Slashdot Mirror

← Back to Stories (view on slashdot.org)

WinFS - Who Will Actually Use It?

Posted by Cliff on from the banking-on-a-new-filesystem dept.

Hel Toupee asks: "Tom's Hardware is running an article about the file system to be employed in Windows Longhorn, the to-be-long-overdue successor to Windows XP. According to the information that the authors could get out of Microsoft, WinFS seems to be little more than an indexing and searching service that sits on top of NTFS or FAT. It is also very flexible and extendable, which, for Microsoft, can mean 'slow' and 'exploitable'. For instance: quite a bit of the inner workings of WinFS rely on XML data tags which can allow 'for instance, that developers will additionally be able to automatically display or execute commands linked to items located by a specific search'. This seems to imply that the new generation of spyware only has to change a bit of XML and it can add entries to your context menus, or open webpages when you click on a file, or, since files can be grouped by content in 'virtual folders', spyware could effectively add entries to these folders, or reorganize your entire filesystem on the fly -- all with slight tweak in some XML file! Am I being paranoid? WinFS seems fairly insecure, and I will not be using it if given a choice. What's your take?"

106 comments

  1. Am I being paranoid? by Leffe · · Score: 0, Insightful

    Yes, spyware won't do anything if it can't get root access. If everyone used safe software, or if Microsoft improved iexplore, there would be nothing to worry about.

    I would assume that the security would have improved at least a little until the Longhorn release. When is that, by the way? No I did not read the article, or the newspost very carefully.

    And maybe, for some reason, people would not surf the dangerous web using the administrator account? It's not a Good Thing to do, it is more like a DANGEROUS kernel feature. You don't know if it will do anything, but when it does... it's too late.

    1. Re:Am I being paranoid? by noselasd · · Score: 2, Interesting

      And why on earth can't spyware do any harm if it doesn't have "root" privileges ? What's stopping it from popping up ads ? Or running a mass spamming process ? Deleting all files owned by you ?

    2. Re:Am I being paranoid? by Leffe · · Score: 0

      At least it won't ruin the FS, or something like that.

      All users would not be affected.

      And it would be significally easier to uninstall it.

    3. Re:Am I being paranoid? by Directrix1 · · Score: 1

      Oh not the file system! The users data is nothing, but if it destroys something that is easily reproduced with a reinstall then its horrible. There was sarcasm intended in that comment, by the way.
      As far as what the paranoid dude is talking about: an indexing file system will just mean it will be easier to search for what you are looking for. Instead of having a particular name, you can search on attributes. Natural language queries will follow shortly thereafter. Microsoft is making a very smart move here. Not that this hasn't been done before, but they are integrating it in with the core OS which is something Linux has needed to do for years.
      And as far as the automatic execution of some spyware program or whatever bologna he's talking about. I'm sure it will just be like todays file associations, except instead of treating everything like a file to be opened with a program, it will probably be treated like an object which you can perform actions on. At least thats what they'd do if they were smart. And I'm sure these actions will be customizable by the user (again if they are smart).

      --
      Occam's razor is the blind faith in the natural selection of least resistance and in universal oversimplification. -- EF
    4. Re:Am I being paranoid? by Directrix1 · · Score: 1

      BTW, I'm not WiNazi. I actually hate Microsoft and personally use Linux at home and work. But I do think that what they are doing is a good idea.

      --
      Occam's razor is the blind faith in the natural selection of least resistance and in universal oversimplification. -- EF
    5. Re:Am I being paranoid? by Endive4Ever · · Score: 1

      Who the hell are 'all users' who are not affected on a single user desktop machine?

      The 'many users, single machine' concept is obsolete, except in cases of servers, where it's really a resource-sharing connecting point, not a true 'multi user' machine.

      The new concept, at least for tech people, is 'many machines, single user' as in: KVM switch and a bunch of machines running various OSes and programs.

      The UNIX multiuser concept is as obsolete as timesharing machines with big banks of dumb terminals connected through serial interfaces. Give it up.

      --
      ---
    6. Re:Am I being paranoid? by unapersson · · Score: 1

      "Oh not the file system! The users data is nothing, but if it destroys something that is easily reproduced with a reinstall then its horrible. There was sarcasm intended in that comment, by the way."

      User data is the stuff that *should* be backed up frequently, so losing it shouldn't be too much of an issue.

      Having the inner workings of the system tinkered with is far more serious. It could be some long term damage that would render your frequent backups useless.

    7. Re:Am I being paranoid? by iantri · · Score: 3, Insightful
      And maybe, for some reason, people would not surf the dangerous web using the administrator account? It's not a Good Thing to do, it is more like a DANGEROUS kernel feature. You don't know if it will do anything, but when it does... it's too late.

      Windows is braindead and inconsistent in this respect. Much software still wants to piss in it's Program Files directory and will refuse to run unless it is run as Administrator.. other programs require it because of sloppy coding.

      You'd think you could set everything in the Program Files directory to be writable by Admin only, but it doesn't work because of this.

      Also, when you install software, it is unpredictable as to what it will do; whether it will put it's icons in the All Users start menu or in the current user's one.

      So, basically, all there is to do is run as Administrator.. the system is nearly unusable otherwise.

    8. Re:Am I being paranoid? by spacecowboy420 · · Score: 1

      Why do you think it is obsolete? Noone shares a pc? A user (and thus any program) should be able to do root tasks? I really am having a hard time following your logic. You are right about 'new concept' of single user multiple machines [i.e. roaming profiles - which are NOT new] being a good thing - but as the only user on the machine? I think not and I believe multi-users will likely never become obsolete. Please prove me wrong by supporting your assertion. Being proved wrong means you learned something - teach me.

