MS to Launch Paid Security Subscription Service

user24 writes "MSN reports that Microsoft 'is launching a subscription service aimed at providing better protection for the Windows operating system, which has been vulnerable to Internet attacks. Windows Live OneCare will protect up to three computers for about 50 dollars a year.' From the OneCare website: 'Windows Live OneCare works continuously, automatically, and quietly in the background on your PC, ever vigilant against threats but never in the way, allowing you to have fun and be more productive:'"

Instead of competing with Symantec,

[Drinking+Bleach]

Try fixing your operating system first.

Re:Instead of competing with Symantec,

[drsmithy]

Try fixing your operating system first.

Unfortunately, users can't be patched.

Re:Instead of competing with Symantec,

[flimflammer]

But you see if Microsoft fixed everything, they would be sued for unfair buisness practices by putting companies like Symantec out of buisness in the Windows world.

Re:Instead of competing with Symantec,

Unfortunately, users can't be patched.

There are Nicotine patches to stop smoking,
Birth Control patches for unwanted pregnancies,
so why not Microsoft patches to quit Windows?

Re:Instead of competing with Symantec,

[Scudsucker]

Unfortunately, users can't be patched.

Windows is a clusterfuck because of Microsoft's poor coding and design choices, not because of users.

Re:Instead of competing with Symantec,

[Fred_A]

Unfortunately, users can't be patched.

Actually Windows Live OneCare comes withe a trained MS Goon that whacks you on the top of the head whenever you do something stupid. That's the "live" part.

I didn't quite get the "allowing you to have fun" bit though.

Re:Instead of competing with Symantec,

[drsmithy]

Windows is a clusterfuck because of Microsoft's poor coding and design choices, not because of users.

Then how can it be possible to run a problem-free Windows installation simply by following a handful of common-sense pointers ?

Re:Instead of competing with Symantec,

[Mistshadow2k4]

[sarcasm] Oh, yeah, right it's ALL the user's fault. And *nix allows remote users to make changes to your system without your knowledge or permission whenever you're online too. And let's not forget that ton of Unix viruses that have made the internet nearly impossible to use because all the servers keep failing. And of course, *nix also requires a whole bunch of third-party software to secure it as well. Oh, and all OSes have browsers with Active X![/sarcasm]

Yes, a lot of users are stupid. But if the vulnerabilities weren't there in the first place there would be far fewer problems. If Windows was as secure as OS X -- and sorry, Apple fans, it's not as secure as some other *nix distros -- a virus would be a rare thing simply because it wouldn't have anything to work with. So, yeah, if they fixed it that would eliminate most viruses right there. Despite the stereotypes many would have you believe, there are a lot of Mac users who are just as clueless as the Windows user you're describing, but their systems haven't been compromised because the OS they're using isn't horribly insecure to begin with.

How to secure Windows by yours truly (hope this makes sense; I haven't had much coffee yet):
1. Firewall! Better still firewall + hardware router.
2. Anti-virus. I recommend Avast! for 2k and XP, AVG for 9x. If you want to pay for anti-virus, I've heard NOD32 is the best, with Kaspersky's coming in a close second.
3. Win Patrol prevents many changes fromt aking place without your permission; just scroll down the page for the link to download the free version.
4. If you're using Xp, get xpy which can disable a whole lot of Windows problems, such as the remote regsitry severice which allows remote users to change your registry whenever you're online -- yes, MS made it that on purpose and isn't going to fix it -- and Active X, Windows' most infamous security hole. You need to know what you're doing with this program though; if you don't, get someone who does to help you.
5. Be careful. Research *everything* you'd like to install. Check the program's ratings at download sites and do a search on the program's name with a good search engine.

Personally, though, I tend to think Winsdows is hopeless. Patches aren't enough, the system needs to be built from the ground up with much higher security. That means a lot of programs wouldn't even work after that. And would MS provide this as a free fix to all of their customers? Ha!

But speculation is useless. Microsoft is never going to try to really fix Windows; as successful as they've been already, why should they? Especially not when they can make money selling services to protect Windows! Never mind that they should've built a secure OS in the first place like practically everyone else did.

