Slashdot Mirror
Windows 2000 & Windows NT 4 Source Code Leaks
PeterHammer writes "Neowin.net is reporting that Windows 2000 and Windows NT source code has been leaked to the internet. More on this as we hear it."
← Back to Stories (view on slashdot.org)
← Back to Stories (view on slashdot.org)
A quick peek around indeed shows something named Windows.Source.Code.w2k.nt4.wxp.tar circulating, but this had to happen sooner or later, considering the number of institutions with access to the source. Wonder how long it'll take before a torrent of new worms using newly discovered security holes tear up the net.
I for one would love to peek around in this, more out of curiosity than any desire to actually do something useful with it.
The next great MMORPG.
Now will everyone stop bitching about Windows not being open source?!
Later isn't going to work, since the server was down even before it hit the Slashdot front page. I empathize with their server.
I did, however, managed to grab the news blurb (but not the, at that point, 214 comments) from the intermittent front page:
Torrent, anyone?
I had but a simple dream, to destroy all humans.
so here is the story
Neowin has learned of shocking and potentially devastating news. It would appear that two packages are circulating on the internet, one being the source code to Windows 2000, and the other being the source code to Windows NT. At this time, it is hard to establish whether or not full code has leaked, and this will undoubtedly remain the situation until an attempt is made to compile them. Microsoft are currently unavailable for comment surrounding this leak so we have no official response from them at the time of writing.
This leak is a shock not only to Neowin, but to the wider IT industry. The ramifications of this leak are far reaching and devastating. This reporter does not wish to be sensationalist, but the number of industries and critical systems that are based around these technologies that could be damaged by new exploits found in this source code is something that doesn't bare thinking about.
We ask that for the wider benefit of the IT community that members and readers support Microsoft by forwarding anything they know about the leak to the Microsoft's Anti-Piracy department.
Please do not post any links/screenshots/hints or anything to do with the source code outbreak. Discussion is allowed but we will not condone people spreading this source code.
Are people deeply involved with OSS going to start fixing bugs in Win 2k? Might be fun and a dagger in MS's heart.
"We fix bugs in 24 to 40 hours, much faster than OSS."
Do I have to sign an NDA?
Seriously, this should be pretty interesting. I wonder how many bugs are ACTUALLY in the NT kernels...
It's better to vote for what you want and not get it than to vote for what you don't want and get it.
- E. Debs
First point: The tagline for Neowin.net is "Where unprofessional journalism looks better" I'll take what they say with a block of salt.
Second point: The odds of getting one's hands on the full source to NT4/2K are slim to none--even most Microsoft folks couldn't do that. The code is probably scattered across multiple servers in Redmond, for starters, and you'd only be given access to the parts you needed to work with.
Third point: The article has absolutely no detail to it whatsoever. For all we know, they've released a trojan masquerading as the source code and are trying to sucker geeks and 14m2rZ into downloading it.
Neowin has learned of shocking and potentially devastating news. It would appear that two packages are circulating on the internet, one being the source code to Windows 2000, and the other being the source code to Windows NT. At this time, it is hard to establish whether or not full code has leaked, and this will undoubtedly remain the situation until an attempt is made to compile them. Microsoft are currently unavailable for comment surrounding this leak so we have no official response from them at the time of writing.
This leak is a shock not only to Neowin, but to the wider IT industry. The ramifications of this leak are far reaching and devastating. This reporter does not wish to be sensationalist, but the number of industries and critical systems that are based around these technologies that could be damaged by new exploits found in this source code is something that doesn't bare thinking about.
We ask that for the wider benefit of the IT community that members and readers support Microsoft by forwarding anything they know about the leak to the Microsoft's Anti-Piracy department.
Obliteracy: Words with explosions
I clicked on this while it was in the Mysterious Future. After the site loaded, I saw a "this server is too busy to service your request" notice. When I checked back on the Slashdot main page (mere seconds after clicking the link the first time), the story had been posted publicly.
Give a whole new meaning to the phrase: "Slashdotted already!?"
This space intentionally left blank.
I could easily name files "windowsxp.source.tar," but that means nothing.
There's plenty of worthless spam on the internet already.
I've been upgraded to "bad"!
OK lets see how much THEY'VE nicked from Linux.........
Maybe peer review will send a flurry of discovered holes to Microsoft for them to patch.
Maybe this will be positive for all of mankind!
Or maybe I'm crazy.
clifgriffin > blog
Anyone got a torrent yet?
Full file listing with sizes: http://heim.ifi.uio.no/~mortehu/files.txt I suggest mirroring ;)
Tim Dorr
Owner/Manger
A Small Orange
Looks like the server is ./ed
GLL - General Leaked-Souce license
Ha ha!
Now we'll have all sorts of new viruses and worms....
The cesspool just got a check and balance.
Among the programmers I know who use the Microsoft source code, if you the "diff", there are many very small changes between the source files. It is a question, are these changes intentional, and signed, and in a database. I would think yes, there is no other reason for it.
The leaking company will soon be identified unless the code was first changed in a very strong way.
Seriously, don't look at it, you will no longer be considered "clean" and might become a liability to any project you work on.
That was fast. //you know what I'm talking about
Of course their source code leaks...they don't properly clean up their pointers....
Oh wait a sec...8-)
What ever you do, don't let the code influence your projects. The last thing we want is Microsoft joining in with SCO and accusing the open source community of using MS code in an open source project such as Linux. Sure you probably wouldn't want to with its reputation, but I am sure there would be those who would be tempted.
Jumpstart the tartan drive.
Neowin Message
The server is too busy at the moment. Please try again later.
Yep, looks like an error. Must be real Windows code then...
"A door is what a dog is perpetually on the wrong side of" - Ogden Nash
Microsoft just needed a push in the right direction, right?
-S
We Apprentice Developers and Designers
Anybody seen a mirror yet? I tried looking at the article before Slashdot even posted it, but I'm guessing there was some sort of n-dimensional Internet traffic, since the article was unavailble before slashdot readers should slashdot it.
Good lord - we have the ability to impact sites in all possible times and places - the clicks so numorous is overwhelms the very fabric of space and time and overwhelms a server before a link is posted.
52 Weeks, 52 Religions with John Hummel
Well, looks like the server that got linked couldn't handle all the /. traffic. But just based on the post, did we not all think this would happen sooner or later? Knowing M$, they'll probably use this is proof as to why they shouldn't show their code. After all... governments use it. What if it gets out? Heaven forbid some Linux guys take it apart and make it better. :)
Now, we can see how tightly integrated Internet Exploder is into the OS...
.. possibly some of the broken bugs too)?
Oh, say...If the code to IE is REALLY in there, can we have some smart, talented hacker PLEASE fix all those stupid security holes (and
Oh yeah..That's right..It's called Firefox, eh?
= Grow a brain...
Seriously, the previous article lambasting open source for being vulnerable is nothing when compared to eyes backed with malicious intent poring over Windows source code for new exploits. So much for security through ignorance.
A feeling of having made the same mistake before: Deja Foobar
From the site: Please try again by pressing the refresh button in your browser.
Oh boy...
The funny thing is the fortune that appeared in the appropriate slashbox when I first saw this article.
;-)
"Never trust an operating system you don't have sources for.
-- Unknown source"
My formatting was fucked up, but Ill repost without the Mirror, since everyone else posted the mirror:
,Could this potentially help the WINE Project?, Is anyone working on replacing IE with Konquerer?, Will this be able to help the effort to make driver "wrappers"?
The server is already slashdotted, but I think this is major if it is true. Microsoft's legal dept is probably planning an all-nighter tonight, and will be working in shifts to frantically sue people who are connected in any way with this.
If this is true, the shit will definitely hit the fan. I wonder how this was done. The IP contained in Win2k/NT is worth BILLIONS(arguably). They obviously would have some serious security on it.
On a lighter note: When will we see some tricked out Windows 2000 "Distros"?
Mirror with comments.
Hope it's all just a bluff.
"Oppression and harassment is a small price to pay to live in the land of the free." -- Montgomery Burns.
I guess Windows is now "Fertile Ground for Foul Play" too, like W. Russell Jones claims (from the last article)
...Windows 2000 and Windows NT source code has been leaked to the internet.
The Internet, however, being a polite sort of fellow and completely undesirous of the undoubtedly horrible ramifications of having such a beastie running around loose, gently replaced the source code and gave Windows a friendly pat on the head.
I watched C-beams glitter in the dark near the Tannhauser gate.
Great! this will now confirm what we all know ... How insecure it really is!
Do NOT read that code if you ever wish to program for an open source OS, ever. Doing so will make you tainted- you open the project up to allegations of copyright infringement. Unless you never want to contribute a single line to Linux, *BSD, etc, checking out that code is a bad idea. Its almost a surprise MS didn't "leak" Win 95 or 3.1 years ago to catch open source developers like this.
I still have more fans than freaks. WTF is wrong with you people?
It *amazes* me that it hasn't been routine.
Windows source code is not some deep dark secret that is locked in a vault, only let out during builds for the product releases.
*MANY* people have access to the Windows source code. A number of people in my own university have it. There are strict licensing considerations, but when has that ever worked before? Surprisingly, none of the people with source access has ever pulled off the stunt where it's broadcasted. I have always wondered why.
-fb Everything not expressly forbidden is now mandatory.
We all know the real valuable stuff is in error.h.
So, what does it say?
right after a story that was about open vs. closed source
I never said I was smart, I just said I was smarter than you
as this source code is now out, can we expect people in the wine project to start using it as a basis for their coding. I'm sure it would provoke a legal battle of the SCO type (but with reason this time) but surely with a bit of clever coding and a bit of reference to this code wine could be advanced very far. Sure it's illegal, but so have many things Microsoft has done. I haven't been able to get through to that link (/.ed). This source code could, theoretically, be a big step for ReactOS and the WineX and Wine projects particularly as it is 2000 which has support for a lot of the stuff that NT does.. very exciting!
tim
It will be very interesting to follow this and see who was responsible for the leak, if that is even possible. I'm guessing that Microsoft will blame someone rather than remain silent.
Could it be someone who had access to the code under NDA?
Thoughts?
This pretty much destroy's any argument that Windows is more secure because "the bad guys" can't look at the source code. And yet it won't get the positive aspect of "the good guys" reviewing the source code for bugs as it is illegal to make a copy of the code without a license to do so.
Especially after this little doozy.
It was slashdotted before it was posted to slashdot.
This is not good. Windows is designed primarily with 'security by obscurity' in mind. The security holes indeed show up every often and we have worms making it to the gazillion windows boxes before the patch does. Get ready for a deluge of worms/virri. Another bad week/month for sysadmins.
Free XBox, PS2
See previous article
Considering Microsoft's record with keeping its source closed, and the amount of recycling of code they do from system to system, I wonder what security implications the source will have. Hackers might find it even easier to discover holes. Of course, it's not as though Microsoft worries that much about security in the first place...down with security through obscurity!
neowin.net is down - don't know if it is because of slashdot, or various other news site reporting this.
For german readers, or people understanding german here is a link
german article
reporting about the contents of the article on neowin.net
http://heim.ifi.uio.no/~mortehu/files.txt I'll wait till i can download it into a lab
I'm sure many of us want to pick at the code, but is it really worth it at the moment? Now that so many news orgs have made it well known, wouldn't it be fairly dangerous to try to grab a copy in the next comming hours? I mean, this must piss both MS and the US Gov off. ...with that said.. cant some troll be useful and..
I've left to find myself. If you happen to see me, please, keep me there until I return.
Open Source is Dangerous? ;)
How about Forcibly Opened source?
How...surprising! Look! A really good reason to move from previous versions to MS's new DRM enforced versions.
This is obviously a plot by SCO to further discredit the Linux and Open Source community. Does their evil know no end?!
I haven't been able to even get to Neowin, it's been slashdotted since before this story even made it to "The Mysterious Future" here on /., but think about what this means if this is actually true. The potential vulnerabilities. All the trade secrets Microsoft put in there. Hell, IE 5 was released with Windows 2000, so if this is full source, it means IE 5 and the trident engine are in there as well.
If this is true, today may be the day that everything changes.
Need i say more?
Is the code that bad such that this news story considers this so dangerous to Microsoft? Seems a bit hysterical to me.
I don't know how useful it is to WINE, etc... OSS developers not wanting to be "contaminated" by looking at the source code won't look at this stuff anyway.
Here in the Download section...
I'm guess'in this will leave XP open to attack (in some ways) as well???
better remove your sig... theif... :P
ReactOS have announced they have hit all upcoming milestones and consider their project "feature complete".
They'll be a sudden flurry of exploits coming soon. After that, if Microsoft move to leave Windows open, it should start benefitting from the multiple eyeballs approach. I wonder (if it's true) what nasty tricks will be found in the code to prevent interoperability?
Get your own free personal location tracker
I wonder how long it will be until someone runs the comparator in it?
Microsoft Windows 2000 was written with GNU/Emacs!
You need to restart your computer. Hold down the Power button for several seconds or press the Restart button.
...shredded and ripped apart by the well-known, full-contact sport known as "slashdotting".
Seriously, if this news proves to be true, it would actually do Windows some good in the long run. Maybe Bill actually *wanted* it leaked out, just so that he could reap some of the supposed benefits of open-source development.
Strangely enough this Leak will make Windows more secure in the long run as the code can be studied and possible exploits be "published"
Help fight continental drift.
Or was that just a preview of the fun and chaos that source code leaking on the internet can bring?
2003 - year of the worm
2004 - year of the leaked source code
I found the source code here.
Prevent email address forgery. Publish SPF records for y
Actually this will push them towards DRM and other content management lock-down.
"If we had DRM, we could have prevented the source code from being transmitted freely."
If this is true and there are serious IT wide consequences from this, then it will be the best case to pass laws implementing DRM.
The surprise isn't how often we make bad choices; the surprise is how seldom they defeat us.
And you thought there were a lot of viruses and known security problems around already... just wait (if this is true).
is truly history...
Ok so here's MS's plan.
... Ya, I'm sure you know what goes here.
Step 1) Leak their source
Step 2) Sue Onen Source developers down the road because obviously they have studied the MS leaked source.
Step 3)
Ok but seriously, I'm not touching it. The last thing I need is Microsoft saying that I somehow owe something to them.
Jerks.
--
Mike
-- Mike wildcard@illuminatus.org
Albino Black sheep
Where law ends, tyranny begins -- William Pitt
Granted, there's already lots of schools and whatnot that have access to the source, but if this is for real, then expect all hell to break lose. Should be interesting to see how many vulns get discovered in the first month alone from this. Regardless, whoever leaked the source better hope they're in a far, far away country immune to teams of sharks-dressed-as-US-lawyers.
"Hell hath no fury like a woman scorned for SEGA. ..."
*dons tinfoil hat*
What are the chances Microsoft did this on purpose? Note that its older versions of the OS that are leaked. Next up Redmond will probably urge everyone to upgrade away from such insecure OSes and thus also give them an excuse to stop supporting them.
... I might think Microsoft leaked it on purpose, so the OSS community would find the bugs, point them out publically, and even describe how to fix the problems.
Of course, I'm not the suspicious type ... :-)
JWhat would be the legal ramifications of:
1) Someone taking the W2K source and making an Out of the Country host of a tweaked (and improved?) W2K source? Would this be illegal to use? I realize it would be illegal to distribute in the US, but would it be illegal to *use*. Especially if you owned a valid copy of W2K?
2) If you own a valid copy of W2K, could you legally look at/use the leaked W2K source?
3) If there were any derivative works off the W2K source, I'd think the W2K license would allow you to use any subsequent O/S created with that source by independent developers. I realize the EULA may forbid this, but I seriously doubt that would hold up in court. You probably couldn't do this from a commercial standpoint, but as a private citizen, I can't see there being any legal recourse MS could take against using what would effectively be an OSS version of W2K.
Anyway, something to think about.
What do you do if you are a company who's most basic money generating product is predicated on secrecy? What value do you bring to the table if that secrecy is compromised?
Release source code, to have more developers working on Windows security.
Mr Bill isn't the only one in a bad situation here, with the source code available to all those crackers/virus writers, there will be lots of new worms and exploits, millions of Windows users will be in a much worse situation too.
Worms and exploits will start to appear quicker, and more frequently than ever.
The IT section color scheme sucks.
Sco should verify that their source isn't found in Microsoft sources. Heck, they might find those lines that they reported in the Linux Kernel probably in Win2000 kernel.
Imagine that!
Now we just have to wait for SCO to have a leak and everyone's dirty laundry is out in the open.
---- The geek shall inherit the Earth.
...If this is a ploy by M$ to say source is out there, they are insecure, upgrade (read, tithe to them) for "good" security. Just a thought...
Allthough driver 'wrappers' and the like would be awesome for the linux community. think of the lawsuits that would start if linux 2.7.0 had much much better support for NTFS and the like.
this actually can hurt us more than help.
This reporter does not wish to be sensationalist, but the number of industries and critical systems that are based around these technologies that could be damaged by new exploits so now maybe we will finally have an independant auditor review the code and we can finally see just how buggy this code actually is. Needless to say if this story is true it is not good news for lots of companies who put faith in Bill and his minions
hell, I bet Medusa would turn to stone if she saw the code.
"You will need to upgrade to windows 2003 to be more secure now that the source code has been leaked for NT and 2000.", said marketing expect Haywood Jablowme.
Neck_of_the_Woods
#/usr/local/surf/glassy/overhead
In the last article on the /. home page, we have W. Russell Jones talking about all the insecurity of having source available in open source projects.
I'm afraid we've reach a massive failure here in security by obscurity, but time will tell. If this is true and if there are lots of security holes discovered, I find it hard to believe even a company of Microsoft's size can respond quickly enough to keep the outbreaks down. This threat is why open source is better than what W. Russell Jones made it out to be. The threat of security failing because of leaking source just isn't there with open source.
-N
I've nothing to say here...
lines of code?? Thats gonna take a while to download... I'll wait for the 4 DVD set.....
So Long and Thanks for all the Fish.
Now I guess those of us who write code for free project have to be double carefull what code we read and who tracks us doing so.
I can allready forsee the seize-and-desist letters to free projects, claiming that one or more developers are have been tainted by knowledge of 'proprietory information' from microsoft, and the enclosed clicktrail on www.w2k-source.com provides the nessecary evidence. And you thought you were just checking out driver support info on a community site.
mfg lutz
Just goes to show Open Source isn't the only fertile ground for foul play. :)
What the NT kernel does is well understood. The object code is widely available, and key parts, like file system formats, have been reverse engineered. There's plenty of documentation. A few major development shops have access to the source anyway. If you're into kernel architecture, it might be interesting, but otherwise, so what?
I wonder what service pack these are of?
No point in someone trying to exploit a bug in the source if it's of the original release and the hole has already been closed by a service pack. And since the service packs are binaries and not source diffs, it'd be pretty hard to bring the source current to find out what will really work currently.
an attempt to get the open source community to debug their crappy code
an SCO-style trojan, trying to get their code into oss
shaa, like we're going to fall for that one!
Peace & Blessings,
bmac
Microsoft is rumored to prepare a lawsuit regarding misappropriation of Win2k source code in Linux kernel version 2.0.
Opus: the Swiss army knife of audio codec
If the story is true, i'm not so convinced about that yet.
Probably some more worms will come out within the first weeks. But in the long run MS might finally learn the value of bugs getting shallow by lots of eyes looking at the source. I don't think companies will suddenly start to copy the source and using it themself - the fear of getting caught will be too high. As much as MS will dislike this, i think the users will have more advantages in the long run (and maybe this is even not soo bad as MS will think it is).
So will we finally find out exactly what kind of information that IE is keeping on us?
Maybe this will be the event that helps people to realise just how dangerous it is to be so reliant on a single vendor.
While there are good and bad aspects to this, I think I'm going to put my windows boxes into lockdown if & when the rumour is confirmed.
It's only reasonable that software with so many holes will leak!
^_^
What I look forward to is seeing if Microsoft has taken any components from Linux over to Windows. This is a HUGE day!
To make a pun demonstrates the highest understanding of a language
My source code was *leaked* the day it was made. Of course, I use Linux.
The eventuality of code leaks should definately be put as one of the advantages of the security of open source software.
I don't think there will be any difference for open source software on the availability of this things, for license problems should be a forbidden reading, but virus/trojan/exploits authors will not have this kind of moral/legal problems.
It would appear that two packages are circulating on the internet, one being the source code to Windows 2000, and the other being the source code to Windows NT
.
How to easily find the Windows source code packages in your daily P2P incoming directory:
rosco@dipstick:~/emule/incoming$ ls -l --sort=size -r
total %@*@&^23462&^% bytes
-rw-r--r-- 1 rosco rosco 645124103 Feb 12 22:49 starwars.zip
-rw-r--r-- 1 rosco rosco 658124896 Feb 12 22:50 nt.zip
-rw-r--r-- 1 rosco rosco 660100457 Feb 12 22:49 goodbadugly.zip
-rw-r--r-- 1 rosco rosco 705012756 Feb 12 22:49 dasboot.zip
-rw-r--r-- 1 rosco rosco 706107014 Feb 12 22:56 daftpunk.zip
-rw-r--r-- 1 rosco rosco 710127685 Feb 12 22:58 chembros.zip
-rw-r--r-- 1 rosco rosco 9874520782^45 Feb 12 22:59 2ksrc.zip
-rw-r--r-- 1 rosco rosco 4578924574^37 Feb 12 23:12 ntsrc.zip
Segmentation fault. Core dumped.
"A door is what a dog is perpetually on the wrong side of" - Ogden Nash
Geek used to be a four letter word. Now it's a six-figure one.
Microsoft has always maintained that it takes a good 24 hours to compile a full version of Windows from the source, and that the increasing complexity of Windows has meant that modern computers don't compile modern windows any faster....
I'd be interested to know what the Windows source is compiled with though
Intel C compiler? I'm sure they couldn't stand the irony of using GCC. The NT codebase is supposed to be crossplatform do I doubt it's got any Assembler code in it - is it written in C or one of Microsofts own languages?
If so, what was it originally written in and when was the translation made? (Pls don't mod me informative - I may be way off the mark!)
I have been a user for about 10 years. This ends Feb 2014. The site's been ruined. I'm off. Dice, FU
like any one who would bother to review the code would want windows on there computer. Besides its probobly all spagithi.
Oh and All (or at least some) your source are belong to us
If microsoft decides to sue, they'll sue. There's no way to prove that you didn't read the source code.
STOP MISUSING APOSTROPHES, YOU MORONS!!!
While Microsoft's code is as taboo for open source projects as is any other code, that code has a 700 pound gorilla behind it.
The Internet interpreted the source code as damage and routed around it.
__CmdrTHAC0__
In Soviet Russia, Spanish Inquisition doesn't expect YOU!!
Sure enough, the authenticity of the files has been confirmed as within a certain c file, it had the code:
.05;
.05
// Don't forget to increment the Gates counter
if(errBlueScreen){
MS_Acct +=
}
Actually, that's the joke, it was more like:
9990 REM Don't forget to increment the Gates counter
1000 if $blueScreen = "Yes" then $MSAcct = $MSAcct +
1010 RETURN
They'd only be sued by the FSF if they had put GPL'd code into Windows.
> It *amazes* me that it hasn't been routine.
Because most people are paranoid enough to assume M$ watermarks each distributed copy to allow them to trace it back to the point of release. But now they are giving copies to governments like China and folks there just don't really give a damn about western notions of copyrights.
Democrat delenda est
change bool bugs = TRUE; to bool bugs = FALSE; recompile
What if we just use the parts that MS lifted from BSD?
How long will it be before someone fully documents NTFS by studying the source under the guise of having legally reverse engineered that information?
If whoever does this is careful and realistic, it seems very unlikely that Microsoft could ever prove they had done so with an illegal copy of Windows source code.
I predict that if this source is legitimate, that we will see full NTFS write support under Linux within a year.
And just think. What if there is 3rd party driver source in there too?
It's illegal, but I think it is bound to happen and we will benefit from it.
On the plus side, some of the comments are fairly humorous, especially when you note who wrote them and look up where they are today.
I dont have the source code and im really not interested, but how does one build the source for windows.. does it have Makefiles .. visual studio build files. I'm fairly curious how the build actually happens.
The Windows code hasn't had nearly as much peer review as open source OS's so I won't be suprised if this leads to a ton of exploits. The big problem here is that this source will be available to any black-hat that wants it--they obviously aren't going to be concerned about the legalities of obtaining leaked source code. But the businesses that use Windows aren't going to be able to audit the code for security leaks unless they obtain it illegally (or sign some agreements with Microsoft and shell out bundles of cash.)
Do NOT read that book if you ever wish to write your own books, ever. Doing so will make you tainted- you open your book up to allegations of copyright infringement. Unless you never want to contribute a single idea to the world, etc, checking out that book is a bad idea. Its almost a surprise authors haven't published their books years ago to catch potential authors like this.
In addition to the security implications this has, think about the implications this has on OSS writers? Previously, M$ tried to show the souce code to Windows to college students in the hope that they couldn't write OSS code because they'd have seen the Windows source.
This gives M$ a leg to stand on if they attempt to claim that any OSS has Windows code in it.
Any OSS writer that manages to get the code should proceed with caution.
I think from a legal standpoint it might be very important that OSS developers not look at the code. Even though they didn't leak it, MS still has rights to the code. If an open source program took advantage of illegally leaked code, what would the legal ramifications be on the OSS project? I don't know the answer, but I'd be willing to be real money that MS would sue. I remember reading an article where the SAMBA developer said he was very careful not to look at any code because of this. Reverse engineering is fine, but you don't get any help to do it.
because most people are, in fact, pretty honest.
The Kruger Dunning explains most post on
For the same reasons that Microsoft warned its IE developers to stay clear of Mozilla, open source coders should avoid even seeing this.
That said, I'd love to get hold of the dll code that does the equivalent of a window manager in X. How cool would it be to swap out a dll on the Windows box at work and have a completely custom windowing environment?
Have you ever heard of gzip?
until it's available on kazaa?
Technoli
I see bad things happening here... 1) Microsoft "accidently" leaks Win2k source. 2) Microsoft pays some guy to "contribute" to the linux kernel in a small way. 3) Microsoft then files an SCOish lawsuit against IBM (or whoever) claiming ip infringement in the linux kernel. Don't laugh. Stranger things have happened.
Assuming this is indeed true, what's the chance that MS released this on purpose, with the intent of a)eliminating as many legacy win2k/nt 4 users as possible to ensure a move to longhorn or b)creating an environment where an extensive patching system would be necessary and thus sellable?
just some ideas; i'm not a zealous ms hater, but i've seen companies do conceptually-similar things before.
I guess this will finally answer any lingering doubts as to whether Microsoft (or more accurately, an unscrupulous employee with an impossible deadline) ever incorporated any GPLd or LGPLd code in there.
Of course, if they did, that wouldn't necessarily be a good thing for the GPL, because then it Microsoft would have a *really* good reason to try and destroy it.
The ZX Spectrum Book 1982-199x
I wonder if the guys over at ReactOS (http://www.reactos.com/) are tempted by a look?
For those who don't know...
"ReactOS is an Open Source effort to develop a quality operating system that is compatible with Windows NT applications and drivers."
The odds of getting one's hands on the full source to NT4/2K are slim to none--even most Microsoft folks couldn't do that.
This is incorrect.
Its funny how people build up ideas in their heads about what its like in a large corporation, somehow like a hollywood movie with lots of people with dark shades and guns ala "The Net".
No, inside Microsoft is a lot more like "Office Space" and anybody with motivation could get the entire source with little trouble.
It was probably used to compile things like the Solaris version of Internet Explorer.
Personally, I always wanted to know how the NT/2000 kernel got somewhat stable. I'll bet there's GPL code from the Linux tree in NT/2000!
Are there any back doors showing in the source...
every day http://en.wikipedia.org/wiki/Special:Random
That is why the concept of Burden of proof exist. It is MS' job to prove your read it AND used the knowledge.
Help fight continental drift.
Just imagine the FUD/lawsuits/etc when, for some reason, Linux starts running on natively on NTFS.
But just for a while. MS will start even harder securing the sources in the future. The fixes for security leaks will be there sooner and a lot people are not interested in cracking but in getting a more secure system, so MS will get hints about security for free. So the bugs which are in the source will be fixed soon and the whole system be more safe for a while (till the next leak *g*).
I'm surprised this did not happen sooner (if it did happen now at all).