      --
      ymmv
    9. Re:Am I being paranoid? by Blakey+Rat · · Score: 2, Insightful

      Yeah, I agree with all that, but what I don't agree with is the people who claim this is *Microsoft's* fault.

      I mean, hell, I could easily write an OS X program that tried to store all its data into a system directory and required an administrator account to run... would people suddenly declare that Apple screwed up, or that my program is crap?

      Look at the software Microsoft writes: All of it is perfectly usable as a plain-jane user account, just as it should be. If other software developers wrote software *correctly*, the way Microsoft does, there'd be no problem at all.

      So, in short, the parent post is true entirely... but it doesn't communicate how secure or insecure Microsoft products are because the problem is not *with* the Microsoft products.

      --
      Comment of the year
    10. Re:Am I being paranoid? by Directrix1 · · Score: 1

      I'm just saying the user data is the reason the system is there to begin with. If your user data gets corrupted, then whats the point?

      --
      Occam's razor is the blind faith in the natural selection of least resistance and in universal oversimplification. -- EF
    11. Re:Am I being paranoid? by iantri · · Score: 1
      It's for historical reasons; for the longest time Developers were allowed to put files wherever they wanted on the system, up till Windows NT4/2000/XP.

      Also, Microsoft doesn't help matters by shipping Windows XP with the default user account as Administrator or Power User.. software can still dump stuff everywhere, so less-skilled developers don't even likely realize what they are doing is wrong.

      In fact, by default large areas of the hard drive are open to all users, where as in *nix, a regular user can't write to anything but the files in their home directory.

      In an operating system such as *nix, there is a strong historical precedent for putting things in the RIGHT place, because of the strong usage of user accounts.

    12. Re:Am I being paranoid? by r_naked · · Score: 1

      Just curious -- on the Linux / Unix systems you admin, do you set /usr/local 777 or /var or for that matter /etc.

      Hmmmm last time I checked you needed (or at least SHOULD be root to write to those dirs).

      Again if you allow your users to have open write access to those directories I feel for you. But if you know of some way I can say ..... install apache without installing it in my home dir -- oh wait even if I DID install it in my home dir I couldn't run it because it wants to bind to port 80, I would be most interested.

      The fact of the matter is the standard install procedure for Linux / Unix software is:

      make configure && make
      su -
      make install

      And the PROPER way to install software on NT/2K/XP is:
      right click on install.exe or setup.exe etc..etc
      choose Run As... and choose an account you have delegated admin privs. to....

      --Brian

      --
      -- http://anonet.org -- The internet the way it was meant to be. Check it out, you may be surprised.
    13. Re:Am I being paranoid? by iantri · · Score: 2, Informative
      Additionally (forgot to stick this in my other comment), Microsoft does NOT always create correct software.. see This page on the security requirements for Office 97. To be fair, I don't know if they fixed it for Office 2000, but come on.

      Look at this; It needs full read/write access to C:\Temp, C:\Winnt, C:\Winnt\System, (these ones are already wide-open in a default install), C:\Program Files\Office 97, and a bunch others.

      This makes it basically impossible to secure a Windows box..

    14. Re:Am I being paranoid? by iantri · · Score: 1
      I think you misunderstand. In Windows XP, the permissions are not this tight to start with -- if you want the important bits to only be touchable by Administrator, you need to tighten it down.

      I know very well how to install a program as the Admin user. The point is, the software does not work unless it is running as the administrator unless you give everyone read/write permissions on certain areas where they shouldn't need it (such as the Program Files directory, and so on).

      That's just poor programming.

      In Linux, unless you need to do system administration functions, you never ever need to log into your machine as root.

    15. Re:Am I being paranoid? by r_naked · · Score: 1

      Just curious can you name me ONE program that you HAVE to be administrator to run if installed properly by the administrator?

      I realize some require a little tweaking here and there to not require admin privs. to run. But MOST programs are multiuser aware now.

      But I would like to know just one... because I have yet to find one. NOTE - the *IF* installed properly.

      --
      -- http://anonet.org -- The internet the way it was meant to be. Check it out, you may be surprised.
    16. Re:Am I being paranoid? by LittleBigLui · · Score: 1

      The point is that

      A) You have a backup from which you can restore the user data. (If you don't have a backup you obviously don't care for the data. Harddisks die sometimes.)

      and

      B) Modified user data is (more) easily detected (than modified system programs) since its used often and directly by the users and is "data", as opposed to "programs".

      Changes to programs and to parts of the operating system can be used to camouflage manipulations of user data long enough to render all backups virtually useless.

      Yeah, that was the whole point. And that whole multiuser thing with one user not being able to destroy/manipulate other users data, which isn't all that important on (non-server-)PCs nowadays.

      --
      Free as in mason.
    17. Re:Am I being paranoid? by LittleBigLui · · Score: 1

      Even with only one human user using a computer, having different programs run on separate user accounts is a good thing, as it reduces and compartmentalizes their damage potential.

      --
      Free as in mason.
    18. Re:Am I being paranoid? by iantri · · Score: 1
      Microsoft Office 97 requires you to open permissions on key parts of the system including C:\Winnt and C:\Winnt\System to work. (see my other comment in this thread)

      VCDEasy burning software

      Medal of Honour: Allied Assult Spearhead Multiplayer Demo

      There's lots of others..

    19. Re:Am I being paranoid? by AuMatar · · Score: 1

      And C)Damage on a unix utility will damage only your files, not those of any other users on they system. With windows, say bye bye to all of it.

      --
      I still have more fans than freaks. WTF is wrong with you people?
    20. Re:Am I being paranoid? by drsmithy · · Score: 1
      At least it won't ruin the FS, or something like that.

      All users would not be affected.

      The '70s called, they want their mainframe back.

    21. Re:Am I being paranoid? by riffenator · · Score: 1

      2 words:

      Terminal Server.