Re:Instead of competing with Symantec,

[tajgenie]

Though it can't be denied that these problems exist predominantly on windows and not on OSX, I agree that users are much the reason. I have no AV enabled, no firewall, no security or automatic updates or whatever enabled (though I have it installed in case). I have not gotten a virus or a single piece of adware in over 2 years (except once when I connected to my school network with the firewall disabled, which I never did again). Now I've left my computer alone for 10 minutes while I went to get cookies from across the house (no the house is not large; the cookies were numerous). I come back and my brother is using my computer, which is fine, except I have spyware all of a sudden. True story. Since the vulnerability is there, it *requires* that the user be able to defeat it, which sadly no one is capable of doing. Most users have a hell of a time recognizing that they are being attacked by adware and spyware; about as hard of a time an autistic might have determining facial expressions.

Re:Instead of competing with Symantec,

[Jesus_666]

How to secure Windows by yours truly (hope this makes sense; I haven't had much coffee yet): 1. Firewall! Better still firewall + hardware router.

Forget firewalls, at least for home networks. The only thing I rely on to make a Windows PC safe from incoming attacks is NAT. Put the box behind a NAT router and only forward ports when necessary. Bang, zero chance of anything getting in and it's relatively cheap, as well. It also makes firewalls (which sometimes tend to cause more harm than good) obsolete.

Re:Instead of competing with Symantec,

[Lord+Ender]

A router and a NAT/PAT device are not necessarily the same. A simple "hardware router" does nothing for security.

Obligatory

[MrNonchalant]

They've found the second step!

1. Build buggy OS full of security holes
2. Charge 50 dollars a year to fix said bugs
3. Profit!

Re:Obligatory

[Duncan3]

Hrm...

1. Build an OS that's so hard to use only geeks can use it
2. Charge 50 dollars for documentation/support
3. Profit!

Oh wait, that's Redhat ;)

Re:Obligatory

[deadgoon42]

ah.. Just when my mod points went away. I hope Dapper hurries up and comes out today.

Re:Obligatory

[cyanyde]

I think, this isn't the move you all think it seems to be. It appears what this move is designed to do is move into the software as service industry. You lay the ground work with an old beat up OS, release vista to the masses after it's initial 2-3 year pay-for software. Then you just throw it out there, and start charging people for upkeep and all those other things that happen. Microsoft is trying to remove liability from the actual software, to the maintence of something akin to free ware. Thats where the monies at because once they give you the drug, they just have to charge you rent on your house. Plus, it gives them license to keep up the whole DRM schitick, because they'll have the always on connectivity required for this sort of crap, which means they can constantly become the software police of the IP age. So, once again, i think ya'll being a bit near sighted, and I have to be all conspiratorial with my foresight.

Re:Obligatory

[strider44]

"So you want this car? Well it's only $20 000, but we need $10 000 per year to install locks and alarm systems."

What I want to know is if this perhaps has any guarantee that doesn't include anything along the lines of "it's totally your fault if our security fails. If someone breaks past our security then sorry but you're fucked".

Perhaps that's too much to ask.

Re:Obligatory

[femtoguy]

Actually, it's worse than that. What Microsoft has managed to do is to convince people that crappy software is the only kind. I am amazed at people's low expectation of computers. I mentioned the other day that I hadn't rebooted my PowerBook for 3 or 4 months, and the person I was talking to didn't believe me. I mean he considered it completely impossible that a computer could function for that long without a major crash. Worse Microsoft has conviced people that the computer, and the internet are the problems. To most people, Microsoft needs a security program, not because they write crappy software, but because the internet is a messy place, and the internet isn't a problem that Microsoft created. A good analogy may come from the auto world. People were quite happy to take their car to dealer every year to get the spark plugs replaced, because that was what you did to take care of cars. It wasn't GM or Ford's fault, it was just that spark plugs wore out. Then Toyota and Honds cam along with cars that could go 100,000 miles on a set of plugs. People realized that they had been duped, and voted with their pocketbooks. What we need is to show everybody we can that OS X and Linux just work better, raise their expectations from where they just assume crap (what an early computer writer called the Laverne and Shirlyification of the computer world) that doesn't work. Of course how to do this is a little tricky.

