is "defacement". Try reading "root exploit". With all the shared hosting and free web accounts that are run under apache it is not a surprise but I hardly suspect that it is because Apache is more exploitable than IIS, more like passwords are bad.

"Stupid people don't breeze through a Math degree at an Ivy League school."

Yes, they do. Doing what's expected and being smart are two very different things.

"Don't pick on the guy 'cause he's sweaty, energetic, and rich... It makes you look bad."

I pick on him because he is an asshole. As for why he is so rich, well, this world of ours is made for greedy psychotic bastards.

As for why MS is dominating you are just being an idiot, McDonalds is not fine cusine.

"I think at this point, most people expect an anti-MS slant on ol' /. Congratulations. You've won."

At least I can go somewhere for it.

Finally, the only question you need to be answering is where one can go for "unslanted" news. Right, nowhere. So use your head and carry on.

Kind Regards

Parent is well informed.

[John+Harrison]

I really doubt that they used Windows for Smart Cards. I think that the program was totally cancelled in 2001. However, I do not doubt that they spent that amount on the card deployment. Figure $10 per card (yes they could be a lot cheaper) and $25 per reader (again could be cheaper) and that only leaves $15 for development and installation. Yeah, it seems like the figure is low, depending on how they arrive at it. I really doubt that the cards themselves cost $50, unless they have some sort of secret 16 MB card running .NET... not likely.

They probably aren't using "Smartcards"

[penguin7of9]

The article probably gets it wrong. True Smartcards are almost useless for remote access at this point because there are few readers deployed in the field. At best, you can use them with specially equipped laptops, but even that is a hassle.

Microsoft, like most other large companies, almost certainly uses something like RSA's SecurID token or some challenge/response thing, and those things are quite a bit more expensive. The reason why companies use them is because they work with any web browser or ssh client--no reader required.

Re:They probably aren't using "Smartcards"

[d-rock]

Right, those usually aren't called Smart Cards, they're called tokens or OTP (One-Time Password) generators. SecureID and CryptoCard are both big names there...

Derek

Scarcasm

[Brad+Mace]

Scar-casm: n

1. pessimism rooted in previous wounds, physical or emotional, caused by the subject
2. A cutting and/or ironic remark intended to wound
3. An extraordinarily deep wound, as in chasm

I don't know if it was intentional or not, but I like it.

MS Products: Mom's love itr

[S7urm]

I find one issue that people rarely bring up when discussing Ms vs. Open Source OS's is that if the tables turned, people would shit on Nix's as openly and wantonly as MS products. Microsoft realized they had a profitable and viable piece of coding that could become the core of their company. So in turn they didn't allow open sourcing. Now with all these great operating systems available that ARE open source Microsoft becomes the "giant that stole christmas"

Linux and OS's like it have successful security implementations because they have an unlimited amount of programmers to work on the code. There is no over head, no one to say "That's not a profitable solution" and no one to gripe when you sit down for hours on end tweaking your source. Open sourcing becomes a pet project, a hobby, and a way of life. A battle cry, held upon high by rogue programmers who sit at their consoles running a MS product at work, wishing they could do something besides regediting to add finesse to their OS. So they go home, fire up the ole' Red Hat and tweak till' they turn blue in the face. And it's a great thing to behold. BUT a problem with a lot of open sourcing is personal preference. MS products were intended for the masses of "dull" witted purely PC users. It had to be the friendly OS by design or it wouldn't have profit potential. THAT is why every person in your neighborhood has a PC, because SOMEONE took the time to gear it down to the "regular Joe" (I mean could you imagine your 57 year old mother running BSD?) However, Open Sourcing has a tendency to be modded personally, so that the OS operates to YOUR personal preference. That is the beauty of running a *Nix your can dumb it back up.

Basically my point is this, Security was not a primary concern when Windows was produced, they were worried about the little guy who could barely turn on his monitor, but you have to admit your Mom loves Bill Gates because getting email is cool!