      As in, Microsoft has one for windows....

      Now, STFU

    22. Re:Am I being paranoid? by bomblaster · · Score: 1

      thats called a virus

    23. Re:Am I being paranoid? by Blakey+Rat · · Score: 1

      Yeah, but Office 97 wasn't designed to run on NT4, the only Windows NT variant out at the time.

      Your example is entirely worthless. It's perfectly acceptable for Office 97 to expect that, just as it's acceptable for a MacOS 9 program to expect that, because there's no true multi-user support in the OS.

      Find a *current* application designed to run with modern copies of Windows and I'll be convinced.

      --
      Comment of the year
    24. Re:Am I being paranoid? by TheRealSlimShady · · Score: 1

      Great, so you're complaining about a 7 year version of the software written by Microsoft, and some third party apps. Microsoft have tidied up their act in this regard, and have been encouraging others to do so. Just because they haven't isn't really a fault of the operating system manufacturer.

    25. Re:Am I being paranoid? by prefect42 · · Score: 1

      It's lots of stupid things. PaintShopPro 8 with a straight install from the admin account, clicking the "make available to all users", boom it only worked for admin.

      Lots of other crackers like Need For Speed Underground, which saves the save games in /Documents and Settings/All Users. Now what on earth were they thinking there?

      --

      jh

    26. Re:Am I being paranoid? by Anonymous Coward · · Score: 0

      In an operating system such as *nix, there is a strong historical precedent for putting things in the RIGHT place, because of the strong usage of user accounts.

      In an operating system such as Unix, there is a strong historical precedent for normal users never having to install software at all, because a well-paid and highly trained administrator is on call to do that for them. Guess what? That doesn't work at home!

      Apples and oranges. Notice how most people who are switching from Windows to Linux are switching to distros like Lindows. Oh, wait - Lindows runs as root by default...

    27. Re:Am I being paranoid? by obeythefist · · Score: 1

      You can tweak windows so that apps will run with the bare minimum of privelege required.

      What is amusing, in a narrow minded way, is that *nix advocates continually and endlessly fail to acknowledge that these applications that won't run unless you're admin are third party. They're not developed by MS. Microsoft business apps run quite well without admin privelege. Yet the parent blames Windows!

      If these developers started writing must-have killer applications for Linux, and made them so they'd only run as root, would you blame Linus Torvalds for making a lousy operating system?

      --
      I am government man, come from the government. The government has sent me. -- G.I.R.
  2. My take ? by noselasd · · Score: 5, Insightful

    Well, if WinFS is default, million of users _will_ use it. They don't care or know what's in the bottom. They just use the system that came with the PC. Only the future will tell what this will do to your system,
    after all we weekly encounter new and exciting ways spyware/viruse/worms/etc. screws up windows.

    1. Re:My take ? by Phillup · · Score: 4, Funny

      Sorry, but... in this case, choice is an illusion.

      First it will be the default... then it will be the only choice.

      This is, of course, the optimist in me... the pessimist says that you will be lucky if this is as bad as it gets.

      It could very well be a "transitional" file system. The final file system will actually live on your bank's system... making the movement of money from your account to their's all the more seamless.

      The end goal is to create one massive grid computing system that constantly funnels money from the banks of the world into MS's coffers.

      --

      --Phillip

      Can you say BIRTH TAX
    2. Re:My take ? by Captain+Rotundo · · Score: 2, Insightful

      This is so very true. Every time i sit down at an Internet Explorer users sytem to help them with something, I am shocked they put up with the pop-ups and what not. The problem is they didn't know better, they didnt know to try another browser or a third party blocker. I feel bad for them, they are like people that constantly get ripped off by mechanics because they don't know cars. It's really the sorry state of computer userdom nowadays.

    3. Re:My take ? by Ed+Avis · · Score: 2, Informative

      It's not inherently insecure to allow actions to be associated with shortcuts or add other whizzy things. If the user has write access to the filesystem, why shouldn't the user set up these things for his own files?

      Consider - the window manager I use (icewm) has a menu file saying what programs appear on the start menu. It is possible for a program (including a worm) running as my uid to change that menu so that clicking on 'xterm' runs something else instead. This does not mean icewm is insecure.

      The problem comes from running malware with full user privileges. As long as that happens, the system will be insecure anyway whether or not there are fancy WinFS active content things.

      (However, if WinFS is so stupid as to display active content for files which were created by another user or sent over email, and the design is so stupid as to allow the content full access to the machine, there is certainly a problem. The Acorn RISC OS had a severe security bug of this kind - each application directory (like an appdir on NeXT) had a file !Boot which would be executed merely on _viewing_ the directory listing. Of course this was the ideal vector for viruses.)

      --
      -- Ed Avis ed@membled.com
    4. Re:My take ? by pcmanjon · · Score: 1

      I feel bad for [common computer users], they are like people that constantly get ripped off by mechanics because they don't know cars. It's really the sorry state of computer userdom nowadays.

      Well, thats too bad for them. Computers were invented for Scientists and other smart people ONLY - they were invented to be used by people with some intelligence.

      Computers are still designed for smart people -- for everyone else, there's windows(R) (c) (tm)!

  3. Take some Ritalin by josephgrossberg · · Score: 4, Funny

    "What's your take?"

    It's too fscking early to say.

    Stop talking out your ass and speculate on something important, like Episode III.

    --

    Joe
    http://www.joegrossberg.com
    1. Re:Take some Ritalin by Hel+Toupee · · Score: 1

      If this was meant as a joke, it's pretty funny.

      --
      PERL:
      All of the power of Voodoo with most of the understandibility!
    2. Re:Take some Ritalin by josephgrossberg · · Score: 2, Insightful

      Yeah, since karma is "excellent" and not a number, I might as well do some trolling when I'm in the mood.