Besides, there are several obfuscating methods designed to hide the logic of the original code. They can be used to actually copy the code to the emulator (if the copied piece will work there). After that it would be hard to prove anything even in the open source.
Disclaimer: IANAL, but anyway, personally I would not feel guilty having W2K source code and using it to improve WINE. Because I think that the algorithms is a part of the math, which existed always even before humans came here. A programmer just discovers the piece of math and express it using one or another language. The gravity doesn't belong to Newton, the math formula that describes the gravity neither. Only the fact of discovery of gravity math description belongs to Newton, just for references. Only the fact that programmer wrote the code belongs to the programmer (or the employer), not the code itself. Just to refer in the report to the boss why one was so busy all the day. Getting the source code from Microsoft is not stealing - it's learning. There is nothing wrong in learning.
Less is more !
I don't know about the rest of you, but now M$ can make a reasonable (as in SCO-reasonable, which is to say reasonable-to-a-monkey-like-my-boss) claim that projects like WINE can be assumed to be tained once they reach version 1.0. M$ can be *expected* to go on all kinds of fishing expeditions to harrass these projects into oblivion.
This really sux.
=^..^= all your rodent are belong to us
Conversely, imagine if someone found parts of the 2k/nt4 code that were very similar to previously existing GPL'd code? that would be pretty interesting, too.
It was up for a while. I had about a minute to click around their site before it started saying "server busy". Members get to see new articles several minutes before everyone else, but this time it went down while it was still visible to members only.
100 GOSUB 7000 ; * Load stuff
110 GOSUB 900 ; * Show windows logo
120 GOSUB 20000 ; * Prompt for operator login
130 GOSUB 32000 ; * Fill half of memory with DLL's
140 GOSUB 16000 ; * Time waster loop
A feeling of having made the same mistake before: Deja Foobar
MS may just add different comments(or slightly modify the code) to each licensed source, and when/if they see a leak, they can easily find where the leak is coming from, for example they add something like "#Rewrite this later" on line 135 for your license, "#Redo this part" on line 563 for another license, etc. and when they see source leaked with a comment on line 563, they know which particular license is it coming from.
If this is true....
I think that now would be a very good time to sell all your shares/stocks in Microsoft
Life starts at the end of your comfort zone.
Imagine if somewhere hidden in the bowels of the Windows2000 source an intrepid SCO intern finds a sliver of SCO-owned Unix code. Then all hell would break loose...
As someone mentioned, this would be fascinating to just read the comments. Would it be possible for someone to strip out all the code, leaving only the comments for each file, minus comment lines that ARE code? It would be GREAT just to read the "intention" and "questions" living in that code and be able to associate each with a filename. Purely for entertainment value. It would also be neat to compare comment-to-code ratio in areas of MS code.
Ryan Fenton
http://www.windowsbeta.net/ is carrying the story (not slashdotted yet) and has a snippet from TaskManager up to prove validity.
Not me !
Votez ecolo : Chiez dans l'urne !
Maybe this is an evil plot by MS to scuttle OSS. Now the source code has been leaked they can start claiming that we're stealing their IP, Wine is a prime target for this. And its not as if they haven't got the bucks/lawyers to back their claims up either. This could turn out very bad.
The files listed in win2k/private/ntos/ appear to be kernel stuff. Yes, even asm files in there.
I hope you weren't planning on ever contributing to any Open Source projects after doing that. If it's later demonstrated that you had access to the W2K source and contributed vaguely similar code (even by accident) to a project, it could have severe repercussions for that project.
... the textbook author would own all of your code.
... trivial code will generally be similiar regardless) the more difficult that is.
IANAL but I do read Groklaw, and from what I understand copyright restricts the act of copying (duplicating). You can study someone's implimentation of something as much as you like, then go impliment something similiar yourself. As long as you do not copy the code verbatim you are not in violation of copyright law.
Otherwise, no student would be able to code having once looked at examples in a text book
The problem is, of course, proving one implimented the code oneself and did not in fact crib the whole thing from someone elses code, and the greater the similiarity (for code of sufficient complexity
In any event, it is a myth that, simply by looking at, or even studying, one set of code one is somehow "tainted" and unable to contribute to another, competing project, be it free or proprietary. To violate copyright law one must copy, not just receive inspiration from.
The Future of Human Evolution: Autonomy
My question is, has anybody managed to get this steaming pile of manure to compile? Seems like one would need to do that and then compare the binaries (ignoring any timestamping) before assuming this is authentic.
"Freedom means freedom for everybody" -- Dick Cheney
And the sign for this will be????
windows 2000 source code.zip - 203.85Mb
All the images of 2000 Pro I can find are at least 350Mb, so it's probably pushing it to get that down to 200Mb in the source.
There ya go.
Um, so what? China has had access to the source code for a while now, MS' way of keeping them away from Linux. (Unless that changed) Anyone in the U.S. who wanted teh source could hop on over to the local Academic Alliance affiliated school and sneak in and burn the source from there.
Pretty much the only ones who don't have access to the Windows source code are the people who don't want it.
Then again, maybe this story is like patents:
boring idea == yawn
boring idea over network == teh r0xx0rz!
[o]_O
files.txt
8 91cade243c126|
and since Slashcode mangles ed2k-links: here for copy&paste (remove any spaces)
ed2k://|file|files.txt|2390731|959770f9507c332f26
Oh and BTW, this is just a LIST of files, not the sourcecode itself. So don't get cocky about copyrights.
Know what. Screw the whole legality issue. Those who have a foot in both the software design (even OSS?) and warez scene need to nab this. Much positive work could be done with windows/linux compatibility once we figure out the obscure protocols that windows uses. Yeah, it'll be legally grey, but who cares.
This will probably elicit a lot of replies about how Linux needs, especially now, legitimacy, especially under scrutiny of corps hoping to use it on desktops/servers. Individuals wouldn't care as much, obviously. They're right, in part at least. However, I've always admired the range of software choice Linux has, and just like Debian doesn't ship with all the necessary mplayer codecs.. they're out there, if you want 'em.
On another note.. what if someone took the code, released Linux software designed to help, say, samba, or something. Then another developer, without looking at the actual code for that program, made their own derivative by decompiling/whatever?
http://cltracker.net -- powerful craigslist multi-city search
The server is currently slashdotted, but I managed to download the first few lines of the Windows 2000 codebase. Here they are:
Shamefully we will now see how much foul play occurs when a non-open source peice of software becomes available.
Especially one that is supposed to run 90% of desktops.
I would not be surprised if MS watermarked the sources somehow for each recipient (in the comments, telltale spacing or whitespace, etc).
it would be easy to automate and hard to detect. I'm sure the list of suspects will be small, and blame will probably land on a hacked/wormed workstation.
I bet this is so they can pull a SCO "they copied our source" crap.
CT
I was expecting the General Protection Fault License.
Libertarianism is rich wolves and poor sheep playing gambler's ruin for dinner.
The Win2K Source was released a while ago.
It's better to vote for what you want and not get it than to vote for what you don't want and get it.
- E. Debs
A search of Google News reveals that the only reputable newsfeed reporting this groudbreaking story is, in fact, Slashdot.
Can we really believe this? As the story says, this should be huge news. Can anyone who has the files confirm that they do indeed look remotely like one would imagine the Windoze code to look like (hint: look for the holes).
Something worth considering, anyway.
someone could combine this with the sourcecode for half life 2 and make some sort of super half-life playing game os... or something like that...
So if this is real, I want to see evidence of all the dirty tricks code that allegedly is in Windows.
I mean the code that supposedly makes competitors products break, and god knows what other bad stuff I've heard about over the years.
Anyone working on this?
mirror
Site slashdotted? Look here for mirrors, or even better: o
So umm...not that it would be protesting anything really, but when can we buy shirts with a bit of this on it? ;)
Or perhaps some astroserfs have been working undercover for months impersonating genuine geeks and inserting unflattering comments into Linus' communistic secret sauce and now with these leaks out in the wilderness someone not in on it can take care of the discovery!
Or maybe this is just a seemingly innocuous plot to scare laggard Weenies to do their duty and play another round of planned obsoletion and fork out some cash to Billy for another upgrade!?
Or maybe MS realized that their upside-down financial pyramid is about to tilt if they must keep giving heavy discounts to their customers to fend off Linus' communistic plot for world domination and decided that it's time to play the piracy card to at least hold on to their market share a little longer
Or maybe... just maybe there is no spoon here for neowin to win and this is a win-win situation somehow?
Should invading one's peaceful neighbours be opposed, or rewarded with trade deals?
If you work on any Open Source project, DO NOT LOOK!
the preceding comment is my own and in no way reflects the opinion of the Joint Chiefs of Staff
An oldie, but a goodie [scroll up to the code].
This issue is a bit more complicated than you think.
Strewn through that list of files we find quite a few named "gnumakefile"..
Would MS really use GNU make??!
Where's the Torrent? Huh? The first post should _always_ be the Torrent of the post.
Must-not-watch TV!
So we'll finally get to see NTFS driver that can write to the partition... SAMBA will be fully compatible with Active directory...
Now SCO can sue Microsoft for stealing their code, too! *LOL*
Seriously, though... If the circulating source is really NT4 & W2K, that would give a powerful instrument to both sides - the ones who wants to sue Microsoft for stealing their technologies and for Microsoft, too, since from now on they will be looking very closely at newcoming products of their rivals.
Having the source you could do a cleanroom implementation of it, have a set of "dirty" developers read and describe the undocumented API's and another set write those API's from scratch
Snowden and Manning are heroes.
I seem to remember reading that Microsoft gave China access to the entire source code, after the country mentioned that it was leaning more towards using Linux for government-related things, because the entire source code was open for inspection.
$ echo "ceci n'est pas une pipe" | sed -Ee 's/(eci n|pas )//g'
Since XP isnt such a big rewrite of the NT codebase a significant number of holes found in the NT/2000 code will most probably also be lurking in XP/2003.
If this really is true the ramifications on the security of windows is really big. In contrast linux is getting SELinux functionality implemented as we speak.
I hope this isnt true because it would turn the world of computers totally upside down and have big impact on innocent bystanders who bought into the MS marketing lies.
HTTP/1.1 400
In my best Bruce Campbell voice "Stop, it's a trick. Get an axe!" Hail to the king baby!
And I was just reading this node just about an hour ago. Scary.
So who's taking bets on each of the given possible scenarios?
The previous sig has been removed due to
As long as you do not copy the code verbatim you are not in violation of copyright law.
Copying of nonliteral elements is actionable infringement. That's why many reverse engineering firms have two separate teams: one to describe a piece of copyrighted code and another to implement it.
In any event, it is a myth that, simply by looking at, or even studying, one set of code one is somehow "tainted" and unable to contribute to another, competing project, be it free or proprietary. To violate copyright law one must copy, not just receive inspiration from.
Try telling that to the estate of George Harrison, who lost in Bright Tunes v. Harrisongs. It's possible to copy without knowing you're copying, and it's still infringement.
Neowin has learned of shocking and potentially devastating news. It would appear that two packages are circulating on the internet, one being the source code to Windows 2000, and the other being the source code to Windows NT. At this time, it is hard to establish whether or not full code has leaked, and this will undoubtedly remain the situation until an attempt is made to compile them. Microsoft are currently unavailable for comment surrounding this leak so we have no official response from them at the time of writing.
This leak is a shock not only to Neowin, but to the wider IT industry. The ramifications of this leak are far reaching and devastating. This reporter does not wish to be sensationalist, but the number of industries and critical systems that are based around these technologies that could be damaged by new exploits found in this source code is something that doesn't bare thinking about.
But then in a cost-benefit analysis it doesn't make sense.
I mean, so they can trace who leaked it. But unless they are doing it for the pleasure of catching someone leaking ("AHA!I KNEW IT! YOU GUYS LEAK OUR CODE!"), there's no net benefit in it because the source code would STILL HAVE BEEN LEAKED.
You're trading the "crown jewels" for the dubious value of catching a leak, and it's not like whoever leaked it can pay MS sufficient damages to make up for it.
Unless it's not a net-negative for MS to have the code leaked (which the black-helicopter crowd seems to have pointed out), it makes no sense.
hmm.. looking at the way windows runs.. dont think i want to copy their ways of doing things. Also, I wonder if we are gonna have underground patches for security flaws now ;P
Wouldnt you like to be a pepper too?
No doubt Win code isn't as buggy as the slashdot faithful like to hype but in that much code its impossible to believe there aren't any (more). Maybe someone should now outlaw PURIFY et. al. - as a dangerous tool for finding OS vulnerabilities...
Maybe the best strategy for Microsoft now is to open source it so developers can legitimately look at it and track vulnerabilities...
.sig
Who wants to bet that a few doors will soon be knocked down while TiVos, computers and XBoxes are confiscated by our loving FBI agents?
Hmm... From " for one would love to peek around in this, more out of curiosity than any desire to actually do something useful with it." to "As much as I'd love to peek around in this, I won't risk it." in 16 minutes. What changed your mind?
You gotta love how this story ended up being placed against a story describing how Open Source Code is subject to foul play.
Well, Mr. "W. Russell Jones", we're all about to get a lesson on how closed source code can be a dozen times moreso.
The comments should be hilarious....
From excellent karma to terible karma with a single +5 funny post...
Sysinternals has the layout of the XP source based on information in the checked builds. (Yes, it runs very slow)
Will this build under a gnu compiler? Do I have to be running Windows to build windows?
"...the shortest distance between two points may be straight line, but it is by no means the most interesting."
The actual important issue here: Is DirectX in that source code? If so, we can start welcoming our platform independant directx-using overlords...
I am a viral sig. Please help me spread.
...China and folks there just don't really give a damn about western notions of copyrights.
Well, GOOD for them. It looks like China is more advanced than us in some things. China may have lots of problems, but this isn't one of them. It's a concept that's long overdue.
What?
Right here: http://windows.about.com/blhumor3.htm Amazing how simple this stuff really is.
We all live in a #FFFF00 submarine...
::scrolls through file list from earlier post:: ::sees directory win2k/private/ntos/ke/ppc/::
powerpc kernel?
L-u-l-a lula lu-lu-lu-lu lula...
One line blog. I hear that they're called Twitters now.
Could this potentially help the WINE Project
It could kill the WINE project. MS can slow/stop development by demanding (SCO-style?) WINE developers/contributors prove they have had no access to the leaked code...
Heck they can borrow the (incredibly insulting, I couldn't believe it when I first read it) SCO court filing, "the WINE project was the equivalent of a bicycle before the source code leak, but after the leak, the WINE project became a luxury cadillac + porsche + ferrari fused together, this is impossible without source code theft, we demand pinky to mouth one hundred billion dollars".
Subconscious copying is actionable infringement. A Beatle got sued and lost.
have you heard of anyone downloading buggy code intentionally?? The leaked source code is pretty much safe.Relax MS.
Lord of the Binges.
I agree. Remember, at the trial MS argued that opening or showing parts of Windows source code would be a threat to national security. Not long after that, they gave their source code to Russia, China, and many multi-national corporations and other organizations as part of their Shared Source initiative. Now, don't know where the source was leaked from, but 1 + 1 = ?
If in fact, this story is true, MS is riding against the wind here. It is feeling pressure from the Open Source while its security, software, and business models are based on keeping the source secret. If so, how long can they keep up?
http://216.239.41.104/search?q=cache:dyP7DNxZKusJ: www.eweek.com/article2/0,4149,1360420,00.asp+Windo ws.Source.Code&hl=en&ie=UTF-8
Microsoft MVP's have access.
And China
And India
Lots of sources.
This is truly a terrible thing. Just the other day I saw a recipe on how to make vanilla coke.
WINEHQ: Early today, a developer who wished to remain anonymous contribued an astonishing amount of source code to the WINE project. Some initial testing performed by WINE core developers revealed that WINE's compatibility with Microsoft Windows applications releasted for Windows NT and Windows 2000 had perfect compatibility, even down to some annoying and well-known bugs that have plagued certain Microsoft DLLs distributed with Microsoft's operating systems.
;)
"This will really make it possible for non-Windows users to run more applications than ever using WINE on alternate operating systems like Linux," said one develper we spoke with.
I would be the most poetically ironic event ever if it turns out that it was a MS Win security hole that allowed a hacker to enter a server and steal the code.
Doubly ironic if it was a hole that MS has known about for months and not bothered to patch.
Triply ironic if someone finds said hole, patches it, and ships patched source back to MS.
__ Someday, but not this morning, I'll finally learn to use the preview button.
Possibly, but would they really want to? The samba group ended up with faster code then MS by reverse engineering the SMB protocol instead of inheriting a bunch of code patched by different people over the years. I would imagine looking at the source would solve a bunch of problems for the short term.
Of course if this turns out to be true and all.
What about the opposite:
Is there GPL code there?
Ask an auditing company to
diff NT4 2000 | grep -e yourcode
and get an answer.
I don't think they're playing SCO if they released just a part of it maybe but not the whole thing
Remember about two years ago I vaguely remember someone getting into this source.
I remember thinking at the time that you wouldn't want to release it until it had all blown over. I wonder if they are related?
Not that enough other people don't see this code, it is just a thought though.
http://www.baltimoremd.com/content/win2000source.h tml
if I learn to play guitar by among other things, listening to all of the Beatles songs and playing along, do the Beatles own the rights to any future song I write? Goddamn hell freakin no!
Please look up "He's So Fine", read a few of the results, and see if you still think that.
It's not like stealing, because they only took a fraction of a megabyte at a time. Only when they're all added up in your Swiss bank account does it amount to the full source code. It's like the take a penny, leave a penny jar.
Code leaks from Microsoft are not new. Check this article at CIO Update about a code leak a year ago: (emphasis mine)
Microsoft Corp. said it is tracing a key piece of code from its Windows Server 2003 software that was leaked onto the Internet, triggering concerns about piracy problems ahead of the company's scheduled product release later this month. The volume-licensing key in question allows for unlimited installations of Microsoft's Windows Server 2003 server operating system, the next upgrade from Windows NT that is slated for release on April 24.
However, this seems only to be a partial leak, not comparable to this complete (if it's real) source code leak.
Blimey. We got wind of this around lunchtime GMT, and within half an hour two zip files mysteriously got downloaded to - ahem - servers some collegues and I have access to (no, I had no involvement in the download and have no idea of the source). We took a look, us being extremely sceptical of the claims, and ended up spending a few hours grepping the Win2K sources.
If this is a wind up, someone or people spent a long old time faking it. Microsoft notices and email addresses all over the place. They don't like the AIX compiler one little bit. Hardly any mention of Linux, GPL or GNU.
Actually quite a professional bunch of source files by all accounts. Appears to be using standard GNU Makefiles though. Yes, the 'f' word appears, as does the 's' word. Apparently Office 2k is broken in some respect that Win2k needed a tweak or some description.
Plenty of mentions of Internet Explorer, although I wouldn't like to say that we found 'IE' in the code, but then we aren't C experts at all. It does mention IE6 and Windows ME, so can't be all that old either. Does mention buffer overflows a fair bit, also plenty of 'hackhack' and 'bugbug' notes laying around.
In fact, nothing particularly spectacular found at all. We took a look, got bored, and went back to our normal work. Honest boss!
And no, we didn't try to compile it. We felt it was genuine enough though - not that we really cared. We did however note that if this lot is proven to be the real deal, Microsoft are going to be landed with one hell of a lot of security alerts for 2k/NT over the next six months.
Yours merely curious...
While everyone is concentrating on the whole issue of what happens if they copy code from Windows has anyone started looking at the code for copyright infringements from Microsoft?
Just an interesting thought, I've always wondered how anyone could prove IP infringement against closed source systems.
John the Kiwi
Alright, enough of this alleged list of files. I want to see the actual contents of the files. If they really were leaked to the Internet then we should start seeing links or bitTorrents soon.
If the list of files posted above is real, then I'm really eager to see the contents of the emails like these:
win2k/private/inet/xml/xml/tokenizer/dll/words of wisdom from dennis.eml
win2k/private/inet/xml/xml/dso/letter to children - 2.eml
These emails may provide clues about who leaked the code (whether it was intentional or not.)
whoa, i totally read that as "MOD PARENT UP SUPER FUNNY"
And you all said I was a fool! :)
"#43 Posted by psneddon on 13 Feb 2004 - 01:09
Just my opinion / thoughts.
1) The software that builds and compiles Windows is very complex I doubt anyone could turn the source into a working system easily. Maybee it would be possible to compile certain parts. Plus even if you could it would take hours if not days to go through the process.
2) I don't see how this will let anyone find any obvious flaws, microsoft have software that does this all the time. I'm not saying its not a security risk but its not as simple as the journalists make out - as always.
3) This exact same scare happened about 7 years ago, I remember they were selling the source to NT4 at a local market on CD, doubt it was the real source code."
The Microsoft financed intellectual property war between SCO and the Linux community is starting to backfire, with Linux gaining an obvious upper hand. Even the usually clueless PHB oriented news-sites are starting to paint SCO as a perpetually luckless loser. Microsoft decided it was time to throw some of their own old and generally valueless IP out onto the Internet and force Linux to defend itself on another front.
Whether this one works or not, I'd still expect yet another IP related incident involving Linux. The startegy here is not to conquer decisively, but to wear down.
Before now, it could be assumed that Samba developers were working from scratch- clean room implementations, because it wouldn't be possible for them to have the source code.
Now, unless the leak and spread can be precisely pinpointed, the Samba project could be the target for attacks under the "assumption" that they were sitting on this and that's why it works as well as it does. Whether or not they think this is true is irrelevant, they just need to let their legal team sink their claws into it, and muddy the waters.
THIS THING CAN TURN ON A DIME, MACROSSZERO STYLE ALSO FUCK BETA, ~NYORON
there might be patent issues, but i think they list those one the software or license somewhere. my understanding of trade secrets is that it is their reponsibility to maintain a the secret. and if this is *really* source code for nt4/win2k, it's not a secret anymore.
eric
/me points to the star by his name...
I was getting a load of errors before it was subs-only.
Too bad we won't be hearing any more from them, since their server must be a melted, steaming pile of scrap metal by now.
Oh well, that hasn't stopped us from posting 400+ comments to this story.
Now Windows will be 10x more insecure than before! Awesome! As far as something positive coming out of this leak, I doubt it. Sure, the "good guys" will take this opportunity to study what makes windows tick, but others will just try to make windows tock. :(
"Jeremy, you need to get to an internet cafe and cut and paste some appropriate sentiments about me from the world wide
this'll lead to a stable OS...
:)
of course it'll render millions of computers useless in the meantime..
We have all heard the story of it being towed back to port.
h tml
Many have heard the story, few have heard the truth. After all the early speculation (termed used by publisher who broke the story and later distanced themselves from it) by shoreside Unix advocates someone eventually talked to the Chief Engineer on board at the time and the software developer who wrote the code. They said it was not WinNT. If the OS had been Linux the ship would have been just as dead in the water. A naive server app corrupted it's own database and naive client apps (the infamous "LAN consoles" that crashed) needed that database to function properly and to operate equipment. In any case:
http://www.sciam.com/1998/1198issue/1198techbus2.
"Others insist that NT was not the culprit. According to Lieutenant Commander Roderick Fraser, who was the chief engineer on board the ship at the time of the incident, the fault was with certain applications that were developed by CAE Electronics in Leesburg, Va. As Harvey McKelvey, former director of navy programs for CAE, admits, "If you want to put a stick in anybody's eye, it should be in ours." But McKelvey adds that the crash would not have happened if the navy had been using a production version of the CAE software, which he asserts has safeguards to prevent the type of failure that occurred."
No. If the Wine folks look at the actual Windows source code, they aren't reverse engineering any more, they're copying, which is illegal
I'm tired of this b.s. Since when has looking at something been equated to copying it? Copying is copying. Looking is looking. However, obtaining the code is probably a copyright violation. After all, this post is not a copy of your post. It was inspired by it, I looked at your post, I legally cited your post, but I did not give you the rights to my post by doing so, nor can you force me to remove my post.
No, you want the 1.09 GB file from e2dk.
t ]. rar|1167616724|C60BD616078CE954AC05C7C7B94C0C2B|/
ed2k://|file|Windows_2000_Source_Code[NeoWin.Ne
This will not likely provide any assistence to OSS projects, since it's pretty damn dangerous to infringe on MS code.
The biggest thing I see coming out of this is the security repercussions for current Windows 2000 users (not to mention XP as well since they're pretty damn similar). Should be an interesting and eventful news week.
-------
"In times of universal deceit, telling the truth becomes a revolutionary act."
-- George Orwell
Now we'll find out if MS has used any GPL'ed code in windows..
"There is no available source code! Only a heathen would suggest such a crime. Microsoft has an excellent security track record. Those are features, not bugs! The heathen apple and linux communities are spreading lies, it is all lies."
The Chinese are so great at protecting property rights (intellectual and otherwise). Remember, they signed a piece of paper(!!!) agreeing they wouldn't share the windows source code with anyone.
On an unrelated note, anyone care to start a football-style pool as to when the next round of microsoft virus hits...
Quod scripsi, scripsi.
If this is the case, the part, if not most of the XP and Win2l3 code is out there. Even part of longhorn if you get down to it.
-Kids in the back seat causes accidents.- -Accidents in the back seat causes kids.-
The 3 current articles at the top of Slashdot...
Windows 2000 & Windows NT 4 Source Code Leaks
Is Open Source Fertile Ground for Foul Play?
New Worms Feed on MyDoom Infections
It struck me as funny.
Mod "Overrated" instead of replying "I disagree with you," you coward.
I found some of the file headers of particular interest:
Copyright 1984 Apple Computer, Cupertino, CA
Together, we will drive the rats from the tundra.
The contention is that you would have a dickens of a time proving in court that you were not directly influenced or did not directly copy the copyright work. Do you have the financial security to take this through the courts and win? No? Then, keep your nose clean. If you don't want to stink, don't go near the shit.
I understand what you're saying, but it's best to steer far and wide and very clear of it. Treat it like nuclear waste. You don't even look at it no one can try to taint you.
10328 07-26-00 01:41 win2k/private/genx/shell/gnumakefile e mli on of problems in stress.emle
0 11-18-01 14:23 win2k/private/genx/windows/inc/mobileq-apache.eml
0 11-18-01 14:23 win2k/private/genx/letter to children - 2.eml (*)
0 11-18-01 14:23 win2k/private/inet/mshtml/btools/bin/words of wisdom from dennis.eml
0 11-18-01 14:23 win2k/private/inet/mshtml/build/ppcmac/ship/unix.
0 11-18-01 14:23 win2k/private/inet/mshtml/build/ppcmac/documentat
506 07-26-00 02:12 win2k/private/inet/mshtml/gnumakefile
64276 07-26-00 02:13 win2k/private/inet/mshtml/tools/mips/utils/sed.ex
Plenty of gnumakefile entries throughout...
Also - directories for ppc / ppcmac / alpha / mips
Could this be OFFICE 2000 instead of Windows 2000?
* - WTF?
Clinton made me a Republican. Bush made me a Libertarian. Trump is making me question reality.
Forget your brand of "MS is doing it to get us on the sly".
How about:
MS took a calculated risk in allowing the Chinese government access to the code in order to secure more sales, and are now paying for it, because someone Freed Billy!
http://pcblues.com - Digits and Wood
There have always bin rumors that closed source Microsoft applications have leaked to terrorists or the Russian mob.
Thinking about it, an OS used often to hold and guard highly sensitive information wordwide is almost certain to get its source stolen, if not by terrorists so by intellegence organizations round the world.
But it could have bin much worse. Imagine a not too distant future world where access to documents software etc is controlled by DRM technology. In such a world, there would be little incentive for sofware companies to spend R&D money on securing their systems apart from what DRM offers.
Imagine what damages we could get if cryptography keys to such systems fell into the wrong hands.
Even if such keys would be handled by a lot fewer persons than the windows source code, there is no guarntee that they will not be persuaded to reveal their secret.
God is REAL! Unless explicitly declared INTEGER
Maybe seeing how Valve can put the Half Life 2 release date back a few months due to their leak may have given Microsoft an excuse to delay Longhorn a little further ;)
/usr/src/linux (captivating stuff, gripping plot).
Yes I understand the consequences etc, I wanna grow up and be a respected open source coder (and get paid to go to conferences). If I wanna read source, I'll read
~Duane
The beatings will continue until morale improves.
DO NOT LOOK AT THE CODE!
Am I the only who now can't get the Indiana Jones theme music out of my head?
I've gone through hundreds of messages but yet to see one guy claiming to have actually seen the code.