Re:MS Products: Mom's love itr

[Daniel+Dvorkin]

I find one issue that people rarely bring up when discussing Ms vs. Open Source OS's is that if the tables turned, people would shit on Nix's as openly and wantonly as MS products.

"Rarely"? Are you kidding? We hear that all the time. And it's just as untrue when you say it as when the other 9,999,999 people say it.

Microsoft simply does a worse job with security than its competitors. The security records of those non-MS products which have higher market share than the MS versions, whether open source or proprietary (e.g., Apache in Web servers, Oracle in databases) overwhelmingly bear this out.

Seriously, what is a "whitepaper"?

[Futurepower(R)]

"Microsoft Security Whitepaper"

Seriously, what is a "whitepaper"? This is not a troll. I have no idea what it is. Is it an article? I know what a "paper" is; what is the significance of it being white? Are there blackpapers?

Oh Great Slashdot Oracle, I, your humble follower, bow before you, please hear my question.

What is the difference between the kind of ideas that are in a whitepaper, and the kind of ideas that are in a paper? Are the whitepaper ideas whiter? When you are having white ideas do you consciously avoid negative thoughts?

If there were a "Microsoft Security Blackpaper", what would it say? "Ohmygod, we've had years of pushing out product before the programmers are really finished with it. Now we a sitting on a mountain of sloppy code. We have no hope of finding all the vulnerabilities."

Re:Seriously, what is a "whitepaper"?

[nosredna]

Answer here.

Basically, it's an official report from a company/government meant to be released to the customers/public.

Re:Seriously, what is a "whitepaper"?

[Hookahphus]

Isn't it something sold by Zig-Zag or Top.

Let the jokes begin!

[bonch]

This article is a veritable cornucopia for all bad Slashdot comedians and their inevitable +5 Funnies. Come one, come all!

Here they come...

This is a fake post

[spitzak]

The wording here is really a bit too strange and not like a normal Microsoft attack. First of all anybody with any knowledge of history would put the "rock solid" joke on ME, not 95. And I never heard the "just for ME!" line before, in fact this is pronounce emm-e by every Microsoft hater. Though the background of XP is obvious teletubbies appearance, most Microsoft haters attack the candy-coloring bubbles which don't resemble Teletubbies scenery much at all. And "the radiator would dislodge?" How about "when you go over a bump it would stall" or otherwise do an obvious failure.

It should be obvious that Microsoft is setting this up. They want to attack OSS on security. Their plan is to put a hole or exploit into the code by compromising some system to infect the code. Possibly this has been caught three times now, but there may be a missed one already planted, so everybody check carefully! Notice that they plan to announce this "security" stuff apparently in sync with 2.6 being released.

The far easier way to plant a hole in Linux would be to pay off or threaten some developer to do it. However they cannot do this because of the obvious fact that this can be done to one of their employees as well. They have to do it by "hacking" and they need to print this paper to show that they are extremely well-protected against "hacking", while open-source is "vulnerable"

The several posts like this, which seem out of character (ie treating Microsoft as childish rather than a threatening if clumsy evil), I think are planted. They want to point out that this coming failure of open-source has nothing to do with the security of the software on your desktop, but everything to do with the fact that people can work on the code.

People ask when Linux will lead instead of follow

[JimmytheGeek]

"The open source world needs to learn a little about UI consistency and try to make things easy to use if any Open Source OS is ever going to be taken seriously on the desktop or in the home."

Here is an opportunity for Linux to bring something entirely new to the table: UI consistency. The gratuitous UI changes from one windows flavor to another are deeply frustrating. Finding a particular admin applet is like playing whack-a-mole. As I recall in NT 3.51 the hard disk management applet was easily reached. Every generation hides it deeper.

And the default XP screen is really infantile - inspired by Teletubbies. You can see Po and La-la on really hi-rez screens.

Did I read that right?