      --

      Joe
      http://www.joegrossberg.com
    3. Re:Take some Ritalin by BRSloth · · Score: 2, Funny

      Well, I, for one, welcome our new spyware-that-changes-xml-atributes overlords.

    4. Re:Take some Ritalin by MikeCapone · · Score: 2, Funny

      Stop talking out your ass and speculate on something important, like Episode III.

      Speculate? I know it will suck.

      --
      Treehugger? Treehugger... Treehugger!
    5. Re:Take some Ritalin by josephgrossberg · · Score: 1

      Not if Darth/Anakin chops off Jar Jar's head with a light saber.

      --

      Joe
      http://www.joegrossberg.com
  4. Slashdot's take: by cperciva · · Score: 1, Flamebait

    What's your take?

    Well, we have absolutely no information about how WinFS works, nobody here has actually used it, and it isn't even finished yet... but it comes from Microsoft, so it's probably slow, exploitable, and an attempt to abuse their monopoly powers.

    --
    Tarsnap: Online backups for the truly paranoid
    1. Re:Slashdot's take: by Anonymous Coward · · Score: 0

      Longhorn won't be slow, if you use managed code that is! If you pass something through the .NET interpreter, instead of passing it through an interpreter written in interpreted .NET MSIL, you'll surely win!

      And just think about all the safety this will add, see this examples:

      1) C, normal mode.
      i = i + 1;

      2) C, Longhorn mode.
      assert(i);
      assert(1);
      assert(i+1);
      check _low_memory();
      random_slowdown_eh();
      garbage_col lect();
      assert(i);
      i = i + 1;
      assert(i);
      assert(1);
      assert(i+1);
      assert(i ==i);
      assert(1==1);

      Safe and good!

  5. Security by Uma+Thurman · · Score: 5, Insightful

    Security isn't my primary worry, at least at first. The indexing data is stored in an SQL database. I've had my share of registry corruption to know that when Microsoft stores a pile of critical information in a centralized database, you'd better keep that database backed up. At the very least, it'd be wise to stay away from the new formats until everyone else has debugged them.

    --
    This is America, damnit. Speak Spanish!
    1. Re:Security by simonecaldana · · Score: 4, Insightful

      Security isn't my primary worry

      and seems it is not a worry for end users too. End users always thinks bad things happens to someone else. That's why a poorly designed security model IS a problem. OTOH, it is an end user problem, something here on slashdot could be used as base for jokes.

  6. Woah, hold on by slubberdegullion · · Score: 4, Insightful

    The programmers at Microsoft are surely aware of these sorts of issues. It might be a good idea to wait until the product is complete before deciding that it's terribly insecure.

  7. Registry by Idealius · · Score: 3, Insightful

    Right now, all spyware has to do is a few simple registry entries to add itself to context menus, startup, Internet Explorer default search engine, etc. What's the difference between a simple reg tweak and a simple XML tweak? Same "exploits", just different interfaces.

  8. Ooo yes, lets speculate! by Jukashi · · Score: 0, Troll

    And thank you btw for explaining what Windows Longhorn was..

    Who will use it? 98% of the desktop market. And yes, we all know linux users will not be. Next question plz..

    1. Re:Ooo yes, lets speculate! by Anonymous Coward · · Score: 0

      Considering that 30% of the desktop market is still using Windows 98, I think you estimate is a little high.

  9. Files are not files anymore by fluor2 · · Score: 0, Interesting

    I know this might be a shock for you Linux users, but it's time to move on: Files are no longer files as we know them.

    Why? Because using normal files is just too slow. E.g. How do we know which part of a 1gb file should lie in memory, and which should not? We need attributes, we need information, and this information are also files. You see? We end up describing what I would like to call another step for Operating Systems; Object-oriented file systems. Windows allready has some of this in their AD structure.

    This will of course need a better file-handling tool. It's just like a big database where we need good rules of what's good and what's not. And this is what WinFS is trying to give us. I'm sure Microsoft takes the step that Unix should had taken years ago.

    1. Re:Files are not files anymore by simonecaldana · · Score: 4, Insightful

      I know this could be a shock: Reiserfs4. go check yourself.

      How do we know which part of a 1gb file should lie in memory, and which should not?

      it's not a filesystem matter.

      It's just like a big database where we need good rules of what's good and what's not.

      I, for one, hope that won't be microsoft to choose what's good or bad ;)

    2. Re:Files are not files anymore by aws4y · · Score: 2, Informative

      Ummm.....
      Have you looked at the 2.4+ Linux Kernels. Or for that matter the BSDs or OSX, the fact is that UNIX and its workalikes are perfectly capeable of handling large disk I/O tasks. Especially with Journaling file systems like JFS or XFS, hell even ext3 does a decent job. This is annother example of Microsoft "innovating" in an attempt to beat a proven solution (EX. putting IIS into the Win2003 kernel) The fact remains that a good journaling filesystem, with a swap partition, more than likely is a much safer solution to the problem you describe than turning every thing on the disk into an XML taged .NET object.

      --
      Did Glenn Beck rape and kill a girl in 1990? gb1990.com
    3. Re:Files are not files anymore by ptaff · · Score: 2, Informative
      I know this might be a shock for you Linux users, but it's time to move on: Files are no longer files as we know them.
      Files are still files; the WinFS is a layer above an existing FS.
      Why? Because using normal files is just too slow. E.g. How do we know which part of a 1gb file should lie in memory, and which should not?
      No matter how you call them, files or Objects or whatever concept you like, if a file is 1GiB big you'll have trouble. You might have a 1KiB metadata file describing it, but when you access the real data, the same issues come back.
      This will of course need a better file-handling tool. It's just like a big database
      No, no, no! files are not stored in a database, metadata is. It's a layer.
    4. Re:Files are not files anymore by TheOnlyCoolTim · · Score: 1

      Hmm. I have certainly opened 1 GIGAbyte files (without any 1 KILObyte metadata file) without much trouble.