While it's quite true that if you're just getting inspiration from copyrighted code, you are not violating copyright. The problem comes when the copyright holder sues you or your employer, claiming that you (intentionally or not) copied parts of their code into yours. You might have subconsciously reproduced something you saw earlier and forgot at a conscious level. While it might be unlikely that you would actually do this, it is not so unlikely that you would be accused of doing it.
While at the end of an excruciatingly long and fabulously expensive trial, your rights to your own code may be upheld (if the court doesn't make a mistake), it is much better to avoid the problem by using a clean-room process that makes the whole question moot.
A friend and his associate left a previous employer to form a start-up. They began work on a product, much like the one their former employer was developing. Though my friend largely contributed the code and many fixes to his associates code, the project died when the former employer had detectives raid the associates house. The former employer claimed they were copying the firmware, though my friend had mostly written it. However, an old code listing was found in his associates house after they had both vehemently denied copying any code from their former employer. In light of the discovery, the issue of stole-did not steal became a moot point, as they would need a company of lawyers, time and lots of money to defend themselves. If he had tossed all prior employer related junk from his home office, the burden would have been much greater on the former employer. Having some code at home which looked suspiciously like product code (particularly to the untrained eye) killed their start-up and put the associate in jail.
A feeling of having made the same mistake before: Deja Foobar
Its been a couple years, but I have seen the real source code for windows NT. All I have seen so far here is a file list, but I can say these things about it:
1) I cannot confirm that this is a legitimate file list.
2) I can confirm that every tree and file I am specifically aware of is missing.
3) This is definetely not the entire source tree.
4) There are many dubious file names such as "words of wisdom from dennis.eml
", zero length, and "gnumakefile" that definetely appear out of place.
My guess is that someone has taken some licenced source code and "sexed it up" to troll internet.
I can't vouch for the reputation of the site (I've never come across it), but at the moment this is the only other site that appears to have any report on the source leak:
http://itvibe.com/default.aspx?NewsID=1283
My lack of God, it's Trotsky!
Stench? The air is sweet, and fragrant!
Someone who wants to take the risk of tainting themselves (in OH so many ways) by looking at Windows code should probably do a full analysis in order to locate GPL violations, if any.
The last thing the open source community needs is for Microsoft to have an excuse to claim that some of THEIR code has shown up in the Linux kernel.
Oh come on... give the kernel maintainers some credit! As if they'd let such poor quality code in!
Worse still - if you work on any Open Source project, and you look at Microsoft Source code. . . DO NOT COPY IT!!!
We like Linux as it is. Reliable, stable, and fast. Copying Microsoft code in would jeopardize that. Never mind the IP issues. . .
These are my friends, See how they glisten. See this one shine, how he smiles in the light.
Seriously. This is not cool. If it's not cool if someone were to do it to us, it's not cool when someone does it to MS. If it's sauce for the goose...
I don't think it's too far-fetched to imagine people hacking the code in order to make their own patches or integrated apps for the OS' and then distributing them freely via one of the illicit networks available. Wouldn't it be a perfect comedy if an illicit hacked version of Win2K ran better than the original?
And all our yesterdays have lighted fools The way to dusty death. --Will
can Chuck Berry sue everyone who ever wrote a rock'n'roll song?
In the early 1990's, a number of universities, research institutions and other entities had source code licenses with major unix vendors: SCO, Dynix, Amdahl, Sun [Solaris], SVR4
Who wants to look at Windows' obviously bloated, hacked-together code in the first place? Are we not satisfied with the stability of our current OS projects that we might want to see what one of the world's worst development teams ever has come up with?
Yea, it might be enticing to check out the code to identify back doors and subversive code, but you don't need the source code to prove that.
This is about as exciting as finding out the original master tapes from Air Supply's Greatest Hits are making the rounds in Kazaa. OMFG!
What's next? Kevin Mitnick is caught showing his pierced belly button?
This is probably old hat now, but....
Real men don't do backups, they just pack their files into windows_2000_source_code.zip and post them to their website.... with torrent links...
Speaking of "a world of hurt," wouldn't the general reaction to a leak of this kind cause a precipitous fall(big or small) in Microsoft's stock? If was an investor, I would totally short the stock right now, since there will probably be some crazy reaction at just the hint of a leak...probably because people will think it's a bigger deal than it will end up being.
It looks as though at the end of the trading day, MSFT did lose some value. If not short it, then maybe sell it, if only to pick up some deals later...
Now us Linux users can't complain that windows isn't open source :(
---
Never criticize religion on Slashdot. You will be modded down for "Troll" no matter how factual it is.
Anyone got a torrent?
"IANAL but I do read Groklaw"
The individual that runs Groklaw isn't a lawyer either. So basically you're taking legal counsel, even if only by inference, from someone who is not a lawyer. Not a good start. Then you offer your ideas as advice to some one else, even worse for them.
But, even if you were a lawyer, it still wouldn't be up to you. Any ruling on the matter would be up to a judge or jury, not the lawyer and not necessarily any precedent. They often forget to mention that when doling out advice. Of course, win or lose, they aren't going to jail, you are.
(1) Now that the source code is leaked, more virus developers can write more viruses, making it dangerous to use Windows.
(2) Concerned individuals and companies can learn from those who look at the code just how BAD the vulnerabilities ARE.
This could very well accelerate migration away from Windows and towards other OS's which are secure despite having available source code.
But that seems to set a very bad precident for things you might happen to see or hear and make information more dangerous than it should be. Information should be used to advance society, it shouldn't be a liability to know something.
I very much hope that no MS-copyrighted code ever finds its way into an open source project, both for practical reasons like the above and for moral ones.
There is no moral reason for copyright. It's especially bad now that it's being conveniently used as a tool for censorship(most likely its real intent). The 1st amendment is helpless against this.
The same copyright that keeps Windows secret keeps Microsoft (and others) from just stealing GPL'ed projects.
How do we know? If it's buried in closed source, we can't know. Unless of course it's leaked on the 'net. Without copyright, windows wouldn't be secret. We cuold just "steal" it back, and probably make it better. They would have no more protection than we would. It would actually level the playing field.
What?
Hrmph. I opened one of those files and all it said was:
-*- Any technology indistinguishable from magic is insufficiently advanced -*-
From the list of files in the source code...
6 a.asm
14946 07-26-00 02:59 win2k/private/windows/media/avi/drawdib/dith666.c
13506 07-26-00 02:59 win2k/private/windows/media/avi/drawdib/dith666.h
28718 07-26-00 02:59 win2k/private/windows/media/avi/drawdib.16/dith66
Proof that MS is SATAN!
Mod "Overrated" instead of replying "I disagree with you," you coward.
Don't you remember that in the first days of the SCO debacle, Microsoft quickly ponied up with an undisclosed amount of green to license the UNIX code that was used in NT4,2K, and XP?
This is a moot point. It still made me smile though.
in theory then it could be ported to the mac by some rogue developer with years of free time. any one out there win the lottery, quit their job at microsoft and switch to a mac?
http://www.rustyrazorblade.com
its unclear. MS's thinking is to take the worst-case approach - that they might be legally obligated to open code they'd rather not because of a wackjob interpretation of GPL and code pollution.
Therefore, MS's policy is that no microsoft developer is allowed to look at the code of any open source project, for any reason, without working with legal first.
It's a serious deal.
My opinions are my own, and do not necessarily represent those of my employer.
This leak is a shock not only to Neowin, but to the wider IT industry. The ramifications of this leak are far reaching and devastating. This reporter does not wish to be sensationalist, but the number of industries and critical systems that are based around these technologies that could be damaged by new exploits found in this source code is something that doesn't bare thinking about.
We ask that for the wider benefit of the IT community that members and readers support Microsoft by forwarding anything they know about the leak to the Microsoft's Anti-Piracy department.
Please do not post any links/screenshots/hints or anything to do with the source code outbreak. Discussion is allowed but we will not condone people spreading this source code.
(The rest is just the comments, you know, crap like you get on /.)
Has anyone compiled this beast yet? What does it do? Hopefully on a box disconnected from any network. When the devil hands you a prize, don't touch it with your bare hands.
--
make install -not war
Never in my life, or my wildest dreams have i ever thought this possible.
I mean, really, a site getting slashdotted -in anticipation- of slashdot linking to it! Who would have imagined?
http://mirror.wolffelaar.nl/neowin/
iF yOu WAnT to C YOUr iP agaIn gAThEr tWO MilLIon dOLLArS IN Non - cONsEcuTivE TweNtY's AnD AWaiT FuRThER iNstrUctIoN
The server is too busy at the moment. Please try again later.
Slow down, cowboy! It has been 4 hours since you last posted. You must wait another few hours.
...sorry, but you are.
I don't know of a single sysadmin worth his salt that blindly installs microsoft patches as and when they come out. Too many times in the past Microsoft patches have royally borked systems so now before they are deployed into a mission critical environment they are tested, and then they are tested some more.
The real problem is that people who use computers are generally (these days) not au-fait with the fact that they actually have to download patches (or even just visit Windows Update).
The big worry now is that malicous persons will scour the code looking for new bugs, security researchers may not find them before the hackers and thus all sorts of shits and giggles ensues.
Here's the kick though@- since Windows runs on various hardware configs (albeit variations on a basic themem), by Microsofts' own admission it takes them MONTHS to create and test patches before deploying them. Normally that's ok because a lot of these sploits can only realistically be gleaned from looking at the source, which only they were in possession of, so there were no exploits in the wild. Now, however, there may be exploits in the wild for six months before a patch comes out and you'll have microsoft saying silly things like "don't click on links, only type them into the address bar".
I am NaN
Harrison wasn't sued for listening to and being inspired by "He's So Fine", he was sued for using the same music and claiming it was his own. The songs didn't just sound similar, they were the same melody and chords.
You can play the blues without paying Robert Johnson's estate, but you can't play Crossroads and call it your own.
Intellectuals! Liberals! Peacemongers! IDIOTS!!!
==========
Together, we will drive the rats from the tundra.
There is also a good possibility that the leak was sanctioned. In the closest inner circles, the word out there has been that Microsoft may eventually orphan its current Windows OS kernel architecture to make way for a new OS that is generations ahead of Longhorn and just about everything else available. Just think, by the time public developers really analyze and understand the NT and 2000 code, the advantage gained from such knowledge might be rendered moot. Imagine, people rushing to capitalize on technology that will eventually be unsupported, while Microsoft is really doing an end run around the DOJ by creating a new platform that is by design airtight, locked down and truly immune from any DOJ or antitrust action. Bill didn't get to be a bill(ionaire) by being stupid.
But, it only takes one person to look at the Windows source, then go do something vaguely similar in Linux (or any OSS project for that matter). The result would be devastating: Microsoft would litigate Linux to death.
As many have said, the principle behind these copyright suits is awful. Looking at code, then doing something somewhat similar (because of inspiration) should not be a copyright violation. But with Microsoft's legal and financial resources, the laws will "adapt" to what is most beneficial to them.
I can only echo what many other have said: for the sake of Linux and OSS in general, do not look at the Windows source!. That's a very conservative and overly-paranoid policy, but it's a invaluable measure for protection.
To me, general acceptance of open-source software is similar to political elections: every last spec of dirt is drug out and put under the spotlight. Any potential or suspect or even misunderstood characteristic is scrutinized, and the naysayers always manage to put a negative spin on it.
Open source only stands a chance if it can maintain the straight and narrow path... I hate to sound preachy, but any slight mishap, no matter how innocent or accidental, quickly turns into a major catastrophic disaster. There's just too much money and power interested in seeing OSS fail.
"The Truth Machine" by James Halperin is a fascinating parable detailing how someone who is accidentally exposed to outside code is forced to commit crimes in order to hide it.
In other words, don't do it! It could bite you in the ass later.
It isn't a memory leak. It's an object life-span issue.
If code is made criminal, only criminals will have the code
Now that was a very satisfying cliche re-use. I hope it was an original cliche re-use.
BTW the server seems ve-wy slow to-day. I think we were just Farked.
"Will future ages believe that such stupid bigotry ever existed!" -- Ivanhoe
bersk.com
This is an attempt to corrupt your ability to write reliable code. It is the software equivalent of a Medusa. Once you've looked at it your mind will be agog to make blue screens. Do not look! For the love of Pete, DO NOT LOOK!!!!!
It's only 39 megs.
Wrong: The WINE project could clean room it: get a bunch of people to work through the W2K source code and throw concepts, ideas and other things over the fence: this doesn't break copyright law, and if the concepts/ideas/etc are not covered by patents, then it doesn't break anything else. IBM pioneered clean rooming, and plenty of people do it.
Microsoft would own some marketing rights, that's all. Unix is owned by The Open Group. System V and UnixWare (at least) and the vast majority of corresponding copyrights and patents (except those held by OG) are owned by Novell. Oh, and Microsoft would also own a truckload of incoming lawsuits. How.. attractive.
Got time? Spend some of it coding or testing
According to a report on ITVibe, Steve Ballmer, Chief Executive and President of Microsoft has said in a statement:
"I can assure you that we know there has been no compromise of the integrity of the source code; that it has not been modified or tampered with in any way."
Steve Ballmer said the following today:
"I can assure you that we know there has been no compromise of the integrity of the source code; that it has not been modified or tampered with in any way."
This is according to IT Vibe
Having the source you could do a cleanroom implementation of it, have a set of "dirty" developers read and describe the undocumented API's and another set write those API's from scratch
Especially if the Dirty Room is in another country where the copyright laws are different (ie. saner) then the US.
The warning given to open source developers about viewing the windows source derived from the NDA that Microsoft forced developers to sign, not seeing the code itself. Copyright law allows the viewing of other works to learn how they are built. Mind you, the US legal system is so f%#$@d-up and M$ has so much money that there is no guarentee that this right will be upheld in court.
People thought that the mydoom worm was bad... i wonder what kind of interesting virii are going to come of this
iF yOu WAnT to C YOUr iP agaIn gAThEr tWO MilLIon dOLLArS IN Non - cONsEcuTivE TweNtY's AnD AWaiT FuRThER iNstrUctIoN
... look at slashdot - it's being... slashdotted ...
Or must we say in this case: backslashdotted ?
Slashdot: stuff for news, nerds that matter, matter for news, stuff that nerd
Penguins spend their lives in the freezing cold fending off polar bears and rouge iceburgs and catching fish, they are totally used to it and even if a particular nasty polar bear comes around they can usually deal with it. If you release a home-trained hampster into that environment its just gonna die.
This comment does not represent the views or opinions of the user.
Sure they mark the code, and obviously they can identify the origin of a leak, unless the leaker detected the security system and took countermeasures against it.
But that's beside the point. Some of the source code has gone to organizations in countries where a countract with a US corporation has more value as toilet paper than as a legal document. Whoever started this alleged leak can probably count on never getting another update, or even having their MSDN licenses revoked, but outside the US, there might not even be enumerated consequences for an incident of this nature.
Not that I believe the report. The source code volume is on the order of dozens of gigabytes, according to more credible reports than this one.
-fb Everything not expressly forbidden is now mandatory.
It has been reported that numerous patches have now been emailed to microsoft after the source code leaks of the previous hour. The quality of those patches has amazed Microsoft, which has with immediate effect fired most of its current employees and send out offer letters to the patch developers.
Inside sources also report that microsoft is also deliberating on firing all its employees and relying completely on the so-called underground community to maintain and develop new features of the Windows operating system. More on this as it comes.
Yes, I am buyin a transistor radio and am unplugging my windoze pc from the net as of now.
So, the big question. How long until GCC can compile it :)
What part of "being proved guilty beyond reasonable doubt" didn't you understand? It's the accuser's task to prove the accused party guilty, not the other way round.
Of course, that wouldn't mean that looking at the source wouldn't be EXTREMELY helpful in the effort towards coding around issues caused by Microsoft cruft. No actual code would have to make it into the finished product.
These are my friends, See how they glisten. See this one shine, how he smiles in the light.
Microsoft is sooooo obviously trying to pull an SCO here.
This isn't the first time that Windows Source Code was "leaked". I don't remember them trying anything shady last time.
If you work on any Open Source project, DO NOT LOOK!
Try to prove that someone looked.
LK
"Hi. This is my friend, Jack Shit, and you don't know him." - Lord Kano
It's 5:15PM. I got home from work 2 hours ago, and had a nap. It is a beautiful day outside, and the Windows source code has been leaked.
And I have 5 Moderator points.
Today -- today, life is good.
I don't think anyone here has mentioned it yet, but imagine what this could do for other countries of the world. I can see governments modifying it themselves or doing some other dirty things since the government is what ultimately enforces copyright. How would foreign contributions to an opensource project where copyright does not apply work? Imagine someone from a loosely regulated country contributing code from windows to an open source project? What could be the ramifications of this!?
Since "Eve" has gone and posted the code, if "Alice" does and implements a "clean room" description of how all of the code works and posts that, and "Bert" goes and re-implements the code from the posted description, does Microsoft have a valid case against Bert? Or are his hands clean?
Heck, assuming the Recent Lindows ruling stands, could Bert get away with selling it as Windows????
Re-read that quote; he's not denying anything about leaked source, he's denying that there have been any intrusions into Microsoft's software sources themselves. Not the same thing at all.
;-).
He's saying that the leaked code is the same as the code in their version control system
Something people seem to be forgetting is the impact this could potentially have on the IT industry as a whole. Like them or not, Microsoft are a key player in this industry and if they suddenly take a fall many of us will be brought down with them.
A sudden loss of confidence in the Windows product could spell disaster for a wide range of occupations - imagine an IT-specific recession, resulting in enourmous layoffs and salary cuts.
The worst thing is that there is no way this can turn out to be good news. If it's true, we're in trouble. If it's false, then we're still going to see share prices slump (not just MSFT either), which impacts most of us.
Friday the 13th is always a pain in the neck.
I find this one refreshing...
/* You will be assimilated, suckers */
if (app.exename="NETSCAPE.EXE") system.sluggify();
And this one provides for the future...
if (site.url="www.google.com") {
browser.renderer.togglebuggyrenderer();
browser.fakepopup("www.msn.com");
}
I can't say anything about this one though:
if (user.status==PISSED_OFF)
prick.annoyingpopup("Hello, I noticed you are writing a letter")
Seriously, given the denounces of delayed APIs for Navigator, I wouldn't doubt the first one... could someone with the codes please grep for netscape.exe?
I've hacked Samba myself and I am 100% sure it's reversed engineered.... heh.
The point is now they can claim that they had potentially had access to their trade secret (not that they necessarily copied it verbatim). The can call all the work into question, and while it can be pretty thoroughly shown that this is not the case, it could take awhile to sort it and out and by then Samba could be tainted in the eyes of less savvy IT persons.
Not a great plan, IMHO, but quite possible. The same argument goes for Wine, but others had already brought that up.
THIS THING CAN TURN ON A DIME, MACROSSZERO STYLE ALSO FUCK BETA, ~NYORON
For instance, I hope no one has been foolish enough to try compiling this stuff on a networked computer! God knows what's in so much source code. What if: downloaded, compile, phone home, busted.
Vote in November. You won't regret it.
I think rates just went up.
(And so did domestic (IT) employment!!!!)
The truth about Led Zep should never be told on
IAAL.
/.! You must be just some miserable karma whore... or then you just made a major typo and forgot the obligatory "N" and ",but".
My god, this is simply not possible - man, this is
Well, I believe the latter must be the case. Be more careful on your next post, OK?
“Wait for Hurd if you want something real” –Linus
on bytedevils.net/?88
Guys.. you have to realise, that 2 days ago, microsoft patched the biggest security hole EVER in xp.. they knew about this since july.. this is unexeptable.. rather than face the scorn on this issue, why not "accidenty" let a copy of source code get out.. this is much better than having millions of xp users mad at you.. and the publicity will be focused on this.
Michael Jordan http://www.needsahug.com/ Where everyone gets a hug.
Oops! You're right, of course. How embarassing.
Although, reading it again, I don't agree that "He's saying that the leaked code is the same as the code in their version control system". He's just saying that Microsoft's own copy hasn't been tampered with.
What did you expect him to say? "We're all screwed, dump your stock now!"??? If he so much as hinted at the possibility that it was real (even if he knew otherwise) do you really think he'd say it? If he even hinted at it, the stock prices would take a hit...
There's a growing sense that even if The Future comes,
most of us won't be able to afford it.
-- Lemmy
Out of sheer ignorance, I truly want to know how OSS developers can be sure Microsoft (because of its closed source nature, at least, til now :) ) hasn't copied some GPL'd code. As in, if no one (at least, effectively no one) can look at Microsoft's code how can anyone be sure Microsoft hasn't lifted some code?
Did u check the list before posting it????
n 2k/private/inet/mshtml/src/f3/rsrc/unix/gnumake file
( what on earth could ppc mean? there is a line with x86 a couple lines below to give u a hint, windows on mac next or what?)
I don't know much about Windows, but this doesn't look like a Microsoft Windows source tree at all. At least not how I would imagine it. Lines from the file list:
win2k/private/inet/mshtml/src/f3/rsrc/unix/
wi
win2k/private/inet/mshtml/src/f3/crt/ppc/
win2k/private/inet/urlmon/compress/gzip/
And I didn't even went through a fourth of the list. Why don't we ask the guys from Wine or from ReactOS. They should be able to tell u how WinNT Source could probabely look like.
http://www.bersk.com/programs/source.html
you're stealing sourcecode from the crippled children??
Take a look at Microsoft's home page right now. In it you'll see a large graphic at the top talking about the mydoom virus. A little further down on the right, you see a link regarding the Virtual PC security hole on the Mac. And even further down, you'll see that two of the top downloads are the mydoom patch and blaster removal tool. Then, go to Apple's homepage... -BL
At time of posting, Neowin is inaccessible.
The server is too busy at the moment. Please try again later.
...I hear the source code to Linux gets leaked every other day!
If it was one of the many high level institutions that Microsoft has given access to, then Microsoft likely has a method to track the leaked code back to the source.
Like Tom Clancy's Canary Trap, for example.
http://miranda-icq.sourceforge.net/zeez-im/
Check out a report of how Zeez Universal IM System copied sections of the popular GPLed Miranda IM. Down to the label strings in places and a "blank"-ed GPL agreement dialog!
~fractal
"Wireless : LAN
2404 07-26-00 02:12 win2k/private/inet/mshtml/src/core/cdutil/gnumakef ile
200 GOSUB 38000 ; * Profit
I knew MS was still using BASIC!
What do you know about who reviews the windows code ?
Also, what assumptions are you making about the number of people, and their qualifications, that are reviewing OSS code ?
My opinions are my own, and do not necessarily represent those of my employer.
What if we find GPL code in there somewhere? Will it still be "not cool?" I respect your integrity, but as far as I'm concerned MS is a pretty sleezy company so I'm not gonna shed any tears for them.
.... try this password: cia1234 or 1234nsa
I'm sure it's more like: /*
/* Operation not permitted */ /* No such file or directory */ /* No such process */ /* Interrupted system call */ /* I/O error */ /* No such device or address */ ...
* errno.h
*
*/
#ifndef _I386_ERRNO_H
#define _I386_ERRNO_H
#define EPERM 1
#define ENOENT 2
#define ESRCH 3
#define EINTR 4
#define EIO 5
#define ENXIO 6
that Wine might ACTUALLY WORK in the near future?
What part of "Economic Litigation" don't you understand?
A company or person with very deep financial pockets can sue out of existence another company or person without such financial resources. It costs money to hire lawyers to do research and show up in court. With a million dollars and a halfway-competent attorney you can bury someone with a thousand dollars and Perry Frickin' Mason on his side.
It's been done countless times before, and it's about to happen to SCO (notice how IBM isn't moving for a dismissal...).
I have something in common with Stephen Hawking...
It's a trap! :D
With all the spying, prying viruses out there, how hard would it be for the windows source to be "stolen" via a backdoor, grabbed password, or whatever. It would be an interesting case, a windows exploit allows somebody to hack company X and steal windows source... who is at fault: MS for the exploit or company X for the "insecure" server?
Apparently, in addition to Windows, the Linux source code has been leaked as well. Fortunately for all of us, a little known company which apparently owns the IP to Unix, C++, space flight, and breathing has kindly made it legal to use their IP, for a fee.
Computer Science is no more about computers than astronomy is about telescopes. --E. W. Dijkstra
You bring up an interesting point. What if the Windows source was analyzed for stolen GPL code? Wouldn't it make that part of the Windows OS GPL?
Would anyone (FSF?) sue Microsoft for copyleft infringement? The developer of mplayer is having just that problem. Only in his case, it is blatent and easy to detect.
This, by the way, is not an excuse for proliferating the code. I for one agree that anyone who sees it is tainted. Just don't risk it.
Yes but that doesn't stop someone from dropping out of the project and looking over this code and writting a COMPLETE documentation of the api based upon it which the remaining developers could then use.
So, how long until SCO sues Microsoft for stolen code?
Linux: When reboots are for upgrades.
Found this nothing to back it up on microsoft.com just yet though...
Can anyone give me an irrefutable source on this? Ballmer is not assuaging any rumors really by saying "it has not been modified" so I'm guessing there is a lot of validity to this. If anyone has a solid source of any information, please let me know.
HTH. HAND.
"Avoid employing unlucky people - throw half of the pile of CVs in the bin without reading them." -- David Brent
If anyone gets this code and feels like it, it would be nice to run this through a script and compare the code to known GPL code... I would like to see if there are ANY 'close similarities'.
Cybie! aka Ralph Bonnell
I wonder though...did M$ steal IP from other people? Now is the chance to see.
Code for win31, win95, win98, nt3.0, nt4.0 and win2k has been out for a long time.....e xt/source.phpn n/mscode2000.htm
see
http://www.albinoblacksheep.com/t
and
http://www.betatesters.com/pe
for links.
The source code has NOT been modified or tampered with.
Notice he didn't add "downloaded by everyone with broadband and a clue".
THIS THING CAN TURN ON A DIME, MACROSSZERO STYLE ALSO FUCK BETA, ~NYORON
I knew MS was still using BASIC!
No, that's their C code. Probably explains a few things.
For every post, there is an equal and opposite re-post.
...when hackers broke into Microsoft's corporate network. Google is your friend.
Wow. This is perhaps the most creative and believable load of crap I've read on Slashdot in a while. Not to mention entertaining. I can't believe that someone actually needed attention this badly as to type such a load of crap out.
Anthony Papillion
Advanced Data Concepts, Inc.
"Quality Custom Software and IT Services"
as per usual warez insanity by 14 yo lamers.
They will generate 1500 zip files all rared up individually then rared up in total again.
Liberty freedom are no1, not dicks in suits.
Even if it is the code, it appears to be seriously outdated in large parts. I grabbed the file list off of /. and did
cat files.txt | awk '{print $2}' | grep -E "01$
. This tells that the latest Code has been contributed in 2001! Well, the basics may be the same, but a lot of updates recently commited are not present in this code (again, if it is real).
No, none of the code should be used, and the people who glean the protocols and formats by looking at the source, shouldn't do any of the coding. But it could really help free up some of the holds that MS has tried to put on the market through their control of protocols and formats.
Thoughts?
Love many, trust a few, do harm to none.
#12 Posted by dreamthief on 13 Feb 2004 - 00:32
Come to think of it... this might be some Microsoft big grand conspiracy plan.
With released source codes, any security breaches:
1) MS certainly would blame on the souce code leaks (and not their buggy software)
2) emphasize more on their stand on closed source code policy, open source = more security vulnerability
"...a generation of kids has grown up thinking Trance is the shittiest music since country and western." - Paul van Dyk
I worked at MS on NT, and though it's been a few years, I can definately tell you there are "gnumakefile" files all over the place. It's the first thing any coder notices when they first look at the source, "Hey theres a Makefile, and a gnumakefile, what's the deal?"
If you'd really seen the source, you would have remembered that.
I already found a big security hole! Just commented out everything in file iexplorer.cc to fix it.
"There is no teacher but the enemy."-Mazer Rackham
Microsoft is sooooo obviously trying to pull an SCO here.
If you work on any Open Source project, DO NOT LOOK!
Whoops! I looked. And now it's clear why Microsoft bought a license from SCO.
All these headers start with "Copyright, AT&T" and "Copyright, Regents of the University of California". I wonder what that's all about.
(For the more literal-minded Slashdot readers: no I haven't really seen the code. This is a cheap jab at Microsoft, implying their code is derivative of unix and linux code,)
Opinions on the Twiddler2 hand-held keyboard?