[More+Karma+Than+God]

Microsoft Security Wallpaper?

How is that supposed to work?

Inbound cx's from PRC

[JimmytheGeek]

When I was a contractor/whore a colleague in development showed netstat connections from the PRC, where MS had no development. Not in our project, anyway.

Totally owned. MS netsec had no interest. The report impugned their competence. I have no idea if things are any better now. Maybe there was a shakeup after Code Red infected the very web servers that distribute patches for us all.

They have ignored serious bugs in IE for years

[JimmytheGeek]

I get calls from neighbors and at work all the time for hijacked desktops. They go to some lame, hostile website and every time they open IE, a million popups. If they have Active Desktop then every time they boot up.

It's insane. And ignored.

I tell them to use a browser that has not been hacked onto the OS like a siamese twin.

65K Smart Cards

[Nom+du+Keyboard]

deployment of 65,000 smart cards

You'll be getting a letter from Direct TV's lawyers Monday morning.

Many of the exploits aren't just buffer overflows

[Svartalf]

They're more fundamental than that. A buffer overflow allows you to execute code in ring 0 that would otherwise not be ran. This isn't the same thing as something like MS Blaster and it's ilk. Now, those were found the same way as the buffer overflow exploits, but they could have been even more easily found via an audit of the source code. Under Open Source, the code's looked at by MANY people- it's likely to be found and corrected. In Closed Source, it's not so likely and it's more likely that a code leak will result in someone else doing an audit and finding weaknesses and exploiting them.

Re:there's nothing RF about these cards

As a fellow employee, you're not incorrect, but you're not really right, either. In particular, the smart card part of your badge is limited to the small chip you can see on the back side, and it's a perfectly vanilla smart card. I'd guess they cost less than $0.50. The RF bit is in the white plastic, and you can tell that because an intern or vendor badge (without the smart card part) can still open doors or be scanned for food.

Re:get real this is your life

[jeisc]

Cheers from paris france!
To base security on secrecy is a losing game.
All secrets become public one day or another.
Supposedly god knows it all.
So all who know god have the secret.
In the corporations you have those with access to the secret
and the others those who do not have the access.
Upper and lower classes of employees,
the elite and their mass controlled by their needs,
And implementing a clever behavoir, understanding these needs.
Being successfull in business requires fulfilling these needs,
first in the entreprise and next with their clients small and large.

We must understand,
that we live no longer in the united states,
nor in france,
nor in dollar land ,
nor in gi joe's land,
today we live in sm\bill's ms land.
So this publishing of ms source code,
would put all the worlod an even chance.

Publishing the code source for microsoft would be
a sure way to see how much unix code is still under the hood in ms,
is ibm thinking of asking a search and compare on the kernal code source .
#compare (
"unix-os-source-tree" ,
" linux-os-source-tree,
bsd-os-source-tree,
ibm-os-source-tree,
sun-os-source-tree,
mac-os-source-tree,
ms-os-source-tree"
)
> sco-trial.txt;


sorry for wasting the bandwidth!

MLSA? Document classification levels?

[winchester]

Unless Microsoft has implemented MLSA, which is atmittedly tough to do, or they have implemented a physically separated network for their high-value stuff (without internet access!!), they will indeed at some point see a compromise that touches their high-value stuff. Unfortunately for the rest of the slashdot-crowd, this equally applies to them as well :)

Also, I don't see any references to a document classification level system, plus the proper controls to implement them. We know for the halloween documents that they must have something like that. (The halloween documents are labelled microsoft confidential).

$50 a piece?

[WetCat]

Moscow subway (metro) use smartcards which
go at 50 RUR/piece, 1.8$/one.

I thought...

[Trejkaz]

I thought the idea was to steal the source code, and port the graphical elements to Linux.

Your website is "The Darkside"?!??!

[elementik]

You worked for MS, and your website is called "The Darkside" .. dude, lead me to the borg queen.