      Tim

      --
      Omnia vestra castrorum habetur nobis.
    5. Re:Files are not files anymore by Endive4Ever · · Score: 1

      I, for one, hope that won't be microsoft to choose what's good or bad ;)

      Well, it will be, if everybody else just remains mired in 'ye old UNIX ways.'

      --
      ---
    6. Re:Files are not files anymore by Anonymous Coward · · Score: 0

      VI(M) seems to know which part of a 1GB file to have in memory. The part that you are looking at...

    7. Re:Files are not files anymore by aePrime · · Score: 2, Insightful
      I know this might be a shock for you Linux users, but it's time to move on: Files are no longer files as we know them.

      Why? Because using normal files is just too slow. E.g. How do we know which part of a 1gb file should lie in memory, and which should not?

      Actually, for interactive cases this is easier on Linux/Unix than on Windows because of the structure of the *nix inode. It allows for very easy random access of a file, so, like the other example, you can scroll randomly about your 1 gig file in vim without much worry. NTFS, FAT, and FAT32, on the other hand, are good for sequential access (great if you're copying one file to another, I suppose), but it's more difficult to page the file in memory, which, also aforementioned, is not the duty of the filesystem.

  10. are you serious? by pb · · Score: 3, Insightful

    I'm sure I'll be hearing from /. about how all the concepts in WinFS would be wonderful to have... just as soon as we hear something new about Reiser4. Seriously, just adding some extra metadata to a filesystem doesn't have to make it insecure; in fact, in Reiser4, they're doing it to make the filesystem *more* secure.

    Now, I know about MS' track record with security just as well as the next /.'er, but let's wait until WinFS is actually released to start picking it apart, ok? Until then, it's still vaporware, and there's no guarantee that it'll get released in 2005, 2006, or any other time.

    And if it just ends up being a layer on top of NTFS that lets people sort their music and vacation pictures, well, I'm not too worried about it yet. And if it turns out that it's a security risk, then you *turn it off*, or just use FAT32.

    --
    pb Reply or e-mail; don't vaguely moderate.
    1. Re:are you serious? by 4of12 · · Score: 1

      And if it just ends up being a layer on top of NTFS that lets people sort their music and vacation pictures

      A system like that could be quite valuable, even though the description doesn't sound like much.

      I've often thought the concept of VFolders from Evolution could be introduced into *NIX filesystems to great benefit. Something like systems of symbolic links you can create to get alternate views of your nested directory structures.

      Thus, one organizational structure might look like "./project_A" "./project_B", while an alternative view might show "./today" "./yesterday" and another ".html_files", ".png_files", etc. The idea being that different views of the same data can help you find stuff more easily because your context changes.

      Sure, you can roll your own by hand system using symbolic links, find and grep, but ways of viewing filesystems with user-decidable hierarchal tree views could be useful. I've often longed for alternate bookmark organizations than just the one I get, but to have them presented orders based on a mixture of content keywords and dates, instead of just by date of bookmarking plus manual rearrangment.

      Maybe there's even room for users to be able to define their own space of "/usr/local" if they decided the local sysadmin screwed it up...

      --
      "Provided by the management for your protection."
    2. Re:are you serious? by Brandybuck · · Score: 1

      ways of viewing filesystems with user-decidable hierarchal tree views could be useful.

      The problem is, people will always go with the default. That's why they're using Windows to begin with! What makes you think they'll sit, engage their brain cells, and do something other than the default filesystem view? The number of Windows users who will actually use this functionality is exactly equal to the number of Windows users who reorganize their menus: approximately six worldwide.

      --
      Don't blame me, I didn't vote for either of them!
    3. Re:are you serious? by gnuslov · · Score: 1

      See GNOME Storage. It's still a work in progess, but it's exactly what you describe and sounds interesting.

    4. Re:are you serious? by CmdrTHAC0 · · Score: 1

      Besides GNOME Storage that another poster mentioned, segusoLand looks rather interesting as well. I was actually thinking about inventing the same wheel once; I'm glad I didn't bother.

      --
      __CmdrTHAC0__
      In Soviet Russia, Spanish Inquisition doesn't expect YOU!!
    5. Re:are you serious? by CmdrTHAC0 · · Score: 1

      It's all dependent on the UI. If the sort action is off under View > Arrange Icons > ..., of course fewer people are going to find it. If it's sitting right there on/under the toolbar as Sort: [by date |v], then vastly more people will see and use it.

      Generally people are intelligent and creative, despite thinking in so many different ways. They just have no concept of what's possible or impossible with computers, nor any idea of how to do some of the possible things, nor a sense of whether they'll "break" it by doing something. All this greatly hinders their proficiency. A good UI design can alleviate a lot of work of memorizing the mapping between task and command sequence.

      --
      __CmdrTHAC0__
      In Soviet Russia, Spanish Inquisition doesn't expect YOU!!
  11. Bah Apple did it before by Matthias+Wiesmann · · Score: 4, Informative
    Actually, the trick of embedding viruses into the filesystem was done a long time ago (1989) on the Macintosh.

    In the HFS filesystem, a file has two forks, a data fork, that corresponds to the file data in Windows or Unix file-system, and a resource fork, that contained structured data, basically bits of data that had an attached id, name and type.

    Resources were used to store all kinds of stuff. This was very convenient, as you could for instance store the window shape of a text document in the resource fork without affecting the content of the file (data fork). This was also used to store custom icons, text styling without actually affecting the data. You could even use it to embed fonts into word documents.