That quote comes from this link dated in the year 2000.
http://news.bbc.co.uk/1/hi/business/993933.stm.
Dateline: Friday, 27 October, 2000, 16:23 GMT 17:23 UK
Brian Seppanen
Minister of Information and Propaganda
Area 54 The Secret Government Disco Labs Provo
Its a little long but here it is:
--------
#include "win31.h"
#include "win95.h"
#include "win98.h"
#include "workst~1.h"
#include "evenmore.h"
#include "oldstuff.h"
#include "billrulz.h"
#include "monopoly.h"
#define INSTALL = HARD
char make_prog_look_big[160000];
void main()
{
while(!CRASHED)
{
display_copyright_message();
display_bill_rules_message();
do_nothing_loop();
if (first_time_installation)
{
make_50_megabyte_swapfile();
do_nothing_loop();
totally_screw_up_HPFS_file_system();
search_and_destroy_the_rest_of_OS/2();
make_futile_attempt_to_damage_Linux();
disable_Netscape();
disable_RealPlayer();
disable_Lotus_Products();
hang_system();
}
write_something(anything);
display_copyright_message();
do_nothing_loop();
do_some_stuff();
if (still_not_crashed)
{
display_copyright_message();
do_nothing_loop();
basically_run_windows_3.1();
do_nothing_loop();
do_nothing_loop();
}
}
if (detect_cache())
disable_cache();
if (fast_cpu())
{
set_wait_states(lots);
set_mouse(speed, very_slow);
set_mouse(action, jumpy);
set_mouse(reaction, sometimes);
}
printf("Welcome to Windows 2000");
if (system_ok())
crash(to_dos_prompt)
else
system_memory = open("a:\swp0001.swp", O_CREATE);
while(something)
{
sleep(5);
get_user_input();
sleep(5);
act_on_user_input();
sleep(5);
}
create_general_protection_fault();
}
Sorry, that quote is almost four years old.
See above a couple of posts. The 'update' is a qoute from a news article from about 4 years ago.
There's a growing sense that even if The Future comes,
most of us won't be able to afford it.
-- Lemmy
nope litespawn is the shell switcher that allow syou to switch from explorer.exe to a different shell such as litestep
Don't Tread on OpenSource
Do you really think they could cleanroom stolen code without repercussions? If they got found out, Microsoft would have a freaking field day with it. And not just in the courts either - you can bet it would be splashed around the media as well. Even IF they had a legal leg to stand on, it would be utter stupidity to try it.
> Windows 2000 and Windows NT source code has been leaked to the internet.
Emergencies crews are working around the clock to clean up the most toxic leak since Exxon Valdez!
- For the complete works of Shakespeare: cat
Why this is perceived as such a security threat to Microsoft, when it's not for Linux?
Don't let Darl McBride look at this or SCO is gonna start suing Microsoft...
I'll send him the hardcopy by UPS.
accesory
12345678
Got time? Spend some of it coding or testing
100% compatibility with all Windows programs.
"Don't ask us how we did it!!!"
or other released code. It should be possible to triangulate the source against existing released software, so at least we can know what exactly it is and whether this is a hoax or not.
The article right before this one was about some windbag expounding how Open Source is less secure than closed source.
;o)
There goes that theory..
The "Civilized World" jumped the shark ca. 1973.
Does this mean we can finally get Win NT 4.0 as stable as *nix?
I have nothing to hide. So, why are you spying on me?
There's no point in Microsoft and its scions flinging up their hands when the inevitable happens and some code leaks out. They set themselves up for this by banking so much on secrecy.
[ UNSIGNED NOT NULL ]
If you look upon this code, it will cause a snow crash of your brain and any internet explorer browser will send commands directly to your brainstem...as will hax0rs.
It's all a ploy on the same basic structure as SCO. They let the source out, then claim that it was "stolen", then start "finding" their code in your product, then sue the shit out of every member of the human race.
You watch, it'll happen.
In other computer news... Linux source code leaked all over the internet. Computer users worldwide unconcerned about the leak. In fact most are content having it this way. Hmmm, Microsoft...
.deviatefromtheabsolute.
and you didnt even use a link
Heh. I had included a tag but hadn't used < / > so it got filtered out :-(
Paul
We witness not a fallen world, but falling every day - The Call.
You can see it here: here
;-) :-D
I didn't point you to it
Funny how different two companies feel about source code. Apple has somewhat embraced the open source model, contributing to KHTML, and using many other open source projects. While Microsoft has shunned them all.
is probably pissing in his pants right now.
The "Insert Quote Here" line is almost as predictable as inserting an actual quote.
Sorry, no typo. I'm really bad at detecting sarcasm but I think I got your meaning.
Quick someone boil the Internet!!
Hopefully the developers of Wine can use this to improve their product! Damn... imagine it actually working for the majority of Windows apps/games!!
*That* would be something to make people start using Linux as a desktop!
We have secretly replaced these Slashdot mods' sense of humor with a rusty nail. Let's see if they notice!!
I doubt that Microsoft intentionally planted this snare but if any future open source project even vaguely resembles this leaked code I have no doubt that Microsoft will open their full arsenal of lawyers.
On the flip side:
A comparison of the code against that of open source projects could be used to detect places where MS developers have included open source code in MS products. With this as a starting point, a suit's discovery process could bring it out in a form that could be used as evidence against MS.
(Of course the leaked code should be analyzed by a consulting organization separate from the open source developers, to keep developers and their servers clean for defense against later claims from MS.)
MS is alleged to have a record of stealing other people stuff. Will be interesting to see if it's true, provable, and something can be done as a result.
Bantam Dominique roosters crow a four-note song. Once you've heard it as "Happy BIRTHday" you can't NOT hear it that way
I'm really fascinated about, if this turns out to not be a lie, the long-term ramifications of this. It's a can of worms that you can't undo.
Even if THIS one is NOT true, it's only a matter of time before there's a REAL leak of the REAL code.
I'm surprised they've kept it under wraps as long as they have.
Bantam Dominique roosters crow a four-note song. Once you've heard it as "Happy BIRTHday" you can't NOT hear it that way
He's correct. The tree is forked as needed for future versions. Heck, you can search through the asm files and still find ones with David Cutler's name in them that haven't been changed since he wrote them.
This space for rent.
before leaking it ? :)
;)
I do'nt think it's an example to even look at if you ever want to write good code anyway
Btw, I was just looking at the movie 'Hackers' when I learnt that. coincidence ?
Is it good, or is it Whack?!!?
The "Insert Quote Here" line is almost as predictable as inserting an actual quote.
They'd only be sued by the FSF if they had put GPL'd code into Windows.
While the FSF would definately come to the aid of anyone filing a lawsuit over GPL claims, there is no reason to think that any one who released said code couldn't themselves file a lawsuit. Just be cause you place something under the GPL doesn't mean that FSF has any rights to it. The only time that they could even be a primary party in the lawsuit is if the copyrights for the code in question was assigned to them or they wrote it themselves. I would wager that there is significantly more GPL code that the copyrights have _NOT_ been reassigned then have been.
Shameless self promotion : The Misadvetures of the in
I didn't mean to say that the code in Linux would be an ACTUAL derivative of Windows code. I meant only to suggest that Microsoft would find a way to CLAIM that it was.
April Fools is early this year...
"How'd the fuck did they do that? We've had this code for years and we can't be 100% compatible."
Nerd: Derogatory term typically directed at anybody with a lower Slashdot ID than you.
I think we were just Farked.
/.ers we must not let this go unpunished
WHAT?? TO arms my fellow
Mr License was unwilling to make much comment to our reporter - upon packing his toolbag up and phoning his wife to get the dinner in the oven, Mr License said "Move along folks. All done here now, nothing else to see."
Gentoo Linux - another day, another USE flag.
Microsoft is a "Serious Corp", but it hires thousands of programmers who all have access to the net and a complete set of source code for most GPL'd projects.
It's not wasting time, I'm educating myself.
This is extremely good advice. I would go even further and say that if you would ever like to work on an open source project, don't look. The presence on a project of a person who had seen the Windows source could put the entire project at risk.
For a very practical example, consider Samba. If a person who had seen the Windows source were to contribute to Samba and it were later to come to light that the contributor had seen the Windows source, in the name of safety every piece of code that person contributed would have to be ripped out and replaced. Worse, to guarantee that there was no trace of taint, it would probably have to be replaced by people who had not only never been exposed to the Windows source, but who had also not seen the contributor's tainted code. In short, it would require the recruitment of people who had never worked on the project before, or even read the source. Finding those people would not be easy, to say nothing of the time and credibility that would be lost.
For that matter, even if you have legally seen the Windows source because Microsoft has provided it to your employer under their shared source program, the same taint would follow you. If your employer has access to Windows source and your job does not require you to see that source, do yourself a favor: don't look.
If you look at the Windows source, you at the least taint yourself WRT working on any project aimed at interoperability with Windows, and quite possibly on a much wider variety of projects than that.
In short, JUST SAY NO.
"How can 300 gigs of source compile down to a nice CD-sized bundle of software?"
Lots of white space?
There's a growing sense that even if The Future comes,
most of us won't be able to afford it.
-- Lemmy
Okay, IANAL, but isn't this grounds for a massive lawsuit against MS? Shit, someone in the know needs to check out this source code and do a diff with gzip and gnumakefile and see if MS really did rip off GNU. Of course, it's illegal for them to look at it, but maybe there's grounds for a subpoena? You know, to look at the code... that's already been seen.
c-hack.com |
I'm no computer programmer or even an "expert", but i know my way around linux - that is, i can compile pretty much everything i need just how i need it - and of course windows is no biggie. I'm just wondering... could someone potentially use this code and maked a hacked version of Win2k? Make it more secure, or infuse some sort of unix code, or perhaps make it a bit more possible to run windows apps on linux? Of course, for personal use and interest... god only knows how badly every linux user would be sued if a true "Lindows" made its way to the web......
eric http://www.ericdfields.com/
New, Norton anti-leak pads! Just place one in each Microsoft Employee/Affiliates undergarments, and keep your code secure!
Science advances one funeral at a time- Max Planck
For one thing, I've never received anything from Microsoft in a tar file.
If you really want to watch as all the news sites
8 59-1&ed ition=us&q=leak+code&btnG=Search+News
begin covering this you can watch articles appear
at news.google.com. You'll see them linked there
within minutes of them being posted.
I found this search to be pretty good:
http://news.google.com/news?hl=en&ie=ISO-8
I know. I KNOW. I KNOW!
But it doesn't matter what you or I know or think.
It matters what other people think, lawyers, judges, IT workers who have not PERSONALLY been involved with or followed Samba's development.
Microsoft can claim that aliens stole their RPCSS stuff and beamed it into Andrew Tridgell's head. But as soon as they leak that to the press, suddenly Samba's in a world of shit, whether or not it's true.
That's why it's called FUD. If you don't know any better, then you'll likely bet on the side with more lawyers.
All Microsoft has to do is hint that Samba had the leaked stuff all along, by claiming they wouldn't have gotten as far as they have gotten without it. Then if they can convince a judge in Australia that they plan on filing for infringement, the Samba project will have to go on the defensive. They'll have to (trivially) prove they didn't have the code, but by then the accusations will be all over the press.
I mean, Samba specifically deviates from what published specs on CIFS are to be bug compatible. If I were a lawyer pursuing this angle, I'd latch onto that as evidence that there was something fishy going on. (Evidence of source code paraphrasing, which is "easy", as opposed to the result of hundreds of man hours of testing and debugging, which is "hard")
It doesn't have to be true, just plausible. We've done the research. Lawyers and trial judges in Australia have no such intimate knowledge of the subject matter, and thus would probably agree to at least hear evidence, and grant Microsoft many motions. I mean, look at SCO! They don't have to show any copying, they just have to show evidence that they think it happened, and then go into fact finding mode. Boom! Instant clusterfuck, for a good while. And it scares off people at the margins.
And this "plausible" copyright and/or trade secret violation scenario is at least somewhat lucid (compared to SCO)... at least up to the point that you do a code comparison and see that this is patently false. Again, they know they'd lose in court. It's just the act of calling it into question (which you absolutely could do) that is the problem.
THIS THING CAN TURN ON A DIME, MACROSSZERO STYLE ALSO FUCK BETA, ~NYORON
...Linux pulls a Linux and points out that all the 'copied' code was in Linux or some other OSS project first!
The man with no surname and a silly hat
On the universe: It's bunk.
Read the next slide -- it says it took a mere 5 hrs to rebuild the source tree on a 486/50!!
Clearly, the 50gb number is an exaggeration. Maybe it includes lots of redundant cruft which isn't actually compiled. Or perhaps documentation. I can't see any way that a 486/50 could compile 50 gb of code in 5 hours. That's 10 gb of code per hour, or about 2.7 mb of code per second! At 27 chars per line avg. that would be 100,000 lines per second -- on a 486/50!
In this case the point should be that people who bought into the MS security concept will feel screwed. The ones on other systems will be able to do their business as usual while crazed windows admins run around firefighting for their lives.
I cant imagine how this could have a bad effect on linux at all. A big boost for ABM and the industry as a whole would survive just fine without MS. It isnt like MS has really truly made something significant other than piggybacking and marketing.
HTTP/1.1 400
Jesus you people!
:P
It's like every five minutes...
THIS THING CAN TURN ON A DIME, MACROSSZERO STYLE ALSO FUCK BETA, ~NYORON
http://www.sysinternals.com/ntw2k/info/xpsrctree.s html
full source tree is free, and generatable from the debug/dlls etc....
enjoy.
yes this is 100% legal
Liberty freedom are no1, not dicks in suits.
Microsoft probes possible Windows source code leak
Well, so seem to be the mods, as I got modded as flamebait, although I just tried to be funny. It's just that the "IANAL, but I think that..." -like phrases are so common in /., that seeing your post stating "IAAL", and that "it is this way" actually took be by surprise and made me laugh.
But no offense really, just joking. Happy to see real lawyers here, too.
“Wait for Hurd if you want something real” –Linus
Somehow I see MS blaming Linux for it. "A fat penguin was spotted by the security cameras at the Microsoft Headquarters in Remdond last night..."
there are many sources now. All you gotta have is contacts. Soon it will be all over kazaa and bit-torrent. Well done microsoft, i just wait for all the security updates. I do still wonder why it was released to 'certain ppl/groups'.
Does it say something about me that I'm more interested and excited about this than any news story that I've read in the last year? (Janet's tit included.)
$geek++;
Don't Panic!
I know they have at least the TCP/IP stack from BSD. I would be interested to see if the copyright comments are still on the files.
#### Enter Darth Gates ########
Who do you think allowed that source to get out? I wanted your puny open source rebels to come out into the open so I could crush them!
#### Exit Darth Gates #########
wow i think both microsoft and LucasArts are gonna sue for that one.
"The rumor regarding the availability of Windows source code is based on the speculation of an individual who saw a small section of un-identified code and thought it looked like Windows code. Microsoft is looking into this as a matter of due diligence," a company spokesman said. "If a small section of Windows source code were to be available, it would be a matter of intellectual property rights rather than security." - from Eweek.
Also see ZDNet, InternetNews and Google News
When I go out in the sun, I wear sunscreen and although I'm fairly pale, I probably won't get burned too badly. If someone goes outside with a T-shirt and shorts for the first time in their life (say a 25-year old), they'll probably get burned fairly badly (unless they wear a lot of sunscreen or aren't out for long).
Linux and other open source OS have had people looking at them for a long time. The people looking at the source of Linux are less likely to be a monoculture than the people at MS who are hired to look over software. In addition (uninformed speculation) more of the Linux people may have been black hats once - the less ordered (as in cubicle order rather than procedure order) system may be more amenable to some who fit a less monolithic background. Linux is thus likely to have been looked at by people who might once have looked to hack it and by people with a wider variety of skill sets. MS knows a lot about software, but their diversity in software knowledge and opinion is likely smaller than that of either their user set or of that of white hat hackers.
The other factor is that having the MS source without a licence is illegal - thus the people who are most likely to take advantage of the availability of the source are people without much respect for the license in the first place - black hats. Linux source can be viewed legally, and so is just as likely to be looked over by white hats as black hats (probably more likely, because of the population ratio of BH and WH).
In one of the Clancy books (I think "Debt of Honor"), he talked about secrecy being good for hiding information that someone doesn't want you to know - but that when it broke, the news would be much worse for that someone, and harder to control. That seems applicable here - only the news is directed almost exclusively to those who would do them harm.
This just in WINE development moves at an exponential rate! Ever wonder?
You say things that offend me and I can deal with it. Can you?
You are an OSS developer. You are reviewing a patch someone sends in. Upon reading it, for whatever reason, you suspect that it is code taken from a closed-source project, whose proprietors are known to aggressively defend their rights.
At this point, you immediately delete all copies of this patch.
How liable are you? (I would hope the law is on your side, but are there any hidden surprises?)
PLACE YOUR BETS!!!! PLACE YOUR BETS!!!! you to can win big if you can guess correctly which country the crappy code came from USA? China? India? Europe? who knows, i dont but place your bets and hold those ticket stubs
"to be like god we make our own dolls to play with, but what does that make us, but dolls for god to play with?" Ikari,
Now they can say that any exploits would be due to having access to the source code, and not due to their inherent flaws. Sheer genius. Good PR, and they can now point to how good security through obscurity is, and about those OS's where the source code is available....
If you considere 300GB the amount of data in the sourcetree after a debug/profiling compile
HI O WISE PRINCE. WHT TOOK U SO DAM LONG?
Topic of #windows: http://www.windorks.com | We don't care about "the leak," don't ask us about "the leak," and we will not give you voice.
Topic of #phrack: "wake me when they find the code that lets the FBI in"
.eml files are Microsoft Outlook (Express) e-mails. They should be simply plain-text...
So it would be better to only view BSD code, then they could legally use it, as long as they give credit..
This might have ramifications of cross breeding between the varying OSS licenses too, if taken to its logical conclusion..
Not to mention other industries.. it could render most everyone technically unemployable if you ever leave your first job...
---- Booth was a patriot ----
http://microsoft.has.no.secure-future.info/
;)
(I hope this ain't redundant...)
That server seems to be under quite a lot of pressure right now though
Torrent here.
I've been thinking about what would happen if Win2000 source started to circulate for some time.
There are many people out there who really like Windows, even those who know Linux and are advanced technically. There are also many people who love Windows and hate Linux.
It is possible that some people will use the source of Win2000 to actually change several of the interface issues that are beginning to seriously affect productivity in the Windows environment. For example, the inability to use the long path name that is the current directory in one program and easily transfer it to the File:Open box of another program. Crawling through endless directory listings when you want to move a file from one program to another really eats a lot of time. Many people would pay to 'fix' the interface issues in Windows that probably can only be addresses by recompiling.
Would virus writers use access to the source to search for new ways to destroy data? Sure. What can anyone do about it? Well, as a start, punish them. It's common for virus writers (according to the New York Times Magazine) to post their 'research' on sites for script kiddies to implement. That way they are not legally liable for releasing a virus.
Bullshit! This is conspiracy to create fraud and grand theft vandalism. If Tommy Chong can go to jail for selling painted glass tubes, then why aren't these teenage virus writer Bozos in jail for causing millions of dollars in damage by writing criminal source code? Virus damage will start to actually fall when the people who cause the damage are convinced to cease this activity, perhaps by just killing a few of them in order to encourage them to find more acceptable hobbies like smoking weed or getting laid.
Even if the Windows source is actually somewhere on-line, what difference would it make? Anyone who recompiled it with changes wouldn't be able to sell or distribute it. Having an improved recompilied custom version of Windows would make you a criminal anywhere in the world. Plus it's a huge and extraordinarily complex program. All in all, it might be better just to learn Linux.
Still, some people would study Windows source and make illegal and discrete alternate distributions. The code would fork repeatedly from the current Microsoft release of Win2000 and over the course of twenty or thirty years become a hybrid of Windows, Linux, and Mac.
I was offered a copy of the NT4 source code a couple of years ago. I didn't want to pay for about 60 CDR's and for someones time burning them since I'm not paticularly interested in it. About 30 CD's for original NT source and another 30 for the service packs IIRC.
The source code for MS-DOS 6.0 can be found on the usuall filesharing networks and has a few amusing comments in it.
http://www.internetnews.com/ent-news/article.php/3 312451
r ol eak_1.html
. as p
http://zdnet.com.com/2100-1104_2-5158496.html
http://www.infoworld.com/article/04/02/12/HNmic
http://www.eweek.com/article2/0,4149,1526390,00
...before investigating security weakness that allowed Windows source code to leak to the Internet.
Gentoo Linux - another day, another USE flag.
I'm still humbly running Win98, but this should get interesting in the next 6 months.
My guess, this is some of the source released to academic institutions for study. Lots of universities have access to a small portion of the windows source code, for use in various computer labs, and to create interoperable code. It comes on a single CD, and is not difficult to obtain.
.eml files be links to the original file? .eml files, like tcp-ip tutorial.eml. Would there really need to be a tutorial like this spread everywhere?
/. doing the trolling, this will probably hit the major news outlets tomorrow. No doubt, they will only quote the most pandering media whores around, to sensationalise the story. Any bets several major stories will point to /. as a culprit, or as a den of criminal hackers?
/.
I've studied one small section of M$'s source code, a single network module appearing in both NT4 and NT5.0, under NDA of course. I don't see it here. There are a lot of things I don't see here, and I'm still going through the tree. There are some things here that are clearly part of windoze, such as the source to regedit.
Some other things that make me suspicious this isn't all the source code:
1) lots of 0 length files, could all those
2) the win2k source just happens to total 658MBytes, about the size of a CD
3) there are a number of 0 length files of people's names with the letters CV next to them. cv - vered mazafi.eml, ronen-cv.eml
4) all through the file listing are repeats of
I think this is just a student prank, being trolled out of proportion. It's not just
the AC
I can't believe I'm admitting to extensive knowlege of windoze on
Hemos is like...sci-fi fans;he thinks technology is cool, but he hasn't bothered to understand the science it's based on
1. Get the OS to compile and boot.
2. Reproduce windows bugs.
3. Fix bugs faster the MS does.
[...]
6. Profit!
That's the source code for Linux. If only I could get that time back.
There have always bin rumors that closed source Microsoft applications have leaked to terrorists
Osama bin Rumours?
Vino, gyno, and techno -Bruce Sterling
'Microsoft is a lot more like "Office Space..."'
Its funny how people build up ideas in their heads about what its like in a large corporation, somehow like a hollywood movie...
meh, it'd be lost on you people anyway.
Are you curious? Do you wonder what it is like? Microsoft 'source code' is oh sooooo satisfying. Find out what all the talk is about. You can be discrete or go all out, it is up to you. The best part is, no one has to know, it can be your little secret.
Yankee Group senior analyst (sic) Laura Didio has these alarming thoughts on internetnews.com about who might now be able to get their hands on the Windows source:
So Microsoft is the defender of truth and justice in the free world, and OSS hackers are like suicide car bombers?
She then went on to warn of the dangers of hackers using the several hundred megabytes worth of leaked source code to compile their own pirated copies of Windows 2000. What a dumbass.
And what exactly is a "tinker", anyway?
As subject, this torrent is actually the linux kernel ver 2.6.2!
" To steal ideas from one person is plagiarism; to steal from many is research. "
Can I adapt "West Side Story", since it's a derivative work of "Romeo and Juliet", which is in the public domain?
The source code must be 10 Terabytes.
30% off web hosting. Coupon code "SLASHDOT".
Wouldn't that be a slap in the face for them... how about a full campaign. LINUX USERS UNITE, STOP WINCODE FROM TAINTING OUR CODE! uh... dot com
Linux 2.6.2...
har de har dar. well, it does what it says on the tin.
I am one of many. My idea is not unique, nor do I expect my voice alone to sway you. I speak in a chorus of opinion.
Hahaha you rock!
My take on the whole matter: Blow. (ie, I couldn't care less. It'll just speed up the inevitable - switching to linux.)
I wonder how many shops will rush migration from Windows to Linux (if it is indeed possible in their shop)? I'm guessing quite a few.
~/ssh slashdot.org ssh: connect to host slashdot.org port 22: too many beers
http://www.sschmidt.info/w2k_source.torrent
That's right 195MB
All anyone seems to be pointing to is the source tree listing in a text file. Wow.
Such a listing for XP has been available on the Sysinternals site for years:
XP Source Tree
Couldn't this give the Open Source community problems down the road? As in Windows code ending up in some Open Source project ? Just the accusation would cause problems.. Unlikely , but everything is possible.
-- TRUST ME! I KNOW WHAT I'M DOING!
http://www.zdnet.com.au/news/software/0,2000061733 ,39116114,00.htm
SCO's actions are based on a company with little revenue, little cash, and nothing to lose. Microsoft has everything to lose. Say what you will about Microsoft, but they didn't get to where they are today with silly moves like that.
Laura Didio: aka the SCO queen and her take on this development!!
"Up until now it was more like the 70/30 rule, where 70 percent of the threats are bogus. Now it's more like 50/50," Didio said. "With the open source community, there are a large percentage of tinkers and 'ankle biters' who are trying their hand at hacking. Some are even communicating with each other. So it only takes one or two of these groups sharing information to be able to pull something off. When you have this type of passion, it's hard to fight because these people are like virtual suicide car bombers."
Please, don't slander BSD and research UNIX. That's just not right.
by a 500LB gorilla.
It has nothing to do with morals. It's self preservation.
Most companies don't have the resources to kick the crap out of warez distributors. MS isn't one of those companies.
Ben
Work Safe Porn
LOL ... my math is completely wrong ... obviously, I meant "$50B over the next several years."
I think you people are going a little overboard. Windows source code isn't like a virus or something.
Wait a minute....
fix it and slip it back
Ain't that the naked truth....
From excellent karma to terible karma with a single +5 funny post...
Actually, Microsoft had a license to port Unix to the 286 and the AT architecture.
And shortly after releasing Xenix, Microsoft released MS-DOS 2.11, which was the first version of Dos with directories & subdirectories, with devices represented by reserved filenames (LPT1, COM1, etc.), the first one to use command-line I/O chaining ( | , > , , etc.) and the list goes on.
All miraculously new and original features for Dos, implemented exactly like Unix, just after MS got a peek at the Unix source.
Why that one's never ended up in court is beyond me. No, I will not be surprised if it really is Windows source and some files still have AT&T copyrights in it.
Yes, I did see parts of the Dos 2.11 source.
Screw that.. If we find GPL code in here, Bill's going to get a good SCOing himself. This code can in no way shape or form go into Linux though. That would be very bad.
Apple's in the hardware business, their software is made to sell computers, so they have zero reason to not take advantage of others doing your work. MS on the other hand doesn't have anything but the software to push.
http://www.sschmidt.info/w2k_source.torrent
:-)
I haven't finished downloading this, but it's 200MB in size, has 944 peers!
The tracker is the same one you have listed:
http://alge.nlc.no:6969/announce
The hash is also the same.
I Can already imagine M$ Exchange servers running under Linux or M$ Office, or M$ SQL Servers etc. :-)
:P but M$ has done more than windows) they are making money BUT they do good things whith them (others are making more money by creating guns, they are the ones who SUCK)...
:-)
Now if the source code has been leaked...
Remember it's only windows we got, we canot use the code as is and we canot be 100% combatible due to legal reasons. BUT lets say we will be able to run programs writen for Windows, what then ?
Microsoft never relied on home users, everyone has windows because its easy, you can play games, you can run office, photoshop etc not because its a good OS (easy doesn't make it good).
Microsoft is No1 because:
a) Of the seminars, every company can train their people to use M$ Office, so even if they use Linux they will still be using Office, Office is just an example.
b) Of the diplomas etc cause they have to authorize ppl so they got money for it, and people would prefer to learn Office etc cause they can get a diploma to prove it, this aplies on companies too.
c) Of the huge licences they made with companies, organisations etc for various software.
d) Of the support they provide and the guarantees.
e) Of the years its been working on it (they trust M$ even if the have unsecure apps (most people don't care about security so much, they prefer to do every-day stuff with their PC, that's what windows are for)).
They won't realy loose money because people new to PCs will still buy windows with each new machine they purchase (Licences remeber?)also organisations will still continue to buy windows because of the seminars etc...
Most people have Windows either from the purchase of a new PC or pirated so M$ wont loose money from them.
So if u think of it more M$ will still be in the top and now they will be able to create stuff for linux too with no licences etc. They will get more money because more people will use them (they will now be able to run their favourite appz under a secure OS), they will realy get money from open source by not being compatible with open source but with open source being combatible with them.