Re:Obligatory

[rbarreira]

On the other, Apple does:

1. Build hardware which is not always as great as everyone says
2. Charge 200$ for replacing a stupid button
3. Profit!

Re:Obligatory

[shippo]

It's Slashdot - EVERY analogy is a bad analogy!

Re:Obligatory

[operagost]

Nice jab at American automakers, Michael Moore, but the Japanese didn't invent long-life spark plugs. Electronic ignition and computers did a lot towards extending life. My 1976 Ford LTD had no computer-- just an electronic ignition module-- and I didn't have to change the spark plugs every year even though I usually put over 15,000 miles on it in that amount of time. But you basically have to use platinum plugs to get over 30K. That's not a Japanese thing-- it's the spark plug manufacturers, and while Ford and GM have their own house brands, you have big boys like Bosch and Champion who make that stuff for any car.

In search of the almighty $

[Admiral+Justin]

I gotta commend Microsoft, planning to make money of things that should be integrated into the system so that the threats never happen in the first place.

Prevention is less profitable than response, thus, they'll never try making a secure system now.

Re:In search of the almighty $

[notaprguy]

Can you say "double standard." If MSFT integrated this stuff into Windows and gave it away for free many people (but not you I'm sure!) would pull their hair out and complain that they're using their monopoly power to edge out competitors. In this case they're doing the right thing - offering a service that many people need and want and charging what (to this one person) seems a petty reasonable price. What's to bitch about?

Re:In search of the almighty $

[Gorshkov]

No double standard at all. Symantec et. al. exist only because of Microsoft's design/implimentation errors - they should not exist at all - there should be no market for microsoft to push them OUT of.

If microsoft started addressing the problem and making the changes that rendered 3rd party virus programmes unnecessary, I would not only applaud them, but I might even change my mind about being willing to even DEVELOP windows applications.

In 25 years as a programmer, I have never written a windows *anything* for a client, and never will. Because when the sucker crashes (and it will), will the client blame microsoft? No, they'll blame ME - and it will affect MY reputation.

When I write for Unix/Linux/QNX/VRTX/Anything the hell else, I can be pretty sure that if something goes boom, it IS my fault - and I should take the blame, and if it reflects badly on me, I deserve it.

I have no problems whatsoever accepting responsibility for my errors. But there is no f..king way in HELL that I am going to send a client a programme and have them call me once a week bitching about how it keeps crashing becase it's MY fault, when it's because the damned thing is running on an unreliable piece of shit.

Re:In search of the almighty $

[xazos79]

Riiiight, and there's absolutely nothing wrong with the OSes you spouted. I'd hate to bring you back to the real world champ... but its more likely that it *is* your app stuffing up rather than windows crashing. I've been writing apps for 6 years for all platforms and not once has my app crashed as a result of windows. If its crashed, its a bug that's escaped testing. Next time, get off your high horse because those of us down here can't hear you.

Incredible

[abscissa]

Only in the software industry, folks, can you buy a product and then buy another product to make the first product work. I suppose if you are making a bomb that could apply too.

Re:Incredible

[hackstraw]

Only in the software industry, folks, can you buy a product and then buy another product to make the first product work. I suppose if you are making a bomb that could apply too.

Batteries not included.

Re:Incredible

[Gorshkov]

There is a very major difference between a 10 year old washing machine needing repairs and parts replacements after good, solid service and use over a period of time, and having to have the Maytag Man show up on your doorstep once a week if you want to be able to do more than one load a month without having your clothes get caught in the gears.

....A little late?

[Kahless2k]

I used the OneCare beta for quite a while (actually a good product IMHO).. But the subscription service started at the beginning of the month... Slashdot is a little late in reporting it.. On a side note; I did stop using OneCare when I tried to pay for the subscription (reduced rate for beta users) only to see (for the first time) U.S. Only, with international support at some point in the future (a year?). Anyways.. my $0.02

The Microsoft Car

[elwin_windleaf]

In other news, the Microsoft automotive line was revealed today. The cars run great when they run (which is occasionally) and come with an optional $50 annual subscription fee that provides seatbelts, a windshield, and doors.