    The trick is, the OS used resources extensively, an application typically had an empty data fork and lots of resources (icons, pictures, sounds, windows, dialogs), including 68K code segments.

    One Macintosh virus, WDEF, used this mechanism to propagate. What the virus did, was add resource of type WDEF to the database file describing all the icons on the desktop. WDEF resources were window definition code. So when the Finder (file explorer) opened this database file for a given volume, the resource would get loaded and overloaded the default window drawing code, thus enabling the virus to execute and spread.

    1. Re:Bah Apple did it before by Tux2000 · · Score: 4, Informative

      NTFS has "Streams", essentially a more generic case of the HFS. You don't just have two forks, you have a nearly infinite number of forks/streams, with the unnamed stream being the "normal" file. Windows uses this forks for file descriptions and a few other things. But nearly nobody knows this feature. It seems even the virus programmers don't (ab)use it.

      Google found among others this page explaining those streams a little more.

      The most evil thing about streams is that you can only see the default stream using "onboard" tools like "dir" or the Explorer.

      Tux2000

      --
      Denken hilft.
    2. Re:Bah Apple did it before by david.given · · Score: 1
      Acorn's Risc OS (a very early and startlingly good OS for the first ever ARM-based microcomputer) took things one step further: an application was a directory. The files in the directory defined the application, so the application could store whatever it liked in there.

      Some of the files had special names. !Boot and !Run, for example; !Boot was executed when the application was first seen by the filer (and did things like load the application's icon, register file types, etc) and !Run was executed when the application was double-clicked on.

      Unfortunately, Acorn weren't thinking about security when they designed this. (Hey, state of the art in those days was MS-DOS 3 and System 6.) !Boot in particular was a virus-writer's heaven. Stick your floppy disc in the drive, bring up a browser window and your virus automagically loads...

      Incidentally, you can still buy Risc OS if you have an Acorn micro or a clone thereof. At one stage someone had even done a port to the Psion Netbook, but that seems to have evaporated. In terms of usability, it still knocks the Windows and MacOS desktops into a cocked hat --- despite being designed about two decades ago. If you want something more modern, and free, the ROX Desktop incorporates a lot of Risc OS' design elements into a desktop system that runs on Linux and X. Damn well, too.

    3. Re:Bah Apple did it before by Lt.Hawkins · · Score: 1

      Not the unnamed stream. the DATA stream is the real file in NTFS

      --
      -- My Sig is a P228.
    4. Re:Bah Apple did it before by Ch_Omega · · Score: 1

      "But nearly nobody knows this feature."

      And now it's been mentioned on Slashdot.

      "It seems even the virus programmers don't (ab)use it."

      Bet a few of them just got some ideas. :)

  12. to anwser your question... by nsebban · · Score: 0, Redundant

    "Am I being paranoid ?"

    Talking about a filesystem that you never used, as a user/developper/hacker, and criticizing it's features 2 years before it is out, for me is not a solid argument.

    So IMHO you are paranoid...well, for the moment :)

    --
    ____
    nico
    Nico-Live
  13. Who? Everyone by MadMirko · · Score: 0, Redundant

    It is feasible that even home users will be encouraged by the variable structure to adapt file management functions such as searches or the file explorer to their own specifications, for example by standardizing search paths.

    In short, everyone who will benefit from a unified way to organize their data regardless of type. Heh.

    Your question doesn't make any sense, nor is there any information available to base an answer on, because:

    Complete implementation of the system, on the other hand, is likely to take one or several years to come to fruition.

  14. "and I will not be using it if given a choice" by duffbeer703 · · Score: 4, Insightful

    Solution:

    You will not have a choice.

    --
    Conformity is the jailer of freedom and enemy of growth. -JFK
    1. Re:"and I will not be using it if given a choice" by Zardoz44 · · Score: 1
      You will not have a choice.

      If you won't be able to make such a trivial choice as that in a few years, then you might as well give up now. The OS they make you run will be the least of your worries.

  15. Nothing to worry about, folks by Txiasaeia · · Score: 4, Insightful

    What do we do now to protect our computer from spyware? Regularly update and run adaware. What will we do with WinFS? Regularly update and run adaware longhorn. No problem. I haven't had spy/adware in freaking years; of course, it helps that I've switched to a superior browser...

    --
    Condemnant quod non intellegunt.
    1. Re:Nothing to worry about, folks by the_truk_stop · · Score: 3, Informative
      I haven't had spy/adware in freaking years; of course, it helps that I've switched to a superior browser...

      I haven't had (spy|ad)ware for years either. My solution is a bit more comprehensive than a browser, however. ;)

    2. Re:Nothing to worry about, folks by Clockwurk · · Score: 1

      My solution was one step. And I didn't have to give up all my nice windows software

    3. Re:Nothing to worry about, folks by addaon · · Score: 1

      What do we do now to protect our computer from spyware? Use OS X. What will we do with WinFS? Continue to laugh at those who do not.

      --

      I've had this sig for three days.
  16. Well... by Chess_the_cat · · Score: 1, Insightful

    Who will use it? Probably the millions of people who buy it or a those who buy a new computer with it already installed. Let's put our thinking cap on here people.

    --
    Support the First Amendment. Read at -1
  17. Object-oriented file systems by dpilot · · Score: 1

    The IBM iSeries has been on the market for some time, as has its predecessor, the AS/400, and its predecessor, the System/38.

    I hope the USPTO considers expired patents in their prior art searches on the WinFS IP submissions.

    --
    The living have better things to do than to continue hating the dead.
  18. Patents by dpilot · · Score: 4, Interesting

    The scary thing about WinFS will be the patent protection.

    We've seen too many patents granted for which there certainly appears to be prior art. Someone else brought up the moniker, "Object Oriented Filesystems," and danced around the concept of single-level-store. That stuff goes back to the old IBM System/38, whose patents have probably expired. (It actually goes back further, but S/38 made it out the door.)