Linux will never be able to handle everything so u will still need M$ Stuff (lets say you will still need DirectX to run games for example).
Also linux will never be able to provide guarantees, Licences, seminars e.t.c. something that companies need.
This is both good for the open source comunity and Microsoft, the guys are REALY CLEVER. The only problem is the viruses, but it wont last for long, especialy if M$ asks for help from the open source community (with a competition for example).
Finaly let me remind you that if it wasn't M$, a lot and I mean A LOT would never know how a PC looks like, it would be only for companies, so next time u say things about M$ remember what they did to the society, i personaly thank them, if it wasn't for them there would be no open source (I continue to believe that Windows SUX
Sorry for my poor english
Sorry for the large post
Nick
Because a new platform would not let them leverage their current monopoly powers.
Wow, sent an e-mail as suggested when clicking on "use classic" banner, and got a fast response that addressed my msg
That quote is four years old.
-----
PGP Key ID 0xCB8FF658
true, its leaked constantly but sco is the only company that is stealing it.
email her. The link's on the story page (don't quite know where, 'cause I'm using lynx right now). Tell her nicely where she fucked up.
Don't just sit here and bitch on Slashdot...
I guess I worded that poorly.
If you believe in Open Source or Free Software then you should believe in copyright. If you find a GPL code in use in a closed project, then you should report it to FSF. If you find Windows code in the wild then you should report it to Microsoft. It's their code and consequently they should and do control who gets to see the code.
That said, I would desperately like MS to release the code under an open-source, but closed-project style licence; that is, the code belongs to them, and for any derivative code MS is automatically granted a licence to to sublicence and do whatever they wish. It should not be permissible for the code to be included in another product without the explicit say so from MS. Microsoft could protect theselves financially by being the only source for binaries. BillG are you listening? Win2K, with open source could be sooooo good, and you would still make a stack of money. Plus you'd have a huge team looking at improving the software, for nothing.
It's worth a shot if the code has escaped. At worst you'll get a second product line.
From the article...
"
This leak is a shock not only to Neowin, but to the wider IT industry. The ramifications of this leak are far reaching and devastating. This reporter does not wish to be sensationalist, but the number of industries and critical systems that are based around these technologies that could be damaged by new exploits found in this source code is something that doesn't bare thinking about.
"
Devastating?? Devastating because of the possible worms, viruses that can araise from this?
Closed or open, a piece of software "should" be secure and clean regardless.. if it's devastating it just proves that MS creates shit, so the fact that a pro-windows site actually says that is sad.
[alk]
Copy of the windows source is leaked from somewhere, floats around, etc, Through a watermark or something it is traced back to the source. That person claims their box was hacked, points to obvious weak point in code that allowed it to happen. This would probably be the most embarassing thing possible for microsoft.
"Sic Semper Tyrannosaurus Rex."
for those of us who count in binary.
I am Monkey, the Great Sage, equal of heaven!
If this is the real thing, and it happens to be the whole enchilada, this could either bring to the forefront or lay to rest the theory of the unacknowleged API's that they supposedly have in there so that their own apps run better/faster, etc.
(Stolen sig) Remember: it's a "Microsoft virus", not an "email virus", a "Microsoft worm", not a "computer worm
I never usually bother requesting mod-ups, but this one is pretty funny and apparently unnoticed too :)
http://www.smokeherb.com/windows/
the sourcees are only partial, a lot of little scripts, build tools, code/security/certificate signing tools are missing, 3rd party and drivers of course, its basically just some low level kernel and little shell and some apps sources.
you need a lot more if u wana build windows
check for some deeper info about win2k and nt3.x build and software engineering information here .
alge.nlc.no is not affiliated with nlc.no, it is simply a forward given many years ago.
Guys...
I can't believe you haven't figured out what the EML files are yet.
Anyone remember NIMDA? The worm from 2002 I think? It had this exact same effect of sticking infected eml files all over your folders (by taking some names from your files, and others randomly). Opening those EML files or forwarding them would guarantee future and constant infection.
It's clearly evident that this machine was infected by nimda and got port-scanned and found. The rest of the code is probably going to come soon enough, unless MS already found out and pulled the plug.
By the way, alpha doesn't mean "Alpha Version" but the Alpha CPU made by DEC, now owned by Compaq.
i doubt that apple would react the same way if Aqua was leaked...
Thankyou all for participating in *the* troll of 2004.
metainfo file.: windows_2000_source_code.zip.torrent
info hash.....: f03fc1e04869294d5644d3c8c5d0fb8f2d26aa59
file name.....: windows_2000_source_code.zip
file size.....: 213748207 (815 * 262144 + 100847)
announce url..: http://alge.nlc.no:6969/announce
that CLEARLY says
F03FC1E04869294D5644D3C8C5D0FB8F2D26AA59
That's copied right out of azureus.
The hash is the same, and i'm just waiting to see
Here's some facts about the zip file that's on the run:
The zip file is 208 mb (213 748 207 bytes)
All the files with the "letts to children.eml" etc names are _completely_ empty.
All files are commented, some are said to be public implention examples while others got "semi public" or no note of being pubblic in the headers.
It doesn't really have any comments with personal twists etc, just facts from what I observed this far.
It only includes the OS stuff (e.g. mplayer/iis/ie isn't there in full or at all)
Got questions, just ask.
So i have been reading /. and looking at examples of source code that have been cited and created on /. but i think this is the real code that was leaked.
http://www.spymac.com/gallery/show_photo.php?picid =80374&size=big
-- Ben --
If we find GPL code in here, Bill's going to get a good SCOing himself.
Not necessarily. You'll never get a court to admit stolen source code as evidence.
LK
"Hi. This is my friend, Jack Shit, and you don't know him." - Lord Kano
Rubbish. Definitely look - there's a lot of stuff you can learn from seeing the source that can't be traced back to your having seen it. Take wine, for example[0]: they're trying to implement a largely undocumented ABI. At the moment it's hard even to know what they have to code. If they look at the source they could see what functions they need to implement, how they need to work etc. Make basic notes, never look at the code again, go on holiday for a month, come back and write the missing bits semi-cleanly. They wouldn't need to copy any of the implementation (doing so would violate MS's copyright) but it would sure help to know what functions they needed to write (and I guess that would count as nothing more than utilising the widespread leaking of a former trade secret[1], which has no protection under law). The key point is, don't under any circumstances copy the code. And, if you do choose to look at the source, I suggest you get rid of it afterwards and don't tell anyone.
[0] I'm not suggesting for a second that the wine devs would look at the code, you understand: it's an example.
[1] If the leak is genuine, MS need have no doubt that this will be all over every p2p network in existence within an hour or so.
"'I pass the test,' she said. 'I will diminish, and go into the West, and remain Galadriel.'"
- JRR Tolkien.
??? - as in, which one of the 3 million exploits should I pick?
From excellent karma to terible karma with a single +5 funny post...
Talk about a motivational strategy... Impressive!
Comment removed based on user account deletion
This is all speculation. Please wait until all the FACTS come out. Thank you.
That the article author describes it as potentially devestating and full of security risk with the source being leaked. And yet, look what that very same thing has done to the open source community. True, it probably is a very bad thing for windows security. Yet another reason to switch to another OS?
Isn't that
/* variable */
int i_i;
Mind you Hungarian Notation!
Just wonderin if the source code has hit the newsgroups yet, and if so, which ones. Thx
That's just for XP. For all the 9x releases they were still using COBOL ;-)
"'I pass the test,' she said. 'I will diminish, and go into the West, and remain Galadriel.'"
- JRR Tolkien.
And as you obviously don't know anything [....] why the fuck did you open your stupid mouth anyway?
Ever notice it's always the Anonymous Cowards who are so vehement in their criticism? Always with the "you're stupid" and the Mr. Tough Guy expletives: "why the fuck...."
Yeah, yeah, I know, Mr. Anonymous Coward: you're powerful and famous, in your mother's basement.
Opinions on the Twiddler2 hand-held keyboard?
So lets say microsoft did this on purpose. They could kill both the WINE project and the ReactOS project with one blow. They'd have a REASON to take both projects to court, repeatedly, Even if there were only suspiscions.
compiled software is 0's and 1's
no comments, no spaces.
think about it.
IT WAS LIBERATED!!!!!!
The "Insert Quote Here" line is almost as predictable as inserting an actual quote.
There are many more...! Everything from GNU is either GPL'd or LGPL'd, if it gets out M$ is going to be in a world of hurt!
Conclusion: this is obviously a part hoax. There seems to be partly authentic code from various Microsoft projects, combined with some injected "authenticity-confirmation-stuff", such as fake comments and notes.
Now get over it.
aaekhm-zzkjg--b
From ZDnet: The 203MB file contains the code that appears to be from Microsoft's enterprise operating system, but the code is not complete, said Dragos Ruiu, a security consultant and the organiser of the CanSecWest security conference, who has examined the file listing. "It was on the peer-to-peer networks and IRC (Internet relay chat) today," Ruiu said. "Everybody has got it; it's widespread now." The 203MB file expands to just under 660MB, he said, noting that the final code size almost perfectly matches the capacity of a typical CD-ROM. The entire source code, he said, is believed to be about 40GB, meaning that the file circulating Thursday would be only a fraction of the full code base--if it is authentic. http://www.zdnet.com.au/news/software/0,2000061733 ,39116114,00.htm
I read rotten.com, I think I'm about as fscking tainted as they come. It's absurd to think that there would be ground for a lawsuit against an open source project you worked on because you had at one point glossed over the NT kernel source or something. That's like homeopathics who believe that remedies should contain miniscule quantities of active ingredients. In fact, the "strongest" formulations usually contain not a single molecule of the substances in question. Zero parts per billion -- pure water.
I've seen the Windows CE source. Maybe I should never program again because MS could sue me! I think not.
PS No offence to homeopathics, I don't care what crazy shite you belive in.
-73, de n1ywb
www.n1ywb.com
Probably not, but it would be trivial to show similarity in two binaries if you know where to look. The source would only help find the needle(s) in the haystack.
We have identified over one million lines of our IP in Microsoft's source code. While I cannot share most of them because they are a trade secret, here are three of the most glaring examples:
#include
for( ; ; )
if(!stop) {
Many of these lines have been copied verbatim several thousand times. We do not want to, but are forced to sue Microsoft for unlicensed use of our intellectual property.
We will institute a licensing program called gplSource which will allow Windows users to obtain the legal rights to use our IP. This cost will be significantly discounted to early adopters.
Already at least three Fortune 500 companies have seen the validity of our claims and have paid these fees on a per-CPU basis to continue using Windows. While we cannot divulge their names, they do exist. Really!
Computer Science is no more about computers than astronomy is about telescopes. --E. W. Dijkstra
It's amazing how the "informed" slashdot crowd falls for a story like this. I think Neowin wanted to test their infrastructure so they trolled /.
I've been a liability to projects I've worked on for years. I don't need any MS source code to be a shitty worker. I get to work 15 minutes late, I come in the side door so "Lumberg" doesn't see me, ... That movie was so dead on.
IT sucks, I cannot wait to get into Fast Food. Bring on the outsourcing Republicans!
that wouldn't be so easy though, because things like whitespace or a minor syntactical change, or even just renaming a function or variable would create a different fingerprint, so if somebody really wanted to they could slip the same code without it being recognized. definitely good advice though, if there is a way to make it work.
it's very clear that *ideas* are not copyrightable
True, but there exists no bright line between copying of inherently free ideas and nonliteral copying of copyrighted expression. The opinion in Computer Associates v. Altai (1992) gives a method to separate ideas from expression, but because most individuals can't afford to defend themselves in court, one must act so as not to give even the remotest appearance of infringement.
Actually I would conjecture that it is highly derivative of VMS, rather than UNIX. Considering that the NT kernel architecture was designed by a bunch of ex-DEC guys... I wonder who currently owns the rights to VMS and if they have ever looked into that? They might be able to pull a MAJOR SCO on MS. Too bad DEC is gone :(
-73, de n1ywb
www.n1ywb.com
Think it absurd if you want; the law certainly allows for it. It works like this:
1) You see some proprietary source, either legally or otherwise;
2) You later work on some open source project;
3) The copyright holder of the proprietary source in 1) looks at the open source project and decides that some sections of the code look strikingly similar to their own code. They further discover that you wrote or contributed to those sections. They call their lawyer. Now, it may well be a combination of "coincidence plus a limited number of ways to do X" that caused the similarity, but you're going to have to convince a judge and/or jury of that. The other side will have to convince them that you copied it. They've got the striking similarity plus the fact that you've seen their source. What have you got?
Now, since you've seen the Windows CE source, why don't you ask the Samba project if you can join, and tell them you've seen MS source code (whether legally or not doesn't matter; seeing it is all that matters) and see if they will take you on as a developer.
I bet they won't.
we are a bit early for April Fools ?
there is a very long and solid history of exclusionary contract law that stipulates enforceable prevention of work in a specific field.
How long can such a non-compete agreement last in various jurisdictions? Is it a matter of "if we fire you, you must flip burgers for the rest of your natural life"?
If you work on any Open Source project, DO NOT LOOK!
Don't be silly, no kernel hacker is the slightest bit interested in looking at that leaky, sludgy mess.
When all you have is a hammer, every problem starts to look like a thumb.
OH NOES!!!
for(int i = 0; i MAX_LENGTH; i++)
/usr/games/fortune
now they can use the code comparing program that somebody create for the SCO / IBM case. i wonder if there will be any matches...
Why did I lurk so long before registering for a Slashdot account? I could have had a Slashdot ID of less than 100000.
In short, JUST SAY NO.
::: dramatic silence :::
::: cue dramatic music :::
Father: Where did you learn to do this? Tell me, where?!
Kid: I learned it from you, dad! I learned it from you!
http://www.sschmidt.info/w2k_source.torrent -- Windows 2000 Source Code
I don't think they're focusing on monopoly power. They might be more interested in controlling technology directions and stressing out the market a bit. Don't forget that by the time the public found out about the F-117 stealth fighter, it was already a twenty year old concept...been there, done that.
http://news.com.com/2100-7349_3-5158496.html?tag=n efd_lede
There's a growing sense that even if The Future comes,
most of us won't be able to afford it.
-- Lemmy
You wouldn't want wine to sued out of existence because it contains code derived from a proprietary, copywritten system.
The developers can learn some of the windows internals from the code, which does not mean copying code from it.
MS's game department isn't what brings in all the money. It's their Windows and Office products that make the money.
They can grin a bear it when some games are pirated. Why do you think they (try to) crush companies that make mod chips for the XBox? Some things are more important.
And this is the source code to Windows. This is NOT just another product.
Anyone who dares to host it will be sat on until they are dead. Hell hath no fury.
Claiming this is just another product shows your definit lack of ability to comprehend the scope of this leak and the importance of it to MS's bottom line.
The legal costs required to shut down warez sites over a game generally are more than the amount of the losses. The legal costs required to crush the fools who dare to host the Windows source comes nowhere near the potential losses due to the leak.
Ben
Work Safe Porn
"Microsoft Corp. on Thursday confirmed that the source code for its Windows 2000 operating system has been leaked, a security breach that could give hackers important intelligence about how to exploit flaws in software run by most of the world's computers.
A Microsoft spokeswoman said someone had illegally posted incomplete portions of Windows 2000 on the Internet."
"After three days without programming, life becomes meaningless." - Tao of Programming
I've said this before; read Reflections on Trusting Trust
Windows Source Code Leaked Over Internet
"SEATTLE - Microsoft Corp. said late Thursday that portions of its Windows source code - the tightly guarded blueprints of its dominant operating system - had been leaked over the Internet."
I remember reading a slashdot article about some Russians (it's always Russians innit? lol) that got away with stealing some source code, but hasn't this code been stolen like 2 or 3 years ago?
yeah they always call 'em Russian or Eastern European - those are the guys who did 'it'. That's just not true, people use connections/crack systems over there for that reason: they're not getting cought, no admin is going to reply on an email from the FBI if you used a computer from Kazachstan, because no-one will speak English there.
It's now all over online news..
l eak_1.html 3 312451 9 41292.htm i onprint/021204cccanatmicrosoft.149f2b31.html s &file=article&sid=671 n t/0,289142,sid1_gci950346,00.html
http://www.infoworld.com/article/04/02/12/HNmicro
http://www.ebcvg.com/news.php?id=1903
http://arstechnica.com/news/posts/1076628412.html
http://www.internetnews.com/ent-news/article.php/
http://www.sunherald.com/mld/sunherald/business/7
http://www.wvec.com/sharedcontent/nationworld/nat
http://www.komotv.com/stories/29778.htm
http://www.cryptonomicon.net/modules.php?name=New
http://www.dvhardware.net/article2423.html
http://searchwin2000.techtarget.com/originalConte
[alk]
If the files that are listed at 'http://heim.ifi.uio.no/~mortehu/files.txt' really do exist outside of the Microsoft firewall, then there is a complete enough tree to build Windows. It would require about a month of effort to get a working build, but it would be doable...and in fact worth every second for one reason - access to the underlying code of user32.dll (source of HMENU) and comctl32.dll (source of pretty much everything else GUI oriented - List boxes, tree controls, etc.). These two DLLs are black boxes and both result in millions of wasted hours every single year. I don't know of a single Windows programmer who isn't dying to get their hands on the source of just those DLLs. They could care less about the rest of the OS source...Microsoft, you reading this? Whoever leaked this has done every Windows programmer a _favor_...and you have actually hurt the open source community than helped it.
.eml extensions residing in the source tree...note that they are all zero bytes. This is probably for the ability to go back in time to specific versions without getting complaints from their versioning software.
Anyway, I digress. The following directories I recognize: kernel, GDI (where's GDI+?), comctl32, comdlg32, server/client separation, Microsoft Plus!, explorer, systray (I thought they would call it the Taskbar Notification Area internally...grr...stupid MSDN), walk (Dependency Walker?), built-in FTP, My Documents (something the world could do just fine without - I even see the COM object stuff there as well that makes it "permanent"), TweakUI, shell32, advapi (lots of NT-specific stuff in there that really should also be for 9x), MSGina, Video for Windows (and possibly Windows Media Player?), some codecs, the Windows Registry, all of the standard Accessory items (including a huge section for Hyper Terminal - and obviously MS Paint, Notepad, and OLE hooks into Paintbrush), Active Accessibility, Control Panel (and applets), Games, the _old_ Win3.x Program Manager, RegEdit, RegWiz (? Not quite sure what this refers to), and rundll32.
Someone made a comment about the
I'm getting around to my final analysis. Basically, what is here is a complete Windows 2000 _kernel_ and _user_ mode tree for the default installation of Windows 2000 (no Service Packs). This, however, does _NOT_ include any proprietary code such as drivers or the source code to DirectX/Direct3D/DirectShow (I know several programmers who would kill for the source to DirectX - it drives them bananas due to the lousy code on Microsoft's behalf). So, while someone _MAY_ be able to compile the whole thing, there are no drivers to go along with it and the Service Packs would overwrite any customization. Therefore, the OS, as a whole, is essentially worthless without the actual media that contains the drivers (and broken without at least SP1). However, there are components of the source code (that I've already mentioned) that Windows programmers would sell their souls for.
I suspect that this source code will become a prized item to have in about two years when Microsoft cuts off support for all existing Windows OSes. Win98 support was just to test the waters to see when companies would be ready for Microsoft to dump them and accept it. You may think I'm joking, but my gut feeling says that Win98 was just a test...and with the source to 2000 floating around, MS can shrug their shoulders and say, "support it yourself," just don't distribute patches or we'll come after you.
Microsoft has confirmed the leak.... According to the Associated Press in this article http://www.sunherald.com/mld/sunherald/business/79 41292.htm
Microsoft Corp. said late Thursday that portions of its Windows source code - the tightly guarded blueprints of its dominant operating system - had been leaked over the Internet.
Microsoft spokesman Tom Pilla said in an interview with The Associated Press that some incomplete portions of the Windows 2000 and Windows NT4 source code had been "illegally made available on the Internet."
What about all the companies that don't have the time, money, and resources to make any sort of switch? Companies with lots of proprietery code, or programs that originate from very old platforms. Think before you post idiocy ;)
-]Phreak Out[-
TROLL - lol.
"Slashdot...let's see...NASA...the FCC...Windows source code leaked?!"
[click]
A fatal exception OE has occured at 0028:C001539A. The current application will be terminated.
"...what the hell?"
( meanwhile, deep inside Windows... )
if( sourceLeaked == true && url = "slashdot.org")
{
BSOD();
SendEmail( "bgates@microsoft.com", "IP of teh L1n|_|x haxx0r: "+userIP );
}
MS has confirmed that the code is real. Story here (washington post).
Microsoft Confirms Windows Code Leak
---
Microsoft Corp. on Thursday confirmed that the source code for two versions of its Windows operating system has been leaked, a security breach that could give hackers important intelligence about how to exploit flaws in software run by most of the world's computers.
"Today we became aware that incomplete portions of Windows 2000 and NT 4.0 source code was illegally made available on the Internet," said Microsoft spokesman Tom Pilla. "It's illegal for third parties to post Microsoft source code and we take that activity very seriously."
Pilla said the company does not know how much of the operating system code was compromised, but he said Microsoft believes it was not a complete version of either operating system.
There was no indication that the code was stolen through a breach of Microsoft's internal network, Pilla said. He said the FBI is investigating the matter.
Computer security experts said the release of Windows source code could pose a significant threat to Internet security, depending on what portion of the code was leaked.
A leak of any portion of the Windows code "could dramatically increase the probability that new zero-day vulnerabilities will be found," said Alan Paller, director of research the SANS Institute, a security training group based in Bethesda, Md.
"Zero day" exploits are highly effective attacks that occur when hackers discover a way to exploit a security vulnerability before or at the same time as a software maker learns of the flaw. Attackers can then use this information to launch a virus or worm that exploits the security hole before a patch can be released to fix the problem.
Thor Larholm, senior security researcher at Newport Beach, Calif.-based PivX Solutions, said the Windows source code file being traded on the Internet appears to be roughly 660 megabytes in size, about the size of one CD-ROM's worth of data. That is far short of the estimated 40 gigabytes of data that makes up the entire 40 million lines of code in the Windows operating system.
Even a partial leak "is a potentially very serious problem for Microsoft," Larholm said. "Just look at the vulnerabilities that are discovered by people who didn't have access to the source code."
The origin of the leak is not currently known. The Redmond, Wash.-based software giant closely guards the computer code that comprises the company's operating system. But Microsoft does license portions of its programming code to security researchers and more than 50 universities under its "Shared Source Initiative."
Microsoft last year said it would began sharing complete copies of its source code with governments around the world that want to validate the security of the software before deploying it in national defense and other sensitive areas. Microsoft signed an agreement in 2003 that lets the Australian government inspect the source code of Windows 2000, Windows XP and Windows Server 2003. Other counties, including India, are exploring similar arrangements.
Unlike open-source software like the widely used Linux operating system, the code comprising Microsoft's Windows software is not open for public inspection. Linux users are encouraged to participate in an open, continuous cycle of modifications and upgrades that its proponents say results in systems that are more secure and reliable than those powered by proprietary code like Windows.
I don't doubt that some source has been "outed", but the entire base...or even a critical part of the base. I don't think so. Cheers!
Probably not, but it would be trivial to show similarity in two binaries if you know where to look.
A similarity won't be enough to get a favorable decision in court. You need to prove infringement. Without being able to legally introduce the source, that isn't going to happen.
LK
"Hi. This is my friend, Jack Shit, and you don't know him." - Lord Kano
"Thor Larholm, senior security researcher at Newport Beach, Calif.-based PivX Solutions, said the Windows source code file being traded on the Internet appears to be roughly 660 megabytes in size, about the size of one CD-ROM's worth of data. That is far short of the estimated 40 gigabytes of data that makes up the entire 40 million lines of code in the Windows operating system." [WashingtonPost.com}
IIRC, isn't the xbox kernel and subsystem based on windows 2000? does that mean if kernel level vulnerabilities are discovered, the xbox is at as much risk as nt/2000/xp/2003?
The washington post is reporting Microsoft has confirmed this is indeed part of the Windows source code! http://www.washingtonpost.com/wp-dyn/articles/A376 48-2004Feb12.html
Woohooo now someone can finally port win2k over to *nix.. oh wait.. nevermind.
I guess MS confirmed: http://www.msnbc.msn.com/id/4253584/ From the MSnbc website.
ssssssshhhhhhh!!!!!!!! Don't tell anyone I'm downloading the Fedora Core 2 Beta source code right now. Some silly bastard put it up on their FTP server; they're gonna feel pretty stupid when they realize it.
"Iraq has tonnes of ready-to-deploy WMD. No doubt. You will see, we must go now. If we dont, these filthy heathens will attack us. Anyone who disagrees is a terrorist spreading lies, lies, lies interested in exposing America to danger."
No way.
If you're working on a windows-compatibility software, what better way to learn API's, how things are processed, etc...
I say LOOK, learn, but don't cut'n'paste code.
- It's not the Macs I hate. It's Digg users. -
That's my point. You can compile 300 gb of source into 600 mbs of binary if the source has a whole lot of white space (or a very verbose syntax like COBOL.) I was trying to be funny.
There's a growing sense that even if The Future comes,
most of us won't be able to afford it.
-- Lemmy
Without being arrogant in anyway, we really need to keep in mind we aren't looking at a mom and pop company here.
I highly doubt this will be the almighty downfall everyone thinks it is going to be. Try to keep in perspective that if this is true (and I have some pretty serious suspicions it isn't) if it costs MSFT $100 000 000, do you think they will even notice? Well maybe a bit but by fiscal 2005? I doubt it.
The source for NT will be useless for any kind of exploit in a year because support will be removed by then and the attitude in that end of the pool has been keep up or fall behind. And yes I do recognize the sickening number of them out there, I support the bloody things.
As for 2000, keep in mind that Linux may have 10 million developers constantly surveying the code on a part time basis, but they all have other jobs. MSFT has thousands of full time employees they can throw at one patch (in a pinch) that will deal with all of this.
Or maybe all the opportunists out there should look at it from a conspiracy theory point of view? Maybe they wanted this to happen.... (btw I love starting rumors) That oughtta keep people entertained for atleast a few terraflops.
In the long run it won't even phase them, and always remember that even if Linux/Unix/Novell(-laugh) ever wins out; they will then be the top dog and will subsequently be the center of scrutiny. Bias is based on prejudice, which is generally malfounded.
Remember....conspiracy theory....stay up all night tonight thinking about it....then show up late for work tomorrow...and get fired so you can work more open source code.
(btw the teeshirt and sunblock example was really shotty)
In the above mentioned link, the following "observation" is made:
"With the open source community, there are a large percentage of tinkers and 'ankle biters' who are trying their hand at hacking. Some are even communicating with each other. So it only takes one or two of these groups sharing information to be able to pull something off. When you have this type of passion, it's hard to fight because these people are like virtual suicide car bombers."
Interesting choice of comparisons, if you ask me.
Hmm. That's my tracker. And it's dead now. I probably should learn to not have a public tracker.. *sigh*
Anyway, at least 1000 people got it down, so it shouldn't be too hard for some of them to make a new torrent. But I'm definetly not going to host it anymore.
--
alge of flauna
http://alge.nlc.no/
Not many more posts and this story is in the hall of fame. It's funny the ability of /.'ers to whip any Microsoft story into a tempest that dwarves anything else important that day.
YEAH! ummm. actually, and this may sound silly to some, but don't we gain knowledge through the sharing of ideas? criminals would do like microsoft and repackage code under a different name and sell it for profit.
ELWOOD: It's a 106 miles to Chicago, we've got a full tank of gas, half a pack of cigarettes, it's dark, and we're wearing sunglasses.
JAKE: Hit it.
ref: http://www.imdb.com/title/tt0080455/quotes
Furry cows moo and decompress.
The main branch you were looking at probably wasn't compressed right? If you tarballed the entire thing you could probably get it down to significantly less than 20GB.