Re:Odd, isn't it?

[SnotBob]

It's a little like Apple trapping you in their shiny new glass elevator and then trying to sell you an iPod so they will let you leave the store in under two hours. Wait...that would never happen.

Vista won't be better

[mincognito]

As you can see from the site http://www.windowsonecare.com/ they are offering antivirus, antispyware, firewall, performance tune-ups, and data backup and restore. At least 3 of those are dependant on their windows OS deficiencies.

It's obvious that they wouldn't be launching this service now if it won't also be needed for Vista. This was basically the last reason i needed to switch over to a Mac.

Re:Vista won't be better

[mincognito]

Your not honestly going to say that you don't think that antivirus / antispyware is a good thing to have on a machine used by the type of person who will click OK to everything they see?

The point is, if the OS was secure in the first place, antivirus/antispyware wouldn't be needed.

A firewall is useful on any system (not just Windows)

But why should i pay extra when other OSs offer full-fledged firewalls built-in?

anyone storing data on their machine and NOT doing some kind of data backup (at least for the important data) is crazy

Yes. But that doesn't explain why sane people should pay $50 a year for onecare.

As for the performance tune-ups, it really just puts the common tools into one place (defrag, clear temp files, etc)

According to the site 'permance plus' automatically runs defrag, etc. for the user once a month. Not sure how this improves on a simple "scheduled task" either...

My original point was that most of what is being offered are dependent on OS deficiencies (i.e. of no value to linux/os x users even if written for those platforms) and the features not dependent on those deficiencies (e.g. automated backup) certainly aren't worth $50 a year.

Re:Vista won't be better

[I'm+Don+Giovanni]

The point is, if the OS was secure in the first place, antivirus/antispyware wouldn't be needed.

It's funny that slashdotters like to think of themselves as smarter than everyone else, more "tech-savvy" than everyone else, yet they make such idiotic statements like the above with regularity. And some idiot modded the above statement as "Insightful", further damning slashdot's rep. LOL

Spyware generally doesn't rely on OS insecurity.
Viruses generally don't rely on such either.
Trojan horses almost never rely on OS insecurity.
For those that do rely on OS insecurity, Microsoft will continue patching OS insecurity for free with Windows Update (just as Apple does for Macs). For malware that doesn't rely on OS insecurity, anti-malware software (such as Microsoft's OneCare offering) exists.

Where's the Justice Department when you need them.

[FlatCatInASlatVat]

When auto companies sell defective cars that will injure or kill or even just break down, they are REQUIRED to do a recall and fix them for FREE. When Microsoft sells a completely defective operating system that allows data theft, invasion of privacy, extortion and wholesale hijacking of the internet, at a cost of billions of dollars, they get to charge more money for the fix. The arrogance and irresponsible behavior toward the customer is breathtaking. Why are lawyers not lining up for the class action suits?

Geeze Mistah

[Marko+DeBeeste]

Dat's some awful pretty data youse got dere. Me an' Lefty would be heartbroken if sumthin wuz to happpen to it, huh Lefty? Maybe youse is need some prtection insurance?

Wrong analogy

[Mostly+a+lurker]

Microsoft releasing operating systems with inadequate security is not comparable to repair of products that deteriorate through wear and tear (the software equivalent for that is such tools as defragmenters or registry cleaners). It is much more analogous to selling a car with a faulty brake system. Then you buy a separate braking system from another company. The problem with that is that this secondary braking system is not built into the fabric of the car. Thus, it leads to handling problems, will sometimes conflict with the original faulty braking system, and will occasionally even fail to stop the car when needed. The solution is to produce a car that has a properly designed braking system in the first place.

Re:Wrong analogy

[drsmithy]

User error is a very important source of security problems, but your statement goes way too far.

No, it doesn't.

I repeat: anti-spyware and anti-virus software aren't there to protect you against "inadequate security". They *may* do this as a side effect, but it is not their purpose.

I suspect you have not extensively used Internet Explorer on a user with administrator rights (MS Windows default) to browse the Internet.

No. Nor would I ever consider doing it.

If you had, you would have collected spyware without agreeing to install anything.