    As others have said, metadata has been on the Apple resource fork since 1984, and OS/2's HPFS had Extended Attributes (OS/2 even had Extended Attributes kludged onto FAT.) prior to 1990. Then you (and others) bring up Reiser4.

    I wonder what the patent filings on WinFS will look like. Reiser4 is obviously "published", but it would be good if there were some way to make the USPTO aware.

    --
    The living have better things to do than to continue hating the dead.
    1. Re:Patents by pb · · Score: 1

      I agree... MS is currently licensing FS patents with prior art--for VFAT. But maybe IBM can help us out with this one; they probably have a boatload of filesystem and database related patents as well (you mentioned HPFS, which surely is the reason that MS isn't trying to get people to license NTFS patents...), hopefully they aren't all already cross-licensed with MS... :/

      --
      pb Reply or e-mail; don't vaguely moderate.
    2. Re:Patents by kawika · · Score: 1

      I can't think of one situation where Microsoft has tried to sue some company for patent infringement. Many have sued Microsoft though.

    3. Re:Patents by dpilot · · Score: 1

      Have to think about that one...

      But have they threatened?
      I seem to remember a Linux project or two shut down under 'suggestion' from Microsoft.

      Chilling Effect is the key phrase.

      --
      The living have better things to do than to continue hating the dead.
    4. Re:Patents by Anonymous Coward · · Score: 0

      Microsoft could release Windows 95 under the GNU GPL, and Slashbots would still bash them for... um... sorry, I'm not a creative enough thinker to be able to come up with a way that would be evil, but rest assured someone would.

      This is Slashdot, basically. Any good deed Microsoft ever does will be ignored and forgotten. Any evil deed Microsoft has ever failed to do will be attributed to them anyway. Insert your own "you must be new here" joke here.

    5. Re:Patents by hplasm · · Score: 1
      but it would be good if there were some way to make the USPTO aware.

      Don't they need to become self-aware first? :>

      --
      ...and he grinned, like a fox eating shit out of a wire brush.
  19. The only thing i know about WinFS by Jukashi · · Score: 0, Troll

    is it'll take forever for the kernel to have write drivers for it :p

  20. Re:Microsoft knows it by Digi+Dude+Takato · · Score: 1

    Yes this is Microsoft, and have we forgotten about the little WinXP BS that happend? I will tell you that I'm not half as tech savy as any one else on this site, but even I've been shown the flaws in XP. If Microsoft even cared about a good prodoct any more, there wouldn't be any flaws in the final product in the first place.

    --
    ---For philosophy and fun,---

    THERE IS NO POWER GREATER THAN X
  21. MSDN article posted yesterday by Tronster · · Score: 1

    How timely, as yesterday MSDN posted a thick article on WinFS.
    While the article date is December 2003, the date on the front page of msdn.microsoft.com is January 28, 2004.

  22. Re:Asshat supreme by buchanmilne · · Score: 3, Insightful
    Considering that MSDN has the following to say:

    "For traditional file-based data, such as text documents, audio tracks, and video clips, WinFS is the new Windows file system. Typically, you will store the main data of a file, the file stream, as a file on an NTFS volume. However, whenever you call an API that changes or adds items with NTFS file stream parts, WinFS extracts the metadata from the stream and adds the metadata to the WinFS store. This metadata describes information about the stream, such as its path, plus any information that WinFS can extract from the stream. Depending on file contents, this metadata can be the author (of a document), the genre (of an audio file), keywords (from a PDF file), and more. WinFS synchronizes the NTFS-resident file stream and the WinFS-resident metadata. New Longhorn applications can also choose to store their file streams directly in WinFS. File streams can be accessed using the existing Win32 file system API or the new WinFS API."

    So, it seems that the files themselves are still stored in a filesytem, it's only the metadata that is stored in "WinFS".

    The data itself does *not* live as a blob in a giant database.


    There are so many words for you, but Idiot seems to sum you up the best.


    Nice, call people idiots based on your (most likely) incorrect interpretation of something you haven't seen, or (it seems) researched.
  23. Does not sound like a problem to me by spitzak · · Score: 3, Insightful

    Even from the quick description you gave, it sounds pretty safe to me. Not modifying the underlying file system is IMHO a good idea and mitigates all the paranoia you are having.

    Windows already has the file associations like knowing that clicking a .jpg should run a certain image viewer. This is not done in the file system it is instead done by another program that reads normal files and determines this information from the normal files. Now we all know that those file associations can be mucked with (ie hijacked to run another program) but in fact any such messing with it can be determined by a program reading the setup files, and easily avoided by a program using *less* code to run a program.

    Compare with a worst-case scenario where the system only had a "run this file" command and you could not determine what it did because it was encrypted into the file system (sort of what you really fear WinFS would do). Then somebody hijacking the .jpg extension would be a real and unfixable disaster. But in fact they are avoiding this if your description is at all accurate. This is a *good* thing.

    I do worry about some peoples intentions for meta data. In my opinion meta data should be used *only* as a "cache" of data that could be determined from the file itself. An obvious example is an image preview. But the file type and program should also be figured out using a program like the Unix "file" command and the result cached in the metadata. You could even make schemes by which the author, owner, permissions, date and time, and even filename are considered cached metadata and determined from the file contents. We should not have to rely on the correct transmission of anything other than the "data" bytes and the file length in order for a program using a file to do the correct and predictable thing.

    I am worried that in fact most recent ideas in filesystems are going exactly the wrong way, and in fact Microsoft may be doing this right for a change.