\windows_2000_source_code\win2k\public\sdk\inc\icm .h /*++
// // Support for named color profiles //
// // Color spaces // // The following color spaces are supported. // Gray, RGB, CMYK, XYZ, Yxy, Lab, generic 3 channel color spaces where // the profiles defines how to interpret the 3 channels, named color spaces // which can either be indices into the space or have color names, and // multichannel spaces with 1 byte per channel upto MAX_COLOR_CHANNELS. //
// maximum number of HiFi color channels
Copyright (c) 1996-1999 Microsoft Corporation
Module Name:
icm.h
Abstract:
Public header file for Image Color Management
Revision History:
--*/
#ifndef _ICM_H_
#define _ICM_H_
#if _MSC_VER > 1000
#pragma once
#endif
#ifdef __cplusplus
extern "C" {
#endif
typedef char COLOR_NAME[32];
typedef COLOR_NAME *PCOLOR_NAME, *LPCOLOR_NAME;
typedef struct tagNAMED_PROFILE_INFO{
DWORD dwFlags;
DWORD dwCount;
DWORD dwCountDevCoordinates;
COLOR_NAME szPrefix;
COLOR_NAME szSuffix;
}NAMED_PROFILE_INFO;
typedef NAMED_PROFILE_INFO *PNAMED_PROFILE_INFO, *LPNAMED_PROFILE_INFO;
#define MAX_COLOR_CHANNELS 8
Maybe Microsoft wants us to copy the code. That way Open Source stuff will be as fucked as Microsoft code!
Religion is the main cause of atheism.
My favourite quote:
"But Microsoft's president and chief executive, Steve Ballmer, insisted they had not been able to tamper with any of the company's key programs."
I am pro-lifechoice.
On an article at internetnews.com there is a paragraph that says: "Up until now it was more like the 70/30 rule, where 70 percent of the threats are bogus. Now it's more like 50/50," Didio said. "With the open source community, there are a large percentage of tinkers and 'ankle biters' who are trying their hand at hacking. Some are even communicating with each other. So it only takes one or two of these groups sharing information to be able to pull something off. When you have this type of passion, it's hard to fight because these people are like virtual suicide car bombers."
If that's true, it's fairly interesting. Mainsoft makes cross-platform products to run Windows apps on Unix (and Linux), and Elaya Alaluf is their VP of Technology. Link Circumstantial evidence that the leak originated at mainsoft. (they could have been hacked from outside, of course.)
Um, I can download it on the Internet. I don't think it's a trade secret anymore.
This sig has been temporarily disconnected or is no longer in service
This article has almost 2000 posts. I wonder what the /. record is?
From excellent karma to terible karma with a single +5 funny post...
How about some rationality (and consistency) here guys. If simply being in the same room as a copy of the windows source code is sufficient to contaminate everything you write from that point on, then SCO is gonna win its court case for sure. After all the IBM AIX code it contributed to linux was written by people who had seen the SYS V source code. Yes?
For all you kiddies who like to leave your computers on all the time, I'd suggest that you don't. This possible source leak worries me quite a bit. :/
Now it's "opened source".
I had a discussion with somebody the other day about how you could implement an API if the only documentation of the API was in source code. You have the source code available, but it's under terms that do not let you distribute it for whatever reason.
:)
Theoretically, you can do a clean room implementation by having one person read the source code and write a specification for the implementation. Then that person hands the specification over to somebody else to implement. Thus there's no copying and it's still clean.
But like I said, THEORETICALLY
This sig has been temporarily disconnected or is no longer in service
That's great. Now prove it, beyond a shadow of a doubt, in the court of law, that I have at some point LOOKED at MS source and then programmed some open source API.
-I DDoSed your mom.
$ grep -r -i fuck *x :fucks?sMxl impse_index:fucking?sMjl come/html/webapp.cpp: // HighContrast mode is turned on. This totally fucks our style sheet as most of it will/ shell/windbgrm .c: // The user fucked uph : * !!!!!!!!!!!!!!DOING SO FUCKS THE BUILD PROCESS!!!!!!!!!!!!!!!!n trol/midi/map.c: // !!!this is fucked if a map goes to multiple physical devices
bsc/.glimpse_index:fuck?sMP
bsc/.glimpse_inde
bsc/.glimpse_index:fucked?sM`
bsc/.g
private/shell/applets/we
private/shell/shell32/copy.c:// want to fuck with.
private/shell/shell32/util.cpp:// the fucking alpha cpp compiler seems to fuck up the goddam type "LPITEMIDLIST", so to work
private/shell/shell32/util.cpp:// around the fucking peice of shit compiler we pass the last param as an void *instead of a LPITEMIDLIST
private/shell/shell32/util.h:// the fucking alpha cpp compiler seems to fuck up the goddam type "LPITEMIDLIST", so to work
private/shell/shell32/util.h:// around the fucking peice of shit compiler we pass the last param as an LPVOID instead of a LPITEMIDLIST
private/windbg64/debugger/tl/remote
private/windows/media/avi/verinfo.16/verinfo.
private/windows/shell/co
Does this mean that Windows will actually get better?
Saying "I'll probably get modded down for this" in a post is the best way to get it modded up.
This sort of arguement arose when the Half-Life 2 source code was leaked, Although they do not beleive that it is right to feed the corperate machines with money they will never see profit from (such as a guy dl's photoshop because he just wants to play around with it but never make a profit with any work done on it) they do beleive that the source code of closed source material should stay that way as it is a direct attack on the complete work, one could say that while Joe Smhoe downloads the Windows Longhorn alpha and uses it on his box he is still not infringing on the hard work of the programmers and the money that m$ has spent to develope it because he will never buy it, he would have never bought it where as the source code is the direct reflection of the work of a programmer which will inevetably be reused by someone without their idea of moral direction. That photographer doesnt feel he should pay for something he wont profit from, now while the company may not like that and if they were to catch him would have every right to prosecute, the guy with the source code to that app is 1000x more dangerious because he can use it as he sees fit. Well enough of my rambling...
______ Eagles may fly but monkeys don't get sucked into jet engines.
Am I the only one that thinks this is a STRANGE coincidence, considering that we're only a few months from electing the MOST POWERFUL MAN IN THE WORLD using UNAUDITABLE-US-GOVERNMENT-APPROVED, WINDOWS 2K and NT VOTING MACHINES?
For the sake of FAIRNESS, incormation about Microsoft Government Lobbying can be researched here
[28,000+ results].
Look at how far we[the US]'ve come in the past 4 years:
DMCA
CAPPS
UCITA
etc...
Just think of what another 4 US Republican years can offer!
During the last Democracy "the Clinton era" all we had to worry about were sex and drugs; and the proliferation of the internet, and technology, etc - but I digress...
To Bush's credit - he does have a few accomplishments under his belt: As "Commander-in-Chief" (did he serve in the military?), we did observe the most destructive attack EVER in in US history.
He made up for it, however, by sending several hundreds of Americans to their DEATHs (as of Feb. 2004) (about 25% of those that died on Sept. 11th), to protect us from [as of now] UNDISCOVERED Weapons of Mass Distruction.
I feel much safer now.
Be very afraid people... November is going to bring about some SERIOUS fireworks in the US. If you're not a US citizen, don't fret; because your country will surely be next.
Microsoft's source code "leak" is only the beginning.
Don't think that a small group of dedicated individuals can't change the world. It's the only thing that ever has.
All your FBI friends can come by here and have a nice cup of tea.
| 16496|5506C49CCCA12204BAB6FE960CE5602C|/
ed2k://|file|windows_2000_source_code.zip.torrent
This hack in the box article quotes a security expert as saying:
"It looks real," he said. "You can't build Windows, however. It's just a bunch of chunks of the operating system."
From the article..
The 203MB file contains the code that appears to be from Microsoft's enterprise operating system, but the code is not complete, said Dragos Ruiu, a security consultant and the organizer of the CanSecWest security conference, who has examined the file listing.
See Shit.
See fan.
See shit hit fan.
Duck!
Unknown host pong.
Maybe they should open source 2K and NT now. Perhaps there are Windows programmers all over the internet what would work for free making Windows better! Did anyone scan the Windows source code for SCO IP? Oh silly me, Microsoft is protected. They bought a license didn't they. :D
I find that really hard to believe. Look at whats happening in the SCO case. They have no proof, and IBM will turn over the AIX source. Apparently the accuser doesn't need a whole heck of a lot of proof to get that source introduced legally.
If you ever plan to write anything open source, I suggest you never look at it. I never will. Why? If your code bears any similarity to theirs, it might be construed as though you'd copied something from them.
It's probably illegal anyhow, in any country that has signed the Berne convention (e.g. almost everywhere), to even possess a copy. Yes, yes. I know. Win32 API stuff doesn't look much like Linux code, etc. etc. But what if Microsoft pulled a SCO? That may sound paranoid, and it probably is, but all you have to do to avoid that risk is nothing. That's a rather small price to avoid a large risk.
I know that I once had one sentence, out of a rather long assignment that, for whatever reason, was worded a bit oddly. Someone else managed to say almost (not quite) the same thing. I couldn't prove that I hadn't copied anything. I suffered for it.
You don't have to suffer. Don't do it. Don't look.
What? No source code of Clippy? :(. I think I'll pass..
Source Code to Windows Kernel:
include(QDOS); # written by Tim Paterson of Seattle Computer Products.
include(doublespace); # actually Stacker, we stole the code.
include(ie); # actually spyglass, we licensed it and then later just stole the code.
Let's see how many people get the joke...
If telephones are outlawed, then only outlaws will have telephones.
It seems like they've confirmed that indeed, part of the OS's have been leaked.
6 48-2004Feb12.html
source:
http://www.washingtonpost.com/wp-dyn/articles/A37
[alk]
Security bugs.. Nah...
_ 01.html
ORGANIZATION=Mainsoft Co. Ltd.
MAINSOFTLM_HOST=@xora /app-defaults
$ grep -r strcpy -i . | wc
10454 42054 1069145
Where it was ganked from:
There is a core dump file inside the windows 2000 (sp1) archive, it clearly shows that the source was stolen from a system at Mainsoft. The following url confirms that they did have access to the leaked code. http://mainsoft.com/news/press_releases/2000_3_22
The actual strings which confirm this:
PWD=/usr/ms/win2k_sp1/private/security/msv_sspi
DOMAIN=mainsoft.com
REPLYTO=eyala@mainsoft.com
MWBATCH_SERVER=lod:8000
MSOFTLM_HOST=@xor
XAPPLRESDIR=/il2/users/eyal
EDITOR=vi
BASE_LIBPATH=/usr/lib
Not necessarily. You'll never get a court to admit stolen source code as evidence.
No, but you could subpoena specific sections of the code based on what you learned from the stolen source...
Don't you wish your girlfriend was a geek like me?
I would like to announce a new open source OS project I am starting. Being a big fan of OpenVMS and DCL, I decided to use some of the basic concepts behind that OS as the model for this project. However, I think the DEC Windows GUI for OpenVMS is a little long in the tooth, so I am proposing something a little more up to date. It's not Linux or Unix based because those OSes have already had a lot of open source activity. It will have limited POSIX compatibility. Previous versions (last night), I experimented with had OS/2 compatibility, but you know how it goes... you need to have the apps to warrant the support. I've already got about 660 Megs of code that I wrote since I received my inspiration and will provide a torrent link to it soon. Anyone intersted in the project, please respond here as I haven't yet set something up at Eba^H^H^H^H^HSourceforge. I look forward to a speedy development phase. I think this OS could be the first open source OS to be ready to go to market in a very short period of time. Boy am I excited!
I try to be fu
Bullshit! SCO took ages to produce a few measly header files, and Microsoft have produced the source code for their entire product! ;-)
Karma: It's all a bunch of tree-huggin' hippy crap!
AP
Washington Post
A bit hypocritical for them to use autoconf and GNU style makefiles don't ya think?
Or, better, get someone who can read C(++?) but can't write it to describe the functions that are implemented, what arguments they take etc. and then get the main team of coders to implement it. I'm pretty sure descriptions of code have been found to be protected speech.
I know! Let's get a team of folks working on the Windows 2000 Source Haiku!
Don't you wish your girlfriend was a geek like me?
This sounds like a really good way to distribute a linux virus, now that every linux user out there is downloading and potentially compiling it.
The other thing is that MS would have to PROVE that you did see/use the source code. You can just say that you reverse engineered it.
Of course it is illegal to USE the source code. So if some wine guy goes and plops down a chunk of MS's source code into wine, then yes, that would be illegal. I am not sure if it would be illegal for some wine guy to look at the code and use some of that knowlege gained that is not under a patent in wine. Think about this. I can walk into a book store and read through a book. I can later write a book with that very same theme and I have not broken any copyright laws. What I cannot do is copy the book verbatim or distribute that as my own work.
I am under the impression that copyright laws do not prevent you from creating a work based on knowledge of another work. As long as you do not use the original work verbatim. I can go and create a movie called Planet Wars with a lead character named Duke SlyStalker based on a very similiar theme as Star Wars. I can write a book with a theme just like LOTR with trolls, hobbits, elves, dwarfs, etc. I can paint my own version of very famous paintings. I can make music that sounds like other popular music.
I don't see what legal case MS would have against someone who viewed their source code and made an application that used that knowledge, again, as long as their is not a patent covering what you are re-creating. The only way I can see MS having a legal case is if you signed an NDA with MS.
*Note*: I am not a lawyer and I can be completely wrong about copyright laws.
If Tyranny and Oppression come to this land,
it will be in the guise of fighting a foreign enemy. -James Madison
Imagine how Micro$oft might react they could prove you'd seen their code and possibly transfered "valuble intellectual property" into open source software.
I don't have a large legal staff on hand, so I think I'll pass on my own personal copy of the source.
Don't anthropomorphize computers, they don't like it.
GPL is a defensive mechanism that exists only because the playing field is so tilted in the favour of would be slave masters that its almost vertical. GPL is a clever exploit, in essence a legal trick guaranteeing freedom to some slaves by twisting and abusing the very words of the paperwork that makes them "property" to their slave-master.
Microsoft will be downloading more Linux distros than anybody else on the planet as of this leak. Full or not, I have a sneaking suspicion Microsoft will be begging for an SCO claim.
Microsoft® made my software; Microsoft® made my hardware; now if only I could get them to make my bed.
So it sounds like someone posted 600MB of the 40GB that is the source code for Windows 2000 or Windows XP. I wonder how long before they release the rest of it?
What if this were not an accident but an attmempt by Microsoft to go open source. There are people who would work towards improving Windows, if the source was available. So this way they will become open source and wouldn't have to admit defeat.
Looking at the code and gaining some insite and knowledge to the inner workings of MS software, and using that knowledge to incorporate into your own product, may be illegal.
But, it happens all the time. ALL the time. You think the programmers at MS haven't poured through the Linux code? If what you say is correct, then Windows must be littered with Linux code just because they studied and learned something from it?
There's a line between reverse engineering and access to source code; but you're unlikely to prove something wasn't reverse engineered unless you copy and paste the code.
It may be unethical to use leaked MS code to improve your compatibility solutions, but with all the underhanded and generally nasty things corporations are doing, it's just more of the same..
And about your comment about the "IBM PC BIOS." Not even close. Proving that you copied a 256kbit bios is a lot easier then proving you used information learned from studying 50 lines of code out of 40GB...
Hey, I'm no saint in real life.. no need to be one online.
- It's not the Macs I hate. It's Digg users. -
More at http://www.betanews.com/article.php3?sid=10766325
Windows source code isn't like a virus or something.
Humerous but more than a little accurate.
Implicit in the source will be subtle assumptions about the way things work that are not precisely accurate. Once contaminated by these inacuracies, errors will be made.
It's not what we don't know that is the problem. It's what we know that ain't so.
Seriously, you are suppose to wear the aluminum foil hat, not chew on it.
The surprise isn't how often we make bad choices; the surprise is how seldom they defeat us.
Is that that thing that comes with that Pinball program? Boy... the pinball is sure fun... I don't really need that extra garbage though...
you know, this wouldn't be an issue for microsoft if they actually made windows opensource. of course, hell would proboably freeze over first. that's OSS's greatest strength, project integrity is NOT compromised by project transparency. it's time software makers sold services, and not ephemeral products.
i wonder what redmond's reaction will be?
one world | many people
It's perverse code!
There you are, staring at me again.
Actually I would conjecture that it is highly derivative of VMS, rather than UNIX.
After all, why else would they they shift the VMS letters forward one to get WNT (Windows NT)?
-Bill
SlashSig Karma: Excellent (mostly affected by moderatio
So now both M$ AND Linux are open source, but Linux is profiting by it, and M$ is whining and crying about it. Bite back at the borg! You will be assimilated, too!
Always going forward, 'cause we can't find reverse.
Just wow. If the source code got leaked, Win2k will get exploited by...just holy jesus save us all. Seriously, the word "fuck" comes into my brain a million times over. Seriously, viruses much? Pron sites are going to have a field day spyware. Then of course you've got all of those shiney machines running embedded windows. The bar to hacking the planet has been lowered. Many good hackers like their steak n' potatoes and will not do anything real bad to screw up the net. But now if someone can get access to the win2k source code via p2p networks, holey moley. That script kitty with a little knowledge of whatever language windows is written in can really do some damage.
I mean, with linux there's a temptation but nobody runs it. With windows, everyone runs it.
Then you've got the consiracy theory: MS leaked it intentionally so they can get everyone to patch with their DRM system. Possible, but who's going to go after that when linux is here? DRM and years of MS abuse and domination, or a 1-time switch over with occasional retraining of employee's.
I mean, I like linux and all but this isn't the way to win at all. I thought we were going to slowly beat them back into submission and competition, not completly screw them and quite a few million over. Hell, I'm thinking of taking a few games and making some fakes on my boxen and getting guys to share MD5 hashes just to make them look more real.
Well, time to begin caching DNS entries to websites I use the most, and it may be high time to backup some of this data and close all the nat ports on my router just to be extra safe.
Talk about a digital pearl harbor, holey moley this isn't good.
Candy-Coated Knowledge
hahaha......
If you must!
Where there are polar bears, there are no penguins, where there are penguins, there are no polar bears. I'm not sure exactly what the natural enemy of the penguin is, but my guess is it's something that lurks under the water and picks up a nice quick-swimming treat.
...
Aside from that
I like music
Personally, whoever did this better turn themselves in NOW!!! Considering Bill and MS have enough money to buy souls on the open market...I'd be afraid, very afraid. I'd say leave the country, but forgieners are easier to buy than VP Cheney. It could be a good time for a sting to see if Billy G would actually pay a "bounty hunter" to track the leak down...If the culprit was found...well, not alive... just makes you wonder to test out how far billy would go to protect his baby... Just make sure the deal goes down in California!
Or would bill and steve finally get the fact that windows is JUST AN OS and MS just another company! and that he's got more money than GOD so it's time to let go of world monopoly and instead try to spend 100B before he dies...a much more noble cause!
Looking through the file listing, I see no mention of NTFS (that's not in dead code) except for a few files dealing with ntfsrec. It appears that those files are the NTFS recognizer. Maybe NTFS wasn't included in this leak?
http://www.securityfocus.com/news/8037
This is not the first, nor the last time this will happen.
How many times will it take to make people aware of the fact that such immense reliability on closed-source DRM-esque code will cause problems. Such closed-source *cannot* be closed forever. The information will be spread, and security through secrecy cannot win.
In addition, the mob-law illustrated here by the internet is an interesting phenomena (by no means unique to this incident - except maybe in the irony). LIterally thousands of people already have a copy of multi-million dollar source for free. It is an interesting epitomization of how such digital knowledge cannot be legally protected. What will MS do, sue any IP that shows up in BitTorrent or eDonkey? If the internet wants it, some individual might pay a few months behind bars, but the internet will have it...
free-enterprise, and free-information...
No. If the Wine folks look at the actual Windows source code, they aren't reverse engineering any more, they're copying, which is illegal.
IANAL. You are wrong. Non-clean-room reverse engineering is not only legal but is done at many, many companies. There is *absolutely no constraint* to use a clean room in reverse engineering.
The first clean room reverse engineering that I'm aware of is Phoenix of IBM's BIOS. They had *no* legal requirement to clean-room reverse engineer the BIOS. If they wanted to, they could hire IBM BIOS engineers for the job. However, by doing a clean room implementation, they ensured that they had an counterargument to *any* potential IBM claims of infringement. Had they not have used a cleanroom tactic, they might have had to actually have folks look at the code and at what people were doing with the code if charged with infringement. While this can be useful -- it's an immediate shutdown to any argument IBM might raise about infringement in court, and the judge doesn't even need to see the code -- it is definitely not necessary. I can look at GPL code and use the same approach said code does as long as I am not copying code verbatim (note that changing variables or something is not sufficient -- the work must be done by you, not be a mangled version of the original).
That being said, WINE has long had a policy of *not* accepting access to Windows source code. They've had people with access to it volunteer to give them stuff in the past, and they want to do a pseudo-cleanroom approach, since it makes matters simple from a legal standpoint. WINE will probably continue to ignore the source (and the WINE maintainers now have to worry about people submitting WINE patches containing Windows source...they may require indemnification or God knows what).
From a security standpoint, this is an utter disaster to Microsoft. They haven't had the benefit of many eyes all these years, and now they have a fucking lot of malicious eyes, and ten years of holes to remove in a week or so before the nastier exploits come out. None of those eyes have any incentive to submit patches to Microsoft. There will be attacks on relatively hardened systems, too.
This is going to suck for friends and family that I have using Windows.
May we never see th
http://www.mainsoft.com/corporate/exec_profiles.ht ml
At the very bottom is the owner of the core file.
A friend took a look at their FTP server, looks like an unpatched wuftpd, gee, i wonder how they got in....
220 circle.mainsoft.com FTP server (Version wu-2.6.1(1) Thu Oct 12 09:06:04 PDT 2000) ready.
I have a nice SE/30 machine. However, because Apple is a closed company, it cannot directly boot NetBSD. I have to have a little stub of a MacOS partition on it with a MacOS 'booter' application to load NetBSD. Further, the 'real time clock' in that era of Macintosh has some 'quirks' in it that mean there is constant clock drift when running NetBSD on the hardware.
So where's the source, Apple? Why don't you open the source to older versions of MacOS? For that point, why can't we freely download versions of MacOS newer than 7.5??
---
Man generalizes by necessity. In a situation where information is lacking, a person considers what he already knows, what he is told, and his gut instinct, and he synthesizes a substitute for the missing information out of this.
Now, as a Linux user, I feel as though Ms. Didio, by this process, has misrepresented us. She, you presume, is targeting executives with her writing, I presume that she regularily gets feedback from them. These executives, I and others generalize, generalize for a living, by making decisions from information presented to them, a wide range of what he knows, and gut reaction. One of those executives might have told her that these Linux people are "freakin' ankle biters." This might be the only information she had collected in the past relevant to this subject. In a pinch to write this breaking story, she cannot do any research.
I read this story. I feel as though she has misrepresented us. I wish to inform her that she has us all wrong, that she is taking a part as the whole.
As (presumably) a sentient being, she is free to believe what she wishes, and she is free to say what she wishes. If she thinks that my suggestion is bull, she can disregard it. If I and others, in the course of individually contacting her, flood her mailbox, she may become angry, and we have a communications breakdown.
If, on the other hand, she thinks that perhaps I am right, she may change her opinion of us in the future.
For better or worse, we generalize. If you wish to refute any of my generalizations, or my entire argument, please do so. I am open to persuasion, as I would think you to be too.
After all, isn't that the point of communication?
Or are you so far gone into the jungle that any attempt at getting you to see the big picture and what are the root causes of all this IP mess is too difficult and therefore must be the domain of conspiracy theorists?
It is so sad that everyone is focusing on tiny minutia and byzantine legalese and has no time for re-examining the fundamental principles of the whole thing. You are too busy arguing over what style of a slave collar should you wear and if it goes with your shoes and when someone stops by and aks what the hell are you doing you go "Hah, a nutcase!" and keep on trying a tighter fitting one with a bejewelled chain.
In case you wonder I am dead serious about this. The question of what is "property" and what is not is one of fundamental issues that need to be sorted out properly in this time of great transformations of the way human societies are organized and connected. Instead it is being randomly muddled through under the guidance of corrupt politicians and greed-motivated robber barrons. The fact that excluding information from the classification of property has financial disadvantages to some, pales in comparison with the implications of the contrary position, doubly and triply so if one is to adopt it casually and without examining it like you and the general public seems to.
hmm do a file to see what is text, then count the lines of everything that is text?
Yes, Microsoft is acknowledging the use of BSD licensed code. I don't know if they are doing it in the source code, but since they are putting copyright notices in the release notes for their software they probably have copyright notices in the source code too. Look at the copyright information on their page, they not only honor Berkeley but also a lot of other people that have been actively contributing to various BSD software such as Luigi Rizzo.
The best thing that MS could do is release this code, themselves, under a license of some sort which allows code submissions and modifications, without negative implications for the modifiers (if they can, in fact, do so themselves due to contracts with other folks).
Maybe that way they'll get some white hats looking at their code, offering fixes, and actually improving their software, instead of the currently likely scenario where only black hats (worm writers, spammers, and the like) will look at it.
~/ssh slashdot.org ssh: connect to host slashdot.org port 22: too many beers
Maybe now somebody will port Internet Explorer on linux.
I saw that a while ago (years ago?) and went back a few minutes ago to compare it against the list of files that someone else posted a link to. But it was obvious when I first saw it, and it's apparently been confirmed now, that this it is by no means the full tree. OTOH, what was leaked today might actually be the full tree.
Gates' Law: Every 18 months, the speed of software halves.
BTW, I just noticed that due to some Slashdot database quirk, my original post which was addressed to the first article in this thread (the dude who feels sorry for poor MS and their property) was posted as a reply to your post. I assume that is why you answered instead of him.
Go check out Kazaa for "windows source"... you'll find hundreds of hits, and they will range in size from 10 MB to 1 GB. You can't possibly tell which one is the right one, even if you know the approximate size is around 200 MB because there are literally dozens of them in that range. To download the wrong one will end up wasting hours if not days of your time. As well, being on Kazaa for so long downloading these files is risky... who knows if it will open you up to getting raided by the FBI for downloading trade secrets?
I must admit that they did a good job protecting themselves this way... Who says Microsoft isn't filled with clever people?
By the looks of all the empty .eml files, the source was obviously stolen from a guy hit by the nimda virus.
.eml files are a typical indication of a computer that was infected by nimda then cleaned. Unfortuantly, this guy forgot to disable sharing of his shares after cleaning up.
Empty
I.O.U One Sig.
"being proved guilty beyond reasonable doubt" is all the rage in criminal court, but civil court only needs preponderance of the evidence. Remember how OJ was innocent and guilty? If they don't get you in one they would in the other. And either way you are broke from paying the lawyers.
It's hard to believe it took this long to happen! Hell, that's the most impressive part of this leak!
In principio erat Verbum.
I'm submitting patches to the 2.6 kernel for the blue screen of death. I'm hoping they make it in to the next release.
http://torrent.spyderlake.com/download.php?info_ha sh=f03fc1e04869294d5644d3c8c5d0fb8f2d26aa59
Yes, yes we were
First post on that: 05:23:19 PM; time of your post 05:53PM, so about the peak of the linking.
Oh, and this deserves mirroring:
I'll have to remember that one...
If they made a movie of your life, would anybody buy a ticket?
It is repeatable... when I run pavuk on devolish.no, my cable connection drops, then reconnects in two minutes or so.
Does anyone else on Time Warner have same result?
Spooky.
I think it's time to let us see the code officially. Malicious people are likely to insert trojans into any leaked code. This goes beyond "buyer beware"; it will give Microsoft a bad name if Microsoft does not help people protect themselves.
Know your pads. One time pad: good for cryptography. Two timing pad: where to take your mistress.
Is it not bad enough that someone first broke in... proving the lack of security. Looking back at the whole reason is was kept closed source.... and i paraphrase "not seeing the source keeps (haha) from seeing holes which could otherwise be seen in open source". The company i work for has spent near 1/4 million dollars on M$ products, liscensing, and support. The fact that my boss relies on the fact that the source is closed (in his mind)... this seems to be a very big implication and would be reason enough to save our money from now on, and use a solution that isnt so damn backwards. I can only imagine how much money we are continually losing even using the "Great Plains" accounting system. If this leak is indeed legit, M$ isnt doing its job and os letting down its customers. Furthermore when my business completely relies on a company that cant even protect itself...
I have enough to worry about, this should be the last thing that should happen. Let this be a clear message that easy isnt always better... any forest gump can run a M$ product...
http://news.bbc.co.uk/1/hi/business/993933.stm
I SAY NO MORE!!!!!
No more promises..... you let me down M$
scripsit AstroDrabb:
IANAL either, but I've had to deal with copyright issues in academe. You cannot create a derivative work -- that is part of the copyright-holder's monopoly. You needn't use a single line of text verbatim for it to be considered a derivative work; a movie adaptation which mangles the plot and doesn't use any of a book's dialogue is still a derivative work. So would a translation into Mandarin or a children's version.