Re:People ask when Linux will lead instead of foll

[Tim+C]

The gratuitous UI changes from one windows flavor to another are deeply frustrating. Finding a particular admin applet is like playing whack-a-mole.

That can probably be argued to be a good thing. Each major release of Windows is sufficiently different from the previous ones, I think, to warrant making it a little difficult for an admin to make the transition. That way, they're forced to actually read about the new capabilities, config options, etc, rather than just going in blind and potentially missing some new gotcha or essential option.

As I recall in NT 3.51 the hard disk management applet was easily reached. Every generation hides it deeper.

I don't know about NT, but it's in the same place in both 2k and XP - right click "My Computer", choose "Manage" - it's one of the tools in the tree list on the left.

And the default XP screen is really infantile

No arguments there. It's easily changed, though; that's hardly a reason not to use an OS, just because you don't like the default theme :-)

erm ...

[oPless]

I saw the title and read "Microsoft security wallpaper"

I though "Yeah, just like them - now lusers will associate their wallpaper with security" /me changes backdrop to goatse.cx to stop hackers

Massive breakin expected?!?!

[nurb432]

Regardless of who we are talking about, they are predicting a successful attack on the largest company on the planet. And they DO know what they are talking about, they have a better idea of internal security issues then any of us here on the outside.

That's rather scary if you ask me... as that leaves all the smaller companies that cant afford to keep up wide open too..

We could see a really bad year in 04 for attacks and break-ins.. Even worse impact on our industry than the 'litigious 03'...

Drink up.

[twitter]

Wouldn't a leak of Windows source be a great excuse for MS to sue everyone who codes, ala SCO?

The misserable failure of SCO will deter them from using this flimsy and stupid idea. It's already backfired in their face so bad that they might get some jail time out of it.

Source base not significantly compromised

[Slashamatic]

If the Win2K/XP code base had been compromised fully, I'm fully sure that the code would have spread. It didn't. However the suggestion that the crackers had commit access is what is really scarey. In the case of Digital, they had to review their entire O/S source code. Remember the attempt to manipulate Bitkeeper with a change to the Linux kernel. Even though there are a lot more eyes on the code, it *could* have been a serious problem.

The Microsoft Fan Club

[crucini]

Anyone running any operating system can be attacked and comprimized.

This is the kind of statement some geeks love to make. While it's literally true, it's nearly meaningless. Let's try a few variations:

Q:Should I bring my umbrella on Thursday?
A:Rain could occur on any day.

Q:Which car is more reliable, a Toyota Corolla or a BMW 325?
A:Anyone driving any car can experience a mechanical breakdown.

Q:Should I drink this six month old milk in the fridge or buy some new milk?
A:Anyone drinking any milk can die of food poisoning.

Microsoft's approach to security is deeply flawed. Again and again, they made visibly wrong decisions which any experienced network programmer could see as wrong. Their permissions system sucks, for example. They thought they would be clever and leapfrog Unix - they would go from no security to fancy ACL's. Unfortunately, almost none of their customer base can figure out the fancy ACL's, and most of their ISV's are not cooperating. Unix ugo perms are already at the outer limit of what most people can understand. On a typical Unix box, the majority of files have correct permissions, and a minority have a non-disastrous error in perms. On a typical Windows box, either everything is wide open, or everything is locked down so Administrator intervention is needed for almost anything.

Both Windows and Linux contain flaws in execution. But Windows contains severe flaws in design.

You people sometimes seem to forget that despite MS's faults, they do employ some of the best and brightest in the world. I imagine some of you may not believe that, but I do.

If you define the top x (fraction) as "the best and brightest" and Microsoft has n employees with the same brightness distribution as the general population, it follows that they employ roughly nx of the "best and brightest." If nx > 3 I think everyone would agree that Microsoft employs some of the best and brightest. E.g. 65,000 * .001 = 65; 65 > 3. Congratulations on another reliably true statement.