    1. Re:Does not sound like a problem to me by Anonymous Coward · · Score: 0

      Not all information can be determined directly from a file itself, and hence metadata needs to be stored separately. For example, file name, last access time, and description are all metadata that should be stored separately. I mean, a text file should remain a text file, regardless of what metadata somebody should decide to associate with it. You could define a format (say, XML) which contains all of this stuff, but that would be a separate idea.

      aQazaQa

    2. Re:Does not sound like a problem to me by captaineo · · Score: 2, Insightful

      This "cache-only" thing is a good idea. Modern Mac OSX programs handle metadata this way - if a resource fork is present in the file, they use it, otherwise they generate a new one based on the file contents. But there are exceptions. I was bitten because Final Cut Pro 4 does NOT like opening project files that are missing their resource fork. I store files on an NFS server and made a habit of deleting the "._foo" auxillary files that OSX spews all over the place to store resource forks on a UNIX filesystem. Final Cut did not like this...

  24. How is this less secure? by Tom7 · · Score: 1

    I don't see how this is much different from the registry, through which one can do a lot of the things you mention. And you don't even have to be buzzword compliant to use it!

  25. Argh by JackAsh · · Score: 1

    [quote]It is also very flexible and extendable, which, for Microsoft, can mean 'slow' and 'exploitable'.[quote]

    Prepare for Karma burn in 5..4..3..2..

    I guess nothing in the Linux world considered "flexible" and "extendable" can be considered "slow" or "exploitable"?

    *cough* *cough* X-Windows *cough*.

    Seriously, I don't like Microsoft any more than the next guy, but this kind of comment right on the front page shows why Slashdot has to be taken with a huge grain of salt to begin with. Let's all try to be a little bit more to the point and less editorial when posting news, mmmkay?

    -JackAsh

    1. Re:Argh by HeghmoH · · Score: 1

      What are you doing with a five-digit ID and still thinking that slashdot needs to do less editorializing?

      Despite the motto, slashdot is not a news site. It's a commentary site. If you're coming here looking for straight news with no opinion, you are coming to the wrong place. It is, to put it in programming terms, a feature, not a bug.

      --
      Mod down posts with a "Free Mac Mini/iPod" sig, they're spam!
    2. Re:Argh by Anonymous Coward · · Score: 0

      X Window System, if you're going to call it like that, at least capitalize the S: X-WindowS

  26. WinFS won't bother me much. For a while, at least. by The+Fink · · Score: 2, Insightful
    I have far, far more bothersome issues to worry about between now and whenever WinFS comes out.

    Let's see:

    • It isn't slated for release until late 2005, early 2006.
    • This suggests to me that what we're looking at in the current Longhorn builds is, in effect, early beta software.
    • Microsoft have a long track record of changing their software quite dramatically through the creation process -- a la NT5.
    • I don't particularly plan on upgrading to a Windows OS on my home systems if I can help it anyway. It'd have to have a hell of a lot of "must have" features before I'd consider doing so, since that would require an architectural switch for a lot of my equipment (Mac and Solaris to PC).
    • At work, the IT department can bother with issues involving security/spyware and so on. Of course, the IT department's past history suggests we'll be upgrading to Windows XP about the time that Longhorn is finally released, and that any worms/virii won't be of much concern to them...
    No, I don't think Microsoft will produce a particularly stable or reliable OS, or at least, not one which is much more stable or reliable than what they've released to date. Doubtless there'll be improvements, and doubtless there'll be new features to exploit. There always is, and I dare say always will be.

  27. Re:Asshat supreme by Anonymous Coward · · Score: 0

    Bravo, sir! I love flamebaits.

  28. Hans knows what you mean by Jonner · · Score: 1

    ReiserFS is where I am hoping to see these kinds of revolutionary features emerge. Version 4 is about to be released and it already has a number of features that are hard to find in general purpose filesystems. If you really want to expand your thinking about data storage and access, read Hans Reiser's vision for the future of ReiserFS. Your ideas would definitely be implementable in his model.

  29. Can we really expect anything better? by shadowxtc · · Score: 1

    The logical move for them would have been to go with the original story - create a whole NEW filesystem - preferrably taking in as many enhancements from ext3 and Reiser - keeping as much of NTFS as possible - and adding some incredible new "WinFS" features. This would have been totally acceptable in my book. Indexing services and filesystem add-ons, no way. I learned my lesson with DoubleSpace/DriveSpace years ago.

  30. wouldn't it be great... by Anonymous Coward · · Score: 0

    ...if they upgraded ext2 so that file metadata was stored in something standard like XML. Maybe consolidated into an SQL database for easily accessible and centralized storage. Think of how neat that would be!

  31. Re:Asshat supreme by sld126 · · Score: 2, Informative

    Depending on file contents, this metadata can be the author (of a document), the genre (of an audio file), keywords (from a PDF file), and more.

    This sounds exactly like the Desktop Database in Mac OS8/9, with a few extra fields.

    Now, how is this new exactly?

    --
    You're just jealous because the voices only talk to me.
  32. Just get yourself a NAS.. by Anonymous Coward · · Score: 0

    They are becoming the only real way to keep your data safe from the host operating system since there is not all that much any os can do about an external box (other than complain about not being to offer extra "features" you probably don't want).

  33. My take? by Kanasta · · Score: 1

    Tom's a long winded person who tries to impress by using big words unnecessarily.

  34. Who Will Use It? by Fenis-Wolf · · Score: 1

    I'll use it. In fact I'm looking forward to it. I think it will be easy to program for, and make it easy to find and sort things into classes. I take many digital photos and I will definately appreciate being able to add meta data to the file that gives background on where it was taken, when, and the circumstances. Much like a photo-album where you scribble remarks under the photos.

    --

  35. Re:Bah I don't believe it :) by filtur · · Score: 1

    I was led by other Slashdottoers to believe that Mac's can't have a virus