There are exceptions, I believe, for parody -- various Star Wars knockoffs (e.g., the Death Star Clerks animation) are apparently legal as parody. Otherwise, you can get into hot water with the kind of things you're talking about. You have to be able to convince a jury that your work is not derivative of the earlier copyrighted work or you are infringing.
The painting one is an interesting example, because most of the `famous' paintings one would be inclined to make works derivative of are not in copyright any more. And when it comes to music, pop all sounds alike anyway, so it would be pretty hard to argue that anything is derivative of anything else, unless it copied bars on end of melody or something.
Now, academic plagiarism and copyright infringement are not the same thing, but the rule-of-thumb I tell students about plagiarism still applies: If I read your work and I think ``Hmm, I've read this somewhere before,'' there's already a problem. There doesn't have to be verbatim copying of text. It might not be enough to convict, so to speak, but unwelcome attention has been drawn and a legal fight is a possibility.
In principio creauit Linus Linucem.
sorry, more of a reply to the parent than you...
So where do we send the patches? That IS why they released it isn't it?
Here's the ringing endorsement from Laura Didio (the anti-RMS, perhaps):
"With the open source community, there are a large percentage of tinkers and 'ankle biters' who are trying their hand at hacking. Some are even communicating with each other. So it only takes one or two of these groups sharing information to be able to pull something off. When you have this type of passion, it's hard to fight because these people are like virtual suicide car bombers."
=====
Together, we will drive the rats from the tundra.
I fell out of my chair... guess I find frank comments in source code a little "too" humourous...
An eye for an eye... leaves the whole world blind.
If it wasn't for the fact that so much of WinXP is based on 2000 that the vast majority of the bugs that crop up for 2000 also exist on XP.
.NET. Granted there's a couple of new wizards and some new UI things, but the core is for the most part the same.
XP is nothing more than a fancy new interface to 2000 with extensions for
"grow up"
The nice thing about that is you can use it any time you want! Another good one is "cry me a river"
I see. I should continue to use closed source, accidentally disclosed (but only to bad people) so that MS can accumulate capital. That helps me a lot. That's definitely my goal in life. Thanks for clearing that up.
At this point it's way too late. There are foreign websites hosting it, and it's going to be next to impossible for MS to have any pull on some of these countries.
Since OSS folks only come in two colors.
If I was Mrs Darl McBride i would be mighty suspicious that Darl is having an affair with Laura. After all they seem to have access to the same drugs.
Now, don't know where the source was leaked from, but 1 + 1 = ?
;-)
1 + 1 = USA in this case
Beware: In C++, your friends can see your privates!
Hmmmm....
For perl code to be included Windows, it would mean they would have to have a perl interpreter in windows (It's highly doubtful they used perlcc). Does the perl license similar to the BSD license where they could legally put the offical perl in windows, or is it more like a GNU style license where they couldn't.
MS developers are forbidden by company policy to look at open source code, even on their own time, for that very reason.
"Faith strikes me as intellectual laziness." -Robert A. Heinlen
Copying it would be making a duplicate in a file on your computer, like in the history.
Maybe turning my history off is the best move I ever made in my life.
1888 Franklin St.
that they had to make this an official announcement?
"Time for everyone to upgrade to XP or else hackers will get you too!"
What a brilliant thing to do right on the heels of MyDoomJuice and all that.
Hehehe
My name is Carlos Montoya. You share files of my music. Prepare to die.
I have downloaded few of the circulating archives...
All of them are partial WinNT 3.51 source code...
What a disappointment...
http://www.infoworld.com/article/04/02/12/hnwindow sleak_1.html
In particular, the article raises the issue that there is currently some contention regarding exactly what percentage of the respective OS' were leaked.
"Those who say they have downloaded the source code claim to have a 200M-byte compressed file that expands into roughly 600M bytes of code. Microsoft officials told industry analysts that this is roughly correct and that it represents about 15 percent of Windows source code.
Jupiter Research's Wilcox said a much greater percentage of the Windows code may have leaked. 'It was my understanding that Windows 2000 was about 35 million lines of code.' People who have seen the leaked code say it contains about 13.5 million lines."
And all our yesterdays have lighted fools The way to dusty death. --Will
alt.binaries.cores
alt.binaries.newsgroupcentral
header:
Windows.2000.source.code-NOGROUP - 2 of 2 - "windows_2000_source_code.zip"
the file is 209.3MB. it was posted about 2 hours ago. most likely this is the same file that was being distributed via torrent ect... enjoy
Notice how Neowin has - Exclusive in front of thier story. The associated press released this information a full 12 hours before Neowin got a hold of it.
remember what happened to fooker?
I think that the conspiracy theorys, particularly those that think MS deliberately leaked the source, seriously overestimate MS as an entity. MS is like any other large organization or corporation: A vaguely organized collection of individuals who are muddling through their working day, certainly not hell bent on working towards some evil master plan. Nothing MS does besides Windows and Office makes any money. They are groping in the dark like everyone else. If you speak to MS employees or visit Redmond campus, you certainly get a sense of this.
You mean like Visual C++? MSFC? MASM?
An eye for an eye... leaves the whole world blind.
The Xbox kernel + SDK source code leaked over a year ago. The Xbox source that was stolen is complete enough that at least one warez group - Xecuter - has compiled customized kernels from source. If you look at their compiled version, it is very obvious that they didn't do patches to make their hacks.
The forcedeth driver authors have ignored the many emails to them containing the nForce register list and documentation from the leaked Xbox source code.
WINE has ignored emails to them about the real name and purpose of the SystemFunctionXXX calls in advapi32.dll. (The header file doing the #define's to rename them was in the Xbox source, supposedly.)
anonymous woman
That's the first time I've seen that acronym on slashdot, glad to have you around.
An eye for an eye... leaves the whole world blind.
No GNU has been Hurd during the making of this comment.
I'll make sure you get another copy of that memo.
the Microsoft's press release is down already!!! hax0r's are already messing with hidden holes in source!! oh, wait.. it's just /.
Stop and think about it. Regardless of whether or not the leak was intentional or not, it hurts us. If the code leak was deliberate, it was a brilliant move, strategically. It will hurt the open source community far, far more than it will hurt Microsoft. Infact, this is probably the biggest punch Microsoft has landed on the face of Linux. If it was unintentional, the net result is the same. Here's why.
Think of the leaking of the Win2K/NT source tree as a virus.
It's a virus designed to undermine the credibility of open-source community. It operates by exploiting two well-known vulnerabilities in open-source coders---Their curiosity, and their propensity for sharing. The dispersal of portions of the Win2K/NT source tree effectively taints the entire open source community's efforts to develop cleanly. Think about it. By leaking the code, every new OSS project that has anything even remotely to do with Windows interoperability can now be accused of having it's hand in an (at best) an unethical cookie jar. The folks who maintain Windows-interoperable projects now have to second-guess every new submission they recieve. Even worse, the availability of portions of the Win2K/NT source tree means the functional validity of all open source projects can now be called into question. Before, it was certain that any "feature" present in open-source software was the result of hard work, close observation, and the occasional dose of clever back-engineering.. Now that we can see over the fence, we can be accused of everything from violating Microsoft's intellectual property rights to wholesale misappropriation of entire blocks of Windows code.. Sort of makes SCO's accusations seem a little more well-grounded, doesn't it?
The sad thing is, the virus is having an easy time making the rounds, since theres nothing we can do to stop it. We cant become "less curious". We can't become "less industrious". The only way to avoid being under the cloud of suspicion is to stop developing alltogether. Just watch what happens. My guess is, by the end of this year, the trade rags are going to begin to equate open-source software with "questionable parentage".
This game is gonna get interesting in a hurry.
Bowie J. Poag
They have left their customers exposed for years.
Now their lack of security has cost them their crown jewels.
If voting were effective, it would be illegal by now.
Viruses are well supported by their authors, their program code is fast, compact and efficient and they tend to become more sophisticated as they mature.
So, Windows is not a virus.
qntm.org
Which seems about right.
190 07-26-00 02:12 win2k/private/inet/mshtml/btools/nuke.bat
Oh shit.. the 'Start global thermonuclear war' code - revealed and exploited.
We're doomed!
-el
While it's not news that MS doesn't see that there might be any security threats towards Windows, should we read more into this:
e ch nologyNews&storyID=4351461
"One main risk in having source code exposed to the public is the possibility that hackers could break into computers running Windows NT or Windows 2000 and destroy or steal data.
"Although the company said that was unlikely, given the relatively small portion of code that had been circulating, a greater risk could come from others using the code as a base for developing software that competes with Windows."
http://www.reuters.com/newsArticle.jhtml?type=t
There are legitimate people(universities etc) who have looked at this code, if there was a license violation, we would have known about it beforehand....
It'll be rough for a few months, but after some bugs start churning out left and right Windows will be a more secure OS.
It's the best of both worlds, you get geekloads of bug checkers, and still can sue the butt off of anybody who makes a derived work.
Microsoft should have done this years ago!
It is no longer uncommon to be uncommon.
you should grep for string 'suck' on that src-code. There are some pearls. like:
// BUGBUG -- Win95 sucks. Close the socket and try again
...
or
printf("Ha! There is no verbose mode, sucker. Try again\n");
and so on
Near the end, Gary Winston is frantic as the anti-competetive and murderous tactics of his company are broadcast by one of his own communication satellites. Then you see the source code for Nurv's multi-billion dollar project being transmitted over the Internet.
Milo: "Are you proud of me yet, Gary?"
From http://www.microsoft.com/presspass/press/2004/Feb0 4/02-12windowssource.asp
Statement from Microsoft Regarding Illegal Posting of Windows Source Code
REDMOND, Wash., Feb. 12, 2004 -- On Thursday, Microsoft became aware that portions of the Microsoft Windows 2000 and Windows NT 4.0 source code were illegally made available on the Internet. It's illegal for third parties to post Microsoft source code, and we take such activity very seriously.
We are currently investigating these postings and are working with the appropriate law-enforcement authorities.
At this point it does not appear that this is the result of any breach of Microsoft's corporate network or internal security.
At this time there is no known impact on customers. We will continue to monitor the situation.
a lot longer: Freenet
I wonder how many people will start using freenet just to get the sources and not get tagged as "one that downloaded the sources".
Ok I just explained this story to my mate who doesn't know much about computers but is doing a Law Degree...
He says your allowed to Reverse Engineer any piece of software yourself. I said yeah maybe but either way I don't think any team with all the time in the world could ever Reverse Engineer windows perfectly? And anyway it's probably illegal, though my friend says its perfectly legal.
Er, I've confused myself now, could someone please explain!? Could people just reverse engineer the whole of windows and then have access to pretty much the same source code as was written by MS?
Everything sucks except musicandstuff
And if you don't pay up, we'll release the rest of it . . .
For once the BBC carried a tech story on the main news which was reported as follows:
Source code for Windows NT and 2000 was leaked onto the internet. Microsoft fear that the source code being open to view could make it easy for haclkers to attack these systems
So there you have it. Source code readable by plebs = security risk, a statement that will reflect on FOSS in the minds of joe public if you tell them that the Open Source means readable source code.
Hmmmmmm....
Hmmmmmm..... Deep fried and look like Squirrel.
So we can finally find out whether Microsoft uses 2, 4 or 8-sized tabs... ;-)
http://us.share.geocities.com/tatarize/files.txt
Not hyperlinked to keep it there longer.
Up for 2 minutes tops. If anybody has a legit hosting for this, save a copy, and post a reply... although its already down, and your site would be 20 seconds later. The file names are good to know.
It is no longer uncommon to be uncommon.
Could be a conspiricy, perhaps the 'leaked' code was purposefully 'lost' and now those virus you are writing could be looking for the wrong holes. lol. Well, if the code is legit, we can start making +9 trainers for Microsoft OSes! Cool! Press F1 to register , press F2 to resurrect clippy!
The Today program I regret to say seems to have swallowed the story.
I think this is part of the Microsoft programme of advertising and attacks on OSS which started last week.
Plus a sort of effort to excuse the huge security hole revealsed after 7 months earlier this week.
It would be worth making contact in a thoughtful and polite way with your local media, and offering to give a reaction on the next MS press release or "new" revelation.
There are exceptions, I believe, for parody -- various Star Wars knockoffs (e.g., the Death Star Clerks animation) are apparently legal as parody
;-)
So if Wine or Samba get into hot water, they should say "Hey Judge, we were just making a parody of Windows. Funny, huh. Get it?"
666 * 3 = 98
Whoa...
No, the "penalties" are financial compensation paid by a losing defendant to a winning plaintiff. That's not a fine. The lower standard of proof is far from "notorious", it's only fair. Civil suits take place between parties that are theoretically equal in the eyes of the law, so there's no reason to automatically favor one party over the other. Criminal law is heavily weighted in favor of the defendant because it's presumed that citizens need more protection from a potentially draconian government than they do from each other.
IOW, mod grandparent down. It's an ill-informed comment from someone who has little understanding of the court system. He ought to have learned better from The People's Court, if nowhere else.
And the brethren went away edified.
The best thing the community can do now - when the source has leaked - is to actually perform a peer review of the MS source code, and HELP MS close the security holes.
After all, we all do want a more secure internet, with less virii, worms and bugs. So why not help out?
I can't imagine what MS reaction would be if they actually started getting serious _help_ from the open source community, instead of the regular bashing.
And - it would be a Good Thing as well... Remember - it's Valentine's day tomorrow...
Are you gonna let them do it alone?
Thats true and they also have patents and trade secrets in the code, although with trade secrets its unknown if they still hold up in court now that the source is leaked.
http://heim.ifi.uio.no/~mortehu/files.txt seems to show signs of a Nimda (or similar) virus infection. Look at the number of 0-byte sized email messages distributed in inappropriate places throughout the tree. If whatever machine this source was ripped from did indeed have a virus then no wonder it was leaked.
Well, as a journalist in a large newspaper, I recieved a phonecall from the CEO of MS Norway. He's a nice guy and said that the title we had was misleading. I could see his point and we changed it to something more accurate.
Anyhoo, he said that only parts of the code had been released and not the whole tamale. Furthermore, the code is not possible to compile from the source that has been leaked.
Can anyone here confirm / deny that the whole code set for Windows 2000 / NT has been released?
Mail me at pal.unanue@NOSPAM.vg.no
It _was_ not ilegal to download musik in sweden. Since Januari first this is not true, however.
In sweden it is not legal to download copyrighted material you haven't payed for, as well as upload, of course.
So there might be countries where it is fully legal to download the Windows Source Code, I guess.
--I've learned all I know about politics from
If there are no backdoors are in the source, the tinfoil hat crowd will just say that the leaked source isn't the version used to build windows binaries, and the controversy will continue.
That would be wasy to verify.. If the compiled binary matches the commercial one, the this is the sourcode, otherwise there are tools to locate the differences ..
echo '[q]sa[ln0=aln80~Psnlbx]16isb572CCB9AE9DB03273snlbxq' |dc
One quick way to tell:
cat | grep FIXME | wc -l
If you have a very large number then you really do have microsofts code.
doesn't appear that there is any NTFS code in what was leaked. why would microsoft share NTFS code with a developer? really doesn't have much to do with the API
Every tech in the universe may well know that microsoft code is poorly written. But it's not us that signs the purchase orders.
Dumb managers fall for the marketing, excuses, and FUD every time.
Yeah, I do know of what is apparently a source. Not tried it, because I don't want to touch it and hate warez, but the neowin.net article wouldn't point to any sources...
Well, that's not the case in all countries. I wonder if the wine project could continue as an EU only project (but obviously still be legal to use in the US) since in most countries here the suing party* is obliged to pay all the fees of the party being sued if that party wins - thus suing someone out of existance isn't possible. Consequently in a case where Microsoft is actually the underdog lawyers would line up to defend wine knowing how much money they could get out of MS pocket if they win and thus it would be very hard for MS to prove that wine has done any IP infringement.
*) Sorry, English is not my native language but what I mean with suing party is the entity suing another one. If the party being sued wins the suing party is obliged to pay all the legal fees of the party that was sued (in that case the winner). However, if the suing party wins the party being sued (and in that case the loser) isn't automatically obliged to pay the legal fees of the winner (in that case the party suing) since otherwise the party suing would be tempted to use excessive resources (ie. knowing that the loser will pay) in a case where they know that the outcome is obvious.
Karma. Moderation. Is my
Didn't I tell you. MS is going for Open Source !
Oh, the complexity of it all.
Strange that NT has never had the stability of VMS, or maybe not so strange, if the reports are to be believed that after NT3.51, some Silly Billy has the device drivers moved into kernel space to make it faster.........
It is sad that DEC is gone, but it was entirely predictable because the semiconducter industry, mainly Intel, is in a position to undercut anyone who only manufactures computers. They actually lasted longer than I expected. I had nothing against DEC, in fact I thought some of their early stuff (PDP8, 11) were actually quite decent at the time, and they were positively generous with documentation and manuals, certainly to educational and research users, but it was clear that their approach had had its day, with teh advent of the 386, or certainly the 486. Compare the cost of a complete top of the range PC to the biggest VAX, with a tiny fraction of the CPU performance, and you will see why.....
Having said that, I have worked quite efficiently, some years ago, on a VAX shared with a hundred users, using Word Perfect on a serial terminal. It was surprisingly usable.
Heres a crazy idea. Perhaps...just perhaps this leak was somewhat of a test to see what would happen if Microsoft did go open-source. Perhaps they want to see if hackers will take the code and try and fix it or take the code and write better viruses. hmmmmm...or maybe they just pissed off an employee.
"The 203MB file expands to just under 660MB, he said, noting that the final code size almost perfectly matches the capacity of a typical CD-ROM. The entire source code, he said, is believed to be about 40GB, meaning that the file circulating Thursday is only a fraction of the full code base." Security consultant Dragos Ruiu, as quoted at zdnet.
Can this be true? Can the Windows 2000 source code really be forty gig? What is he counting as source code?
My Linux 2.6.0 kernel source tree is 348M. Of course, Windows will have the GUI as part of their kernel source, but for X, that's just another 279M. Yeah, okay, so toss in the source for the MS equivalent of window managers, and perhaps some other utilities, but still...
Is 40 gig a reasonable estimate? Really?
Phiwum's law: anyone that names an obvious law after himself and then puts it in his own sig is just pathetic.
One word: Compaq. Remember the IBM chip? Remember clones? Was that derivative work or reverse-engineering?
Zodiac Survey
If they win, their fees are paid. Good, so what about the meantime? You still have to have the cash to begin with.
Fine, then...force them to release that part of the code to the laywers under a NDA. This is civil court, not criminal court.
Zodiac Survey
I've read in another thread that Microsoft released bogus files onto kazaa. I decided I'd try to get one of these bogus files and see what they were. I found a 100mb ZIP file which was obviously a fake, everything's saying it's zipped up to like 200mb and extracts to 600mb. Using my handy dandy "file" command I discovered it was an mp3. A 100mb MP3. I played it and it was some 3 hour long thing full of absolutely nothing. For those of you intrested, the filetype was: MP3, 80kBits, 22.05kHz, JStereo
http://illhostit.com/ - Webhosting
You still have to have the cash to begin with.
The lawyers send a bill once the case is over. No cash needed at first.
Karma. Moderation. Is my
Didn't maddona get a telling off for doing something similar.
She had some files put out claiming to be mp3s of her album but were messages not to pirate her stuff.
Hit by a fine for misrepresentation of goods even though they were free.
The fake ones are probably spammers trying to get you to download a big zip file full of 'buy viagra' and other junk
hey call SCO, maybe they'll find some... ehrrr lines ...
Look at the file win2k\private\windows\shell\control\bitmaps\std.bm p
for a laugh
If anybody DOES see the code, perhaps they might scan it to see if it contains any GPL'ed code (stolen from Linux perhaps?) Hey maybe SCO stole the code! (SCO sues MS! Wait they can't Bill bought a license! OTHO they might anyway!)
Actually I wouldn't get within 100 yards of the windows code myself!
I seem to remember that an essential part of the Compaq clean-room clone of the IBM BIOS was monitoring cameras and a videotape record to show that only the correct information ever crossed the "Chinese Wall".
A few years back, I was trying to purchase a piece of software for business use, and vetting it with company lawyers was an essential part of the process. The author had developed it while working for a company, and that company had been sold several times. Eventually he took the program on his own, and was selling it as shareware. The ownership of the program was so murky the lawyer wouldn't let me buy it.
The lawyer used a phrase, "Fruit of the forbidden tree," that is probably relevant here. If an NTFS spec is derived from stolen source code, that spec is tainted, and any future code written based on it is tainted, too.
If you really want a clean NTFS spec, find a legit way to get access to the object code without signing or clicking the license, (I've seen any number of ways to avoid clicking the "I agree!" button.) and disassemble, then document. Preferably with a video record.
The living have better things to do than to continue hating the dead.
4667 *.c files. 5601 *.h files. 2255 *.cpp files. 26 *.hpp files. 1456 *.cxx files. 961 *.hxx files. 148
Lines of code:Some grepping..Bugs anyone?Curious; grepping for 'linux':'grep -r -i's with no results: GNU/Linux, GNU GPL. Bill Gates, Steve Ballmer,
Yes, yes they can. They may, or may not be succesful, but to ensure that they are not, you would have to spend some of your money.
Sounds unfair, but that's the cost of justice in the USA.
Back when Microsoft agreed to show Russia, China, etc its source code. When the whole world has a key to your house, locks are irrelevant!
If someone says he and his monkey have nothing to hide, they almost certainly do.
You know how windows freezes up a lot? Do you bugs by microsoft will be found that was purposely added
That Microsoft had the source leaked for Win2k and NT 4.0?
Their whole business model depends on upgrades. If people/companies keep using their NT 4.0 machines then MS makes no money on them. It is actually in MS's best interest to 'leak' the code then make an issue of the 'hackers can find ways of exploiting the operating system with the source code' argument. Remember people, FUD sells.
Steve's Computer Service, Hobbs, NM
The previous story stated that open source is necessarily insecure because it's open. I.e., that closed and proprietary are necessarily safer. But, when happens when the closed/proprietary door is opened?!
Security by obscurity is only a short-term solution. And only a moron would think otherwise!
If someone says he and his monkey have nothing to hide, they almost certainly do.
IBM is actually smaller then M$.
IBM capitalization - 170.84B
MSFT capitalization - 290.91B
I guess you just don't know what you are talking about.
From bugcheck.c, the code which makes the screen blue...
// make the screen blueN G_FILTER)NULL); // enable display string // set to use entire screen
if (InbvIsBootDriverInstalled()) {
InbvAcquireDisplayOwnership();
InbvResetDisplay();
InbvSolidColorFill(0,0,639,479,4);
InbvSetTextColor(15);
InbvInstallDisplayStringFilter((INBV_DISPLAY_STRI
InbvEnableDisplayString(TRUE);
InbvSetScrollRegion(0,0,639,479);
}
I.O.U One Sig.
So many people are talking about open source stuff that no one has looked at the obvious. Microsoft did this on purpose. Let the code conveniently get out onto the net and then let more and more security holes be found. Nice sales tactic to get everyone to move to Windows XP or Server 2003. Microsoft - "you know, if most of guys out there refuse to upgrade then we will give you real reason to upgrade, this is our new licensing plan." Reminds me of mechanics damaging cars themselves just to do repairs.
So many people are talking about open source stuff that no one has looked at the obvious. Microsoft did this on purpose. Let the code conveniently get out onto the net and then let more and more security holes be found. Nice sales tactic to get everyone to move to Windows XP or Server 2003. Microsoft - "you know, if most of guys out there refuse to upgrade then we will give you real reason to upgrade, this is our new licensing plan." Reminds me of mechanics damaging cars themselves just to do repairs.
No, but it might be enough get a DA to get a subpoena for Microsoft's source and backups to prove compliance.
Maybe.
This shit is real.
Includes kernel stuff, crypto code(ouch!), architecture documents, some stuff that looks like internal emails but I can't get them to open(will work on that later)...
This is FUN!
Prediction: Windows marriage of Linux in China. We'll all be importing Chinese Winux in a few years.
If Linux developers in the USA use ideas from Chinese Winux they will not know about a possible relating Windows copyright?
Worse yet, the leak will probably reveal how unadvanced Windows really is. Aside from the blue screen and bloat technical people will have to actually compare the implementations of Windows versus Linux. Scheduler for instance! Windows books always say it was a round robin but maybe we find it is more timesharing like the 2.3 kernel.
Expect Freedom.
It's probably just a code generator, in which case the perl interpreter would not have to be included in Windows. Only non-perl code generated by a program written in perl would be in Windows, which wouldn't violate perl's license.
I just scooted over to microsoft's press room and saw these two articles next to each other:
:-)
February 12, 2004 7:30 p.m. PST
Statement from Microsoft Regarding Illegal Posting of Windows Source Code
February 11, 2004 5:00 p.m. PST
Microsoft on the Issues: Strengthening the Knowledge Economy
What a good way to strength the knowledge economy
MSFT is in a lot of problems specifically *because* of thir market domminance. While I would whole heartedly support the opening up of the code in general, the issue they are facing is very simple: if they let it free, chances are that:
(a) vulnerabilies would be discovered *and* exploited by malicious groups *before* the white/grey hats ever get to them
(b) it will be just as difficult to get the install base to patch the wholes -- look how many unpatched old machines are out there, every Joe-user and your-grandma out there...
Linux and *BSD advantage here (and in a way Mac) is small install base *on top* of the thorough peer audit that has been going for years now. And we still get to find some bugs here and there...
Put it another way: it sucks to be M$FT, either way you cut it...
--AP
made it to the posts hall of fame/shame
This is my opinion. Everyone has a right to my opinion.
This is from Google's tallying, so it's probably a pretty good ballpark. Look at the second section, right side:
http://www.google.com/press/zeitgeist.html
"It isn't necessary to completely suppress the news; it is sufficient to delay the news until it no longer matters." - N
I agree that you should just say no. But what if someone who has no interest in working on Samba does something like figures out the MS impimentation of the SMB protocol and junk like WINS replication, then only publishes how the protocol works?
This is just a theory, but if the person who publishes it cannot be traced, and those who learn from the protocol specs never see the code, then I don't think there is much MS can do.
Oh...wait. Nevermind. :-)
cb
Remember, licking doorknobs is illegal on other planets.
27117 07-26-00 22:00 win2k/private/ntos/w32/ntuser/kernel/security.c
:)
This file is the absolute strong evidence that Microsoft did increase the security in the Windows kernel.
Iraq: war to save the U
Why? Why are you so much afraid? Imagine you are a programmer at WINE. You work hard to recreate necessary functionality, but then you stumple upon a roadblock. You simple can't make something work as it works in Win2k. So you fire up eMule, get the sourcecode, find the relevant fragments, read them a bit and then it dawns on you how it works and how your problem should be solved. Voila! You delete the code, wait a few days and then recreate the much needed functionality from scratch. To be completely sure you didn't "taint" WINE, you can undelete :) the code and compare it with what you have written.
If you are careful and don't just copy-and-paste the code, how can MS know that this particular function was written by you after looking at their code?
Future Wiki -- If you don't think about the future, you cannot have one.
No, inside Microsoft is a lot more like "Office Space" and anybody with motivation could get the entire source with little trouble.
I first read it as "No, inside Microsoft is a lot more like Open Source and anybody with motivation could get the entire source with little trouble."
Future Wiki -- If you don't think about the future, you cannot have one.
(Pythoneer speaking ;-)
A little bird told me that "windows_2000_source_code.zip" on FastTrack (Kazaa) is a good possibility... ;)
.exe ... the little bird doesn't like .exe's and something told him that it wasn't it.
He also told me the file is about 203.8 MB in size.
The strange thing is that I've read somewhere that one of MS's people said the file was around 660 MB, which is odd, since the little bird didn't see any file of that size. The only similar size he has seen is a "Windows.Source.Code.exe" weghing around 733.1 MB but it's an
Please. Then every employee of every software product around the world could be considered "co-opted" in court if enough doubt about whether the employee has seen the w2k code could be planted. Then every software company in the world would have to pay royalties to Microsoft. I'm not a lawyer, but let's use a little common sense.
... Bah, consider it research. In this case, consider it an example of how NOT to design an operating system.
COPYING code surely will get you in trouble, and it's easiest tested on open source code. Having seen an implementation
What did I say wrong? That I said something that if read quickly, without full comprehension, might be construed as criticism of the Samba project?