Of course this assertion, like the one above, is intended to connote more than it denotes. Since you raise this alleged brightness as a defense against accusations of making bad software, you appear to argue that the software isn't really bad, since bright people can't make bad software. This seems like a curiously indirect way of evaluating products that have inflicted real-world pain on many of us.

Re:People ask when Linux will lead instead of foll

[TheNetAvenger]

Here is an opportunity for Linux to bring something entirely new to the table: UI consistency. The gratuitous UI changes from one windows flavor to another are deeply frustrating. Finding a particular admin applet is like playing whack-a-mole. As I recall in NT 3.51 the hard disk management applet was easily reached. Every generation hides it deeper.

I agree with the push for UI consistency completely. Open Source needs to really band to together and stop trying to 'invent' their own methods. The whole idea of Open Source is to share, and yet you see distributions and groups trying to create their own methods and NOT share them.

As for the Disk management reference, a lot of things changed in NT from then, as this was a part of the administrative consistency model added to Win2k that probably won't change for long time.

Everything you need in Win2k, WinXp, or Win 2003 is available from the MMC. From services and devices, to disk management, and effectively everything thing else that is an 'administrative' function is available in the MMC interface.

Even IIS, MS SQL, Exchange, and other 'administrative' level applications plug into the MMC. There is no longer a hunt to find any of these features.

The MMC may not be the end all of usability, but it removes the inconsistent behavior of NT4 and earlier where these features were scattered throughout the OS in different mechanisms. It also provides a standard mechanism for third parties to plug into as well, so even if the MMC interface changes, the plug ins will still work and be available.

In new OSes, you may find administrative functions moved to easier to use interfaces for novices (like the User Manager in XP), but that doesn't mean they are not still fully accessible for administrators or power users from the MMC interface.

An additional note to this is the scripting level of support that was added in Win2k for accessing all of these features. Virtually every part of the OS can be accessed via command line or GUI based scripting via the same interfaces. This is almost like a big secret somehow, everything in Windows 2k and newer is scriptable.

MMC: a lousy interface hiding functionality

[JimmytheGeek]

The concept for the MMC is superficially convincing: a consistent approach for all tasks. Unfortunately, what happens is that dissimilar functions are shoe horned into the model, rather than having a task-based approach that gives the best way to deal with a particular thing.

And the function IS still scattered. When you launch the disk thingy, it's a separate applet. It's not an MMC thing, but the only way to launch it (apart from locating the file and launching it) is through MMC. The shortcut for it is just buried in one MMC default page that is not easy to find. Sure, you can build your own consoles, but why not have that applet where it belongs?

Building pages of MMC controls doesn't strike me as a massive leap forward in usability.

I'm glad scripting has improved - that's an area I haven't explored.

I may be prejudiced; I was a contract tester for SMS 2.0 and we lost the summer's work when someone made a mid-course correction, abandoning the task-based UI for the MMC. I don't think the MMC UI was intuitive at all. Sure, it looked like other apps, but it had nothing in common with, say, Exchange. So why the same interface?

Priorities?

[askegg]

OMG ! The security groups first priority is to be "Microsoft's first and best customer", while the last is to "Run a world-class utility". Shouldn't this be the other way around? Here's an idea - why not use the best technology available? If it is not yours - look, listen and learn.

Who would have thought....

[Vampyre_Dark]

...that Microsoft employees have time to write up security whitepapers or anything else when all they do allday is run around cosplaying the Matrix.

Actually, it is a term from England

[Futurepower(R)]

Actually, it is a term from England, where the government produces rough drafts called greenpapers. In that context it, has meaning. In the U.S., it has no meaning.

Re:People ask when Linux will lead instead of foll

[IchBinEinPenguin]

And the default XP screen is really infantile - inspired by Teletubbies. You can see Po and La-la on really hi-rez screens.

You may have hit on something there.... What we need is a re-compile of clippy: M$ NooNoo to clean up the mess!