Undoubtedly. But this would be due to software bugs (and, arguably, bad UI), not "inadequate security" - not to mention the foolishness of browsing the web with a high-privilege account.

With Windows XP (original release, no SP 1) just connecting to the Internet from a user with administrator rights, without a firewall, is enough to be infected by worms within a short time.

As is installing many Linux distros and commercial unixes from the same time period. Again, you are largely describing problems caused by software bugs, not "inadequate security". I will agree that the firewall should have been enabled by default from the first release of XP and that services shouldn't be binding to external network interfaces by default - but even without that, all those remote exploits are coming from *coding errors*.

OS-level security - which Windows NT has in spades - can protect you against some aspects of malicious code. However, it cannot protect you against all, or even the most common, aspects of malicious code. That is what anti-spyware and anti-virus software is for.

Re:Wrong analogy

[I'm+Don+Giovanni]

You miss the point.
Microsoft is still fixing real "OS security problems" for free via Windows Update.
Anti-malware (e.g. spyware, viruses, etc) is designed to thwart malware that doesn't necessarily rely on OS security problems (which, I repeat, will continue to be fixed for free via Windows Update).

Re:Wrong analogy

[Tom]

Again, you are largely describing problems caused by software bugs, not "inadequate security".

You make a differentiation without merit, except for pure academic theory maybe.

Most security problems are software bugs. The fact that it is very hard to write bug-free software with current tools, technology and methods is one of the main headaches of the security people. I am one. Buggy software and users are what I am most worried about, in this order. False policies, configurations and errors in concepts and methods come way after those.

Its Microsoft Update infused with .Mac

[tecker]

I figured out what OneCare is (aside from a really bad name). Take Spybot Imunize function combied with Microsoft Updates packages, add Rebranded Antispyware and Antivirus, and clone in .Mac.

If you look at the features most of those come standard with OneCare and the windows equal.

• "Two Way" Firewall == Windows Firewall
• Deframent == Disk Deframenter
• Frees up hard disk space == Disk Cleanup
• Tracks updates for Windows XP and other Microsoft programs == Microsoft Update

50$ a year for a Fancy All-In-One gui to your basic windows programs sound like a lot to me. Doesnt even backup to an remote backup server. Sadly Mac suckers (em, users) have been paying for years, Redmond is catching up and getting in on the action.

Re:Its Microsoft Update infused with .Mac

[hexdcml]

Infused with .Mac? Have you ever used .Mac? This is a completely different kettle of fish.

.Mac is an Internet services package that once upon-a-time included Antivirus, but now it doesn't. However, it does offer remote backup (1GB), one-click homepages from iPhoto/iWeb, one-click Podcasting (GarageBand) as well as acting as a IMAP mail server and sync server so that bookmarks, system preferences, application preferences, calendars, contacts and bookmarks remain sync'd across multiple Macs.

In short, It isn't anything like OneCare.

www.mac.com is the place to go and get educated.

Re:You know.

[Firehed]

Not to be nitpicky and flamebait-ey, but Apple's got holes too, hackers just don't care about them. If it's 50/50 between MS and Apple (yeah, yeah, Linux, I know), you can expect that Macs will be targets too. Something tells me that the [generic mean people] aren't out to prove a point about Microsoft and Apple/*nix, they just go after whatever's easiest. As OSX is Unix-based, I'd imagine finding security holes would be considerably easier should one be looking to do so.

Two Quotes

[Dracos]

"There's a sucker born every minute." Widely and falsely attributed to P.T. Barnum.

"A fool and his money are soon parted." Thomas Tusser.

MS is apparently hoping that lightning will strike twice in millions of places.

They've said repeatedly that Vista will be the most secure Windows ever, so why would Vista need any additional security software, from the creator of the OS or a third party? Obviously, the answer is that Vista isn't secure, and MS already knows it. They've even thought of a way to turn Vista's lackluster security into a secondary revenue stream.

To which the suckers and fools will gladly contribute.

Re:We've known the second step for ages.

There are many of us who have known the second step for ages: What do we do? We use Linux.