Way to jump the gun, Moderator! Did you read any of my followup posts before getting all hot under the collar?
And -1 overrated, so no one can M2. I can't believe this childishness.
THIS THING CAN TURN ON A DIME, MACROSSZERO STYLE ALSO FUCK BETA, ~NYORON
Ok, thats a lame release. If the hackers or leakers were in the MS corporate network, they should have posted it on Microsoft site.
Imagine thousands of users D/Ling it from download.microsoft.com or somesuch.
And if it were downloaded in this way, would MS have legal grounds for saying you cant have it ?
http://validator.w3.org/check?uri=http%3A%2F%2Fwww.slashdot.org Errors found while checking this document as HTML5!
indeed - i almost fell out of my chair last night when i read the article on open source being more vulnerable and then scrolled up (or down?) and saw the article on MS source code leaks...
does it play OGG Vorbis?
"I keep looking in the want-ads under 'revolutionary' but there don't seem to be any listings.. "
I couldn't help it...I just had to look. It was actually hundreds of thousands of goto statements...interspersed with:
while(1) fork();
to moderate efficiency.
I'm now blind (a la "don't look in the Ark of the Covenant")...and of course running from both SCO and MS.
I just noticed a brown dot next to your name which introduced me to the concept of "freaks" on Slashdot. It turns out I have a few. The thing is, I can't remember ever talking to you about anything. If you care to respond, I'd be interested to know why you consider me a "foe".
Regardless, have a nice day. I can't see any reason to object to your choice.
On topic: There are definitely parts of the Gnome/KDE GUIs that I would like to use on Windows. I really wish Windows would emulate the multiple-desktop environment that comes standard in Linux GUIs.
Windows is it's own pardoy.
the preceding comment is my own and in no way reflects the opinion of the Joint Chiefs of Staff
What is Aqua?
If it's a Spec it's avaliable here.
And if it is a bunch of bitmaps they are already on my computer.. you know, as a part of OSX?
That would be an interesting test. Anyone want to try? :)
I've seen some comments about people greping the code themselves, so I must warn: Don't do that yourself! Downloading the code is illegal.
Downloading == copy. And the code is copyrighted. Altought you may find someone in a country which copyright laws don't cover computer software or something like that.
The entertainment industry has been dealing with this for decades.
Scripts, demo tapes, etc. from random people get returned in envelopes sealed with metal tape after creation of a log proving that the creative people never saw them.
That's because real-life copyright cases often hinge on the question of whether the alleged infringer had access to the work being sued over. If you never saw it, it's pretty easy to argue that you didn't copy it.
Then there's the trade-secret angle. I'm not a lawyer either, so I don't know whether this publication has cost MS their trade-secret status, but it's pretty safe to figure that whoever did it violated an NDA.
"Congress must act now to rein in the Patriot Act" - Newt Gingrich
The Windows 2k source tree is a little over 30GB and the Windows XP source tree is about 40GB. So, yes, you are correct. The combined source tree's for all non-longhorn windows 32 bit computing hovers around 300GB. Don't get me started on the office source code tree...now that's funny. On a side note, the amount of code written in the Mac group for office apps is considerably smaller than the main office software group. This is mostly due to the fact that they are a tighter group of progamers who crack out some sweet code.
The Reuter's article on Yahoo contains a number of inaccuracies that are clearly prejudicial, and are probably sourced within Microsoft.
It (the story) amounts to an obvious attempt to spin up a scenario that will lead ultimately to criminal prosectution of persons involved in Open Source. And the story being such an obvious attempt at spin doctoring could lead one to believe there is more going on here than one poorly written news story...
Apparently Gates & Co. have decided their civil case fronted by SCO is not quite strong enough, and are trying to establish criminal precedent in order that, whether the current SCO effort succeeds or fails, the next case will be criminal.
One could hope that the courts will develop enough tech skillz to determine that the line
showing up in both windoze and Linux code does not constitute proof of theft under some Gatesien system of jurisprudence ...
Examples of the (imo) prejudicial language in the story [emphasis mine]:
There is no evidence cited that the code is being "traded". It appears that it is being distributed, but I haven't seen any reports of it being exchanged for anything else. This is key, since the languaged used here implies a profit motive on the part of the alleged "traders"; necesary for the criminal prosectution because there is a need to establish that the code is worth a great deal...
This sounds like it came straight out of a Microsoft publicist. It is an emotional appeal statement, designed to imply a henious threat to the alleged victim, Microsoft (and by implication, SCO).
The statement is factually inaccurate, even as metaphore. Source code is a principle part of the products manufactured by most software companies, but expertise in the creation of source code is more properly the "lifeblood" of the company.
Of course, Microsoft is a bit challenged in the expertise dept, but that should be applied to "any software company"....
If it is indeed "illegal" for 3rd parties to post the sources, then why would the aforementioned "agreements" require threat of civil action? If it's illegal, there should be no need to lititgate. The threats would be of prosecution, not litigation.
Furthermore, the word "share" here is ridiculous. If you've ever looked at what it takes to get an NDA to look at M$ sources, there's no "sharing" to it. It's a business transaction, and it doesn't happen unless M$ gets the lions "share" of any potential benefit.
WTF? Well, admittedly I haven't written any "programs running on Windows" in quite a few years, but I no idea things had changed quite that much... [that's sarcasm in case you can't tell; the statement is just plain wrong]
"The Internet is made of cats."
Just in for the record :). This is an awesome thing that's been done. However it's not useful if it's not willingly done; referring to the source code being revealed. They should do it voluntarilly so they can get the good press and good coders in on it. Now it will only get bad press and anyone who happens to have the source and makes fixes will be too scared to release it; even to MS. Shame... well maybe MS will spin this properly.
/. Heroics - 99.999%
WOW.
B-I-G topic.
The problem is that I can't say anything, make any jokes etc. without the risk of being redundant. Not even sad old me has time to read all those comments.
I mean, f'God's sake, even people who browse at +5 have to read more than one page! (And I read at -1).
graspee
Now I have something to give to my honey for Valentine's!
The butterfly comes through for me again!
If you don't know what AltaVista is (was), get off my lawn.
I used to work at Mainsoft (from nov 1994 - nov 1996) and worked with the mainwin toolkit. Part of my responsibility was to mine the Windows NT source code we had to port some parts into the mainwin toolkit.
Mainwin began life as a reverse-engineering of the win32 API's. What they found over time is what the Wine and Mono teams are finding the hard way; Microsoft has jillions of programmers, and are very willing to keep rewriting their platform, and to add tons of new modules, at a rapid pace. You simply cannot keep up if you're reverse engineering, because Microsoft will outpace you 10 times over.
Since Mainsoft is a commercial enterprise the then President convinced them to get a source license, using the above argument. Jeff got laid off the same time I did (nov 1996).
At the time I was there, we had source trees to DOS 6.xx, Win 95, NT 3.51, and NT 4.0 beta 2. Remember this was in 1995-6 timeframe, and those were the then-current releases. We also had source for Internet Explorer v3.x and were working to port it to Unix. Mainsoft later collaborated with Microsoft to port IE v4 to Unix, and Microsoft made that port available on their web site.
I was the first one to port any source code from NT into the Mainwin product. We had a number of listbox related bugs, and I had a theory that since our Listbox.c was 2000 lines, and Microsoft's list{1,2,3,4}.c source was over 8000 lines, that we were missing a few pieces of functionality, and got permission to experiment with moving Microsoft's source to the Mainwin source tree. It was a successful experiment, and let us close out a whole slew of listbox related bugs.
With having our own copy of the source tree, we were also able to port various modules like WINSOCK and COM directly from their source code. COM was especially important because it was, at the time, 2 million lines of code, and a totally daunting prospect of reverse engineering the functionality.
In any case, I was wanting to give a little background since you guys are talking about Mainsoft. It shouldn't be a surprise that Mainsoft has a Windows source license.
- David Herron
/. Hall of Fame
article: the number of industries and critical systems that are based around these technologies that could be damaged by new exploits found in this source code is something that doesn't bare thinking about.
what could be a better argument for open source code, in which potential vulnerabilities are always exposed to the developer community?
So um, yeah. Someone make sure to get this code over to the Samba team, STAT.
OK, that's it. Bye now.
El riesgo vive siempre!
Windows.Source.Code.w2k.nt4.wxp.tar
isn't it ironic that the leaked source would be distributed in a *nix archive file format?
Google for "Windows RG"... someone actually made a parody of Windows (sorta recursive, I know, but hey... it was pretty accurate)
It must be Thursday... I never could get the hang of Thursdays.
Here is the Jigle search for the source code of Windows (elinks there).
[ My blog [es]]
http://www.microsoft.com/presspass/press/2004/Feb0 4/02-12windowssource.asp
REDMOND, Wash., Feb. 12, 2004 -- On Thursday, Microsoft became aware that portions of the Microsoft Windows 2000 and Windows NT 4.0 source code were illegally made available on the Internet. It's illegal for third parties to post Microsoft source code, and we take such activity very seriously.
We are currently investigating these postings and are working with the appropriate law-enforcement authorities.
At this point it does not appear that this is the result of any breach of Microsoft's corporate network or internal security.
At this time there is no known impact on customers. We will continue to monitor the situation.
"Our Internet filtering software has prevented access to the site: http://www.hopf.demon.co.uk/humour/win98.txt.e ase contact the relevant Helpdesk if you feel this message to be in error. "
Pl
what was on the site? I suppose I'll check that when I get home.
Found it. I have already seen it but I forgot about it.
No GNU has been Hurd during the making of this comment.
Really.
Don't go around propagating the source code for this thing. Millions of people use computers with these operating systems, people spreading the code could easyly being contributing to *MAJOR* problems arising.
My 0.02
Lay
Weakly typed languages will bring us armageddon
My wife *is* a lawyer (working in IP). She was reading this (AstroDrabb) over my shoulder, and said; "He doesn't know what the **** he's talking about. He should go to the EFF site and do some reading. His interpretation of the law is worse than what my C++ coding is like, and that's saying something." (AFAIK, she doesn't know how to program C++. Only BASIC.) Things to check: derivative works, DMCA, reverse engineering. "Don't give legal advice if you're not a lawyer." "Wait...never mind. DO give legal advice! We need the money."
no, but the RIAA can sue you if you turn around and make a song just like it
just a thought
Probably impossible - it's far far easier to write code than it is to read somebody elses.
The two layer approach doesn't really require the person not know how to write C/C++ - only that they not contribute any code.
Not certain why parent added that extra requirement.
-- perl -e'print pack"H*","6e656d6f406d38792e6f7267"'
That makes sense. I haven't bothered to learn the system, but I can see how it is useful if you would rather not waste time reading someone whose ideas you find to be mostly noise. The names for each state are odd, but that's not your choice.
As the US presidential race drags into gear, the amount of political chatter on this site is increasing. I wondered about those poor souls who just want to read about technology and don't want to hear all the bickering. I guess careful use of the Friend/Foe system could help tune in the actual on-topic discussions. (On the sig. - I could explain myself, but you expressly don't want to hear it, so I won't.)
On the other hand, I have gone off on people a few times in the past, but I can't find much record of it since my page only shows the last 20+ posts. I could have actively offended you at some point.
Having a comment next to each user would be a helpful addition.
Anyways, sorry to take up your time. The terms "foe/freak" amused me and your post was the first time I noticed it.
Finally! The source code to Solitaire!
You create your own reality - Leave mine to me.
Did it for DeCSS. I don't see why someone doesn't take their ink-brush in hand and start summarizing. (someone uninvolved in OSS projects)
Q: What did the comedian say to the crowd?
A: If I knew, this joke would be funny.
It is only garbage that has leaked, after all. It has no real value to anyone, although it may have a perceived value to the Convicted Monopolist and those unfortunates who have been misled by his marketing machine. In fact, like garbage, its real value, based on its cost less the cost of cleaning up after each problem with it, is negative. It has a negative environmental impact, just like what goes to incinerators and landfill sites. No doubt people are picking over it as I type, laughing at certain features, as they might find amusement in the contents of some rubbish bins.... The difference between this code and garbage is that garbage is the unusable left-overs from something inherently useful, or an unwanted byproduct of a useful process, unfortunately the Monopolist has not come up with the good part of which the garbage is the remnant......... (Unless of course it is the left-over garbage from Wordpad, which is of tolerable quality, but in that case the garbage outweighs the wanted product at least 10000:1, which must be the lowest yield in history.)
Surely, even SCO is more profitable to discuss that the trash of Redmond. At least SCO's OS (or what they claim is their's...) is fairly stable and secure.
Seriously though, I might even have a look myself when I find out where it is. Then I might go out and rummage in some bins....
The two layer approach doesn't really require the person not know how to write C/C++ - only that they not contribute any code.
Not certain why parent added that extra requirement.
Cool! Is this a widely know approach (kind of how clean-room development is a widely know approach)? - and if so, where can I find out more about it, please? Or is it just an idea that we're kicking around here on slashdot?
A smart move by WINE developers would be to set up a clean-room environment where if anyone sees the code, he may analyse it and write a specification about how it works, which is then passed over to a developer to code a new module of equivalent functionality. That is how Compaq and others were able to clone PCs originally, the BIOS source was in te IBM Advanced Reference Manual or book of similar title, they did a clean room implementation where the coders had no knowledge whatsoever of the code, and it has stood the test of time legally.
Now, anyone writing code to a spec is acting legally, the grey area is that it "may" be illegal to read the code which has leaked. I think that the actual illegal act is the publishing, not the reading, under copyright law, and there need be no, and must be, no subsequent disclosure of what was read, especially in the clean room.
With a bit of care and intelligence, this leak may well be of enormouis assistance to WINE, as it may help them exactly reproduce undocumented bugs which others have worked around, so that the workarounds don't break on a clean OS.
If they are smart (which is not in doubt) they will do the analysis of the leaked code in a country which is not signatory to the Berne convention, then they would be untouchable (except that the Monopolist might pressure the unelected imbecile who poses as president into going to war against "terrorism".)
Of course the code is most likely such a heap of rubbish that it is of no use to anyone, but that could easily be deduced from observing the behaviour of the end product, without needing access to the source.
No, but it might be enough get a DA to get a subpoena for Microsoft's source and backups to prove compliance.
IANAL, but it's well established case law that you can't use illegal means to gain evidence.
You need proof before you can subpoena anything.
LK
"Hi. This is my friend, Jack Shit, and you don't know him." - Lord Kano
Look at whats happening in the SCO case.
SCO is making a lot of noise. Not much else is happening in the case.
LK
"Hi. This is my friend, Jack Shit, and you don't know him." - Lord Kano
I think the 1 problem was raw sockets, which is pretty well exposed by Mr. Gibson at www.grc.com, but I may be wrong.
Even the Frogs have seen the Windoze source, and we know how much thay hate the US, and the UK for that matter, and I mean at government level, most individual French are very nice people indeed. It is certain that some of the countries which have seen the source, or some of the employees concerned, who may have their own little axe to grind, will do something like this sooner or later. Of course it may be in retaliation for having suffrered vast economic damage due to Windoze/Outlook virii in the last few weeks, a bit of revenge.....
I have in fact heard about this before.
I don't have any references though, sorry.
I'm sure it will happen eventually.
You might ask the Blackdown people. I believe while they require developers to attest they haven't seen Sun's Java source, they will accept advice from those who have.
I could be wrong, but worth asking.
-- perl -e'print pack"H*","6e656d6f406d38792e6f7267"'
I *wish* it was derivative, it might make it more reliable...
Seeing the source is only a issue if the source contains trade secrets. Now the the code is widely available, the question is whether the information contained is still legally a trade secret. Microsoft's legal department will undoubtably insist it still is.
The best predcident I can think of is the unauthorized disclosure of RSA's RC2 & RC4 algorithims. The poster is correct that it's better not look and avoid the fight, not because it is not legal look, but rather Microsoft has the resources to bury you in legal challenges.
You'd be much worse off looking at your employeer's legal copy of the Windows source because that copy is definately protected by trade protection.
Evidence of binary similarity could be sufficient to persuade a judge to compel disclosure of source code as part of a discovery process.
So, no, you won't win a trial with the binary evidence alone, but you might win a motion to compel disclosure. The whole "probable cause" notion--it's enough to get a search warrant but not enough to convict.
PS. IANAL.
--JoeProgram Intellivision!
% cat windows.c
#include
int main() {
printf("Loading...");
while(1) {
usleep(10000);
printf(".");
fork();
}
return 0;
}
...I'm really bad at detecting sarcasm ...
That proves it - he's for real.
Wow.
BIGstan!
I'll betcha a nickel that this comment and quite a few others are being posted by Micro$oft employees. It's just got that classic M$ pseudo-reasonable, highly informed, but somehow off feel to it.
We're watching history, folks and don't you doubt for a second that we'll being seeing vast mounds of astroturfing in the days ahead. Again, mark my words, someday it will come out in memoirs or elsewhere that a key part of how M$ is reacting is having hordes of their staffers go online and do spin control.
Don't forget just how many smart, aggressive folks with smart, aggressive bosses depend on Bill for their paychecks and will be sent off to minimize the damage of what is sure to be causing no small amount of realignment out Seattle way.
Rustin
Data is the lever, rigor the fulcrum, brains the force that drives it all.
IANAL either, but I had thought that applied onto to illegal searches and seizures by police officials. If I steal your gun, that you used to kill your neighbor and give it to the police, they can use that as evidence against you. In fact, that's the whole point behind much of this nation's (U.S.A.) whistleblower laws.
The US Government tried banning Wine in the twenties and it failed miserably!
Calling atheism and agnosticism a religion is like calling bald a hair color.
AT LAST! The secret to beating Solitaire... This could perhaps be the most significant event of our times!
Shh, don't tell anybody but the solutions for all 32,000 Microsoft FreeCell deals (except for number 11982 which can't be won) have already been posted!!!
I feel pathetic for knowing this.
At least I didn't try playing them all myself, right?
--LP
Seems anyone with even the slightest of "evidence" can get the source introduced into court.
You've never seen an actual Windows 2000/XP blue screen, have you? They are different from the old Windows 98/ME blue screens; they don't use text mode any more.
main(c,r){for(r=32;r;) printf(++c>31?c=!r--,"\n":c<r?" ":~c&r?" `":" #");}
Good Lord, sir, you hereby win my award for Intriguingly Informative Old Timer for this thred. Nice to be reminded that I'm not the only one around here who was a geek before last month ;->
btw, thanks for the naming convention heads-up, it matches what I've read in an old MS doc I've got sitting around. And good luck with your film.
Rustin
Data is the lever, rigor the fulcrum, brains the force that drives it all.
Here's some goodies I found in the code: (yes, they're real)
// Some ugly shit goin' on here! // wow, this sucks. // This interface sucks. // Hey! This sucks dude. User said no (or we couldn't increase the cache). // Here ends the suck // BUGBUG -- Win95 sucks. Close the socket and try againn e DDF_BITMAP 0x00040000l /* Display driver sucks! */ // this manually sometimes because GDI sucks the big wazoo.: printf("Ha! There is no verbose mode, sucker. Try again\n"); // "HTTP/1.0 302 Try again, sucker\r\n" // things suck in some more text. // If we have a fancy error message, hide ugly message // This code is added for bug 188 and the code is ugly !! :) // Gotcha. Got a previously cached sucker // but sucks egss for values. // Don't show a preview if we can't draw the damn thing! //- I'll be the first person to admit that this is an ugly solution, but // None of the restrictions apply, lets blast the sucker to the screen!
shell/win16/commctrl/ctl3d.c:
inet/controls/framewrk/ctlview.cpp:
inet/mshtml/src/site/text/linesrv.hxx:// basically an oversized v-table. C sucks.
inet/urlmon/search/b4hook.cxx:// SUPER HACK FUNCTION because InternetCrackUrl sucks.
shell/browseui/iaccess.cpp:
shell/ext/webcheck/throttle.cpp:
shell/ext/cscui/dll/filelist.h:// fnl.AddFile(TEXT("\\\\performance\\poor"), TEXT("sucks.doc"));
shell/ext/ftp/priv.h: extracted in such a way that we hit the net. This figgen sucks!!!
shell/ext/msident/multiusr.cpp:
shell/ext/msnspa/proxy.c:
windows/media/avi/drawdib/drawdibi.h:#defi
windows/media/avi/mciwnd/mciwnd.c:
inet/wininet/ftp/test/multfind/multfind.c
inet/wininet/http/headers.cxx:
ntos/w32/ntcon/server/output.c: * ICK!!!!!! Convert to chars. This sucks. We know
inet/mshtml/src/site/text/lscomplx.cxx:
windows/shell/shole/shole.c:
shell/ext/docprop/propdlg.c:
inet/mshtml/src/site/text/onerun.cxx:
inet/mshtml/tried/triedit/lexer.cpp:
windows/media/avi/compman/icm.c:
sdktools/vctools/rcdll/p0io.c:
NV_DECLARE_TEAROFF_METHOD( DoTheDarnPasteHTML, dothedarnpastehtml, (IMarkupPointer*, IMarkupPointer*, HGLOBAL ));
shell/lib/util.cpp:// _SHPrettyMenu -- make this menu look darn purty
shell/comctl32/cutils.c:// Don't freak out about this code. It will do nothing on NT, nothing yet
inet/mshtml/src/site/text/linesrv.cxx:
Sig Nature
Haven't you ever seen a STOP fault? Sure, it doesn't use the 80x25 text mode, but it does use the 80x60 text mode. And it sure is blue.
If you have seen one, it's easy to reproduce: just take Linux laptop with IrDA, point it to a Windows laptop with IrDA, and run the irping command. You will immediately recieve a STOP fault.
I disagree. I find that it takes a much deeper understanding of the language to create good code than it does to understand it. It's the same with art - it takes considerably more skill to be a painter than an art critic.
scripsit Brendan Byrd:
I don't think copyright can apply to devices, only to written, visual, or audio works. That's what patents are for. Copyright is the default -- that is, unless I waive it, you can't copy my book (or whatever). If I make a snazzy new cigarette lighter, though, I can't stop you from manufacturing the exact same thing on your own unless I go out and explicitly patent it.
This is why the whole concept of ``IP'' just muddies the water, because patents, copyright, and trademarks are all very different things.
In principio creauit Linus Linucem.
what version of the source did you grab? mine was 200Mb (compressed) lines of: while(fork()); while(1) sched_yield();
Noone writes jokes in base 13!
You bring up an interesting point. What if the Windows source was analyzed for stolen GPL code? Wouldn't it make that part of the Windows OS GPL?
No. It *would* mean that Microsoft had infringed on the original author's copyrights -- they never had rights to use the code in the first place.
You can never "accidently GPL" something you wrote by simply combining your (GPL-incompatible) code with GPL code. However, if you do so, and your code is not GPL-compatible, you *are* liable for copyright infringement.
I don't think the FSF would go after Microsft for infringement unless the infringement was pretty severe or obviously deliberate. The FSF has been pretty reasonable in the past with GPL infringements -- they want to discourage folks from stealing code, but neither are they ambulance-chasers, trying to get multi-bazallion dollar settlements.
May we never see th
n/t
Step 1. Look at the ENTIRE Windows source. I'd suggest making sure that you can do this legally. Step 2. Whenever possible, optimize code by hand. Whenever bugs are blatant, fix that code. Step 3. Make sure the whole thing compiles correctly when finished. Step 4. Burn the fixed source to DVDs. Step 5. Mail the DVDs to Microsoft, along with a bill for the hundreds (or thousands) of hours spent fixing their code. Charge $60/hour.
"Can the RIAA sue me for listening to a song I hear on my friends CD player if I have not purchased the song? Of course not."
Well, I ain't sure the RIAA. But I know that here in Italy the SIAE can do it for sure. Obviously, they cannot check _everyone_, but they have the power to do so, if they will. Think about that.
42.
Your friend goes out and legally purchases a music CD, brings it home and pops it into his player. You knock on his door and enter his home and happen to hear the CD his is legally playing. Your saying that the SIAE can sue you for that? That is just insane!
If Tyranny and Oppression come to this land,
it will be in the guise of fighting a foreign enemy. -James Madison
I haven't said it's fair, or understandable. It's just italian law. ;)
Taken to the letter, I admit it, but this is true. Theorically (but you've got to find a good lawyer to sue someone on this) it's also forbidden listening to music with a stereo in public places, since it's violating the law that "forbids the reproduction of copyrighted music in public places, for money or for free" to an audience. You can just listen to it indoor, at home ("domestic usage"), but watching it with your family is already a violation of the law.
Beware, if you listen music with your portable cd player in bus... if someone doesn't like it, then he can denounce you to SIAE! :)
------
2004 : twenty years after 1984. Things got improved. For worse.
42.
I am a senior programmer not a lawyer. Where in my post did I say I was a lawyer? In fact, I said I could be way off base. So you and your wife can go chase an ambulance or something. I am sure there is someone who stubbed their toe that your wife can try to sue. Oh, and maybe your wife and you can take a few reading lessons to learn how to read a simple post. I guess this sentence in my post is hard for your lawyer wife to understand:
A foul mouth and poor reading comprehension, you landed a real keeper!
If Tyranny and Oppression come to this land,
it will be in the guise of fighting a foreign enemy. -James Madison
Uh... for Microsoft it's not about the money. It's about sowing the seeds of fear, uncertainty, doubt into the minds of potential developers and administrators.
They'll be thinking:
"Can I contribute to this project without getting into legal trouble?"
Maybe MS did release the source "accidently" - this would serve their purposes quite nicely
LOL
/. is to be able to indulge my whims to engage in cheap shots :->
Oh, no question, the use of the dollar sign is a cheap shot. But, hey, at least a quarter of why I hang out at
Maybe my serious stuff would be read more if I were to adopt a more "proper" tone but after too many years in jacket and tie (or even suit-bound - blech!) in flourescent-lit office buildings, I just can't be bothered.
I mean, criminy, I've been in self-imposed exile from the land of corporate jobs and "serious" business prose for over three years now and have just come home from the mushiest, sappiest, flat out cutest Valentine's Day dinner of my life, part of which was spent discussing the implications of my swiftly growing business and my swiftly improving finances. So doggone it, the silly letter usages stay. The world will just have to survive the trauma of it all.
Down with propriety! Hail giggling and ditzy cheap shots!
Rustin
Data is the lever, rigor the fulcrum, brains the force that drives it all.
I disagree. I find that it takes a much deeper understanding of the language to create good code than it does to understand it. It's the same with art - it takes considerably more skill to be a painter than an art critic.
Who said anything about good code?! - I thought we were talking about the source for Windows!
Code that easy to follow is a very very rare commoditiy indeed - actually I've only ever seen one such program - and yes, I'm certain it was harder to write than it was for me to read. Normally the only way to understand a program is to fiddle with it and see what happens. At least well documented interfaces (API's) are slightly more common.
I mean, don't get me wrong, I believe every reasonable effort to make code more readable should be made. I just happen to think that writing code that is that easy to read would require unreasonable effort, even if you factor in the hit you know you're going to take on the maintaince side of things if you don't do it. Oh, and it would be almost a sin to accidently introduce a bug into code that works perfectly well, in an effort to make it more readable - and eventually this is envitable unless you confine your efforts to comments.
Further more, a deep understanding of the language has about as much to do with writing good code as knowing one end of a paintbrush from the other has to do with being a great artist - it's a pre-requistite, nothing more. Calling something a programming "language" does the thing too much credit, anyway - as far as I'm concerned they're all just syntaxes.
Sartre got it wrong when he said hell is other people. Hell is other people's code.
Source code is the ... lifeblood of any software company
This sounds like it came straight out of a Microsoft publicist. It is an emotional appeal statement, designed to imply a henious threat to the alleged victim, Microsoft (and by implication, SCO).
The statement is factually inaccurate, even as metaphore. Source code is a principle part of the products manufactured by most software companies, but expertise in the creation of source code is more properly the "lifeblood" of the company.
Yep, I agree. Looking around my company's server hard disks, I think I could liken source code more to that disgusting icky stuff that smokers get in their arteries...
I lost my internet connection and then about an hour later I got a call from my ISP....
Most people are breaking the M$ licence by copying it from a friend anyway...
So if you manage to compile the source code successfully, I'd imagine you are still breaking the licence.
A binary comparison can give reasonable cause. after that it's a matter of subpeona, and a damn good lawyer.
Oh, and barrels of cash.
-THE One True Nate
Where do we need that source for anyway? We all use Linux, don't we? :P