Spent the entire day dealing with the CFO's laptop - one of those that happens in a Fortune 100 company on occasion. XP on a Dell decided to stop handling IP - Outlook would seize, IE and Firefox were hosed. Other than a rebuild, the system was screwed. Whole damn thing was tired. Typical fscking Microsoft "This system is more than 2 years old - I'm ready to die" crap. As if SOX regulators thought that way.

Interestingly, the CFO asked about my teams laptops and what we use in the security dept. to make sure things run, Sarbanes Oxley auditors stay off our asses, etc. "Ah... that Linux stuff again, huh?"

Yea. Linux made the auditors go away happy, in spite of all the Windows nightmares. Tell me Microsoft isn't ready to fall and I'll invite you into any SOX-regulated shop that knows better. Run, don't walk.

The moment Linux can handle desktop apps, Microsoft is the next Osborne.

Surprise!

[babbling]

This may come as a surprise to you, but most viruses exploit flaws in Microsoft software to spread themselves.

Microsoft's initial product is defective, malicious people take advantage of the defects to create problems for users, Microsoft then charges users to remove the problems that their defective software allowed for in the first place.

Who you blame for viruses is debatable, but there's no doubt that Microsoft have a conflict of interests problem if they start selling virus scanner software. If they make their OS too secure, eventually they will kill the need for their new virus scanner product.

The fact that they intend for this service to be used mostly with Windows Vista is proof that they expect Windows Vista to have flaws for viruses to exploit.

Re:This is insane!

[westlake]

Back in college, I would have LOVED to have proposed this in a marketing class. While I never took a marketing class...

If you had taken the class, the instuctor would have pointed you towards the maintaince and service contracts that have been part of the consumer marketplace for over one hundred years. He would have reminded you that Windows has ninety-five percent of the home market and self-service Linux less than three.

place your bets here....

[lon3st4r]

alright.. alright.. simmer down..
no rushing.. no rushing
place your bets here.. place your bets here..

Today's bet: When will MS bring out another paid service to make sure their Windoze Live OneCare service works as expected?

* lon3st4r *

Sure they can

[SuperKendall]

Unfortunately, users can't be patched.

Sure they can - I slap a Mac on 'em. Then they can't click on anything stupid because there is nothing to click on yet that causes harm.

Yes there could be - but it's hard to ignore the plain fact that there isn't.

Like all patches, it may not last forever but it does fix the immediate problem.

Re:Sure they can

[0racle]

nothing to click on yet that causes harm

Make it sufficiently profitable and that will change in a heartbeat. There have been exploitable problems in OS X, its not like it's impossible to do. Moving to OS X and staying an idiot user fixes nothing, it delays the inevitable for a bit.

This is excellent

[Infonaut]

Microsoft just gave Linux, MacOS X, and the BSDs a nice, juicy marketing point. There's no need for the DOJ on this one. Microsoft is shooting itself in the foot by coming out and saying that their product simply isn't usable out of the box. If I were RedHat or Novell, I'd jump all over this. I can picture the ads now: "So I need to pay another $50 EVERY YEAR just to keep my computer from getting trashed by viruses? Thanks, but no thanks, Microsoft!"

Re:This is excellent

[ElleyKitten]

Time to be bitchslapped back to reality. Linux is not ready for the masses just because you can use it.

It's a lot closer than you imagine. My friend uses Linux (Mepis, specifically) and I don't think she even knows what the command line is. And no, I didn't spend hours configuring it for her, she installed it herself and didn't need to do any configuring because it automatically recognized her hardware and came with mp3, DVD, etc support. My mom used my Linux box and is jealous because all the silly puzzle games she buys for $20 a piece are available for free with Ubuntu. I'd give her Linux, but her computer is used for telecommuting with her job, so I really can't.

Linux is great for home use and is getting better all the time. It's problem is that people don't know that. However, and more and more users get fed up with viruses and Windows and whatever, they will take the time to find out.

They should be allowed to charge for this

[Cannelloni]

While it's good that MS is trying to improve the poor security and reliability record of Windows, they shouldn't be allowed to charge for something that should have been fixed more than ten years ago at the system level.

As a Mac OS X user, I am not troubled by things like that, and I cannot be bothered with Windows, but I would be equally upset if Apple one day decided to CHARGE for security features! But they again, that would not be Apple's style, would it?

Same with Linux companies. They would never charge you for basic secrity, because a) it is built-in into the OS and b) a move like that would severely hurt the credibitity of the company.

So, in sum: shame, shame on you, Microsoft. You are a poor excuse for a technology company. You have NO credibility left in this world.

Re:They should be allowed to charge for this

[argent]

But most malware nowadays doesn't rely on OS flaws, but rather user foolishness (downloading trojans from warez sites or P2P, clicking on malware email attachments, etc).

The fact that just clicking on an attachment or a link... not even downloading and opening it... can execute malicious code locally is a fundamental design flaw in one of Microsoft's flagship operating system components... the HTML control. Remember, Microsoft went to the wall with the Department of Justice to avoid having this removed from the OS, even risking splitting the company up rather than splitting up the HTML control into multiple components.

And I guess that was smart. If they hadn't left this criminally incompetant design stand, they wouldn't be able to charge for a security service now.

But don't for one minute think that it's all just social engineering and people being tricked into opening malware.

People can actually learn not to be socially engineered, I've seen it happen... for the decade and a half I was a system administrator for a Windows network I never once had someone come to me twice with a tale of being tricked into downloading a virus and launching it from their desktop or the command line.

Computers, though, don't learn. I've had plenty of people infected through Outlook, Internet Explorer, and other programs that use the HTML control over and over again.

That's not "user foolishness". That's "OS flaws".

Al Capone style protection?

[Vo0k]

Pay us and we will protect you from ourselves?

Most (all?) antivirus companies have extremely harsh policy against employees writing viruses or other malicious code the software is to protect from.

What is there to stop Microsoft from putting a bug here, a hole there, purposedly, and "discover" it half a year later just to prove how essential the subscription service is to security of a company?

Re:Actually, A Secure OS Does Prevent Malware

[krunk4ever]

so how does the OS distinguish between malware vs non-malware? If the user is dumb enough to click install w/o knowing fully what he/she is doing (about 90% of how all malwares are installed these days), in the end, what you have is a compromised system.

IBM does it better

[SmallFurryCreature]

1. Build an OS that's so hard to use only geeks can use it
2. Charge 50.000 dollars for documentation/support
3. Profit!

Love those mainframes.

yup

[goldcd]

I have a few windows machine.
One - a 2003 server has never crashed - as I mainly leave that happily running Apache, mailserver etc.
One - my big beast has bouts of flakiness - everytime it's down to a flakey driver for some obscure or cutting edge piece of hardware. (a problem MS has attempted to address with signed/unsigned drivers).
Now if a company produces a buggy driver for Windows, you can usually be pretty sure they put even less effort into the linux one (if they bothered at all).

In my country

[this+great+guy]

<<
Unfortunately, users can't be patched.
>>

In my country, we patch them regularly.
- Vladimir

It's a protection racket

[infinite+undo]

Check out the description of "protection racket."

http://en.wikipedia.org/wiki/Protection_racket

How is what Microsoft is doing any different?

Support? From Microsoft? FREE?

[argent]

My first support experience with Microsoft set the stage for later encounters.

This was my first NT domain. Upgrading from NT 3.1 to the newly released NT 3.51.

Microsoft changed the licensing mechnism in 3.51. I don't recall the details now, but the result was that my network of ~100 PCs was having itermittent login problems. It was annoying, but we were able to live with it while I figured it out.

I called Microsoft, they made some suggestions, we went around a couple of times trying things, and on the third call they suggested it might be licensing and suggested I try making some changes to the licensing settings and call them back.

The changes completely broke the network. Nobody could log in. I called them back. "I'm sorry, you've used up your three free support calls for a new install. You'll have to buy a support contract..."

They wanted me to PAY for the damage THEY had done?

I went ballistic at them, and did what I should have done in the first place... went to my free software support ... Usenet newsgroups. The kind of free software support you get for Linux. And was back up and running in a couple of hours.

A week later I got a call from some muckymuck at Microsoft offering me another three free support calls. I'm afraid I got a mite sarcastic with him.

Since then, well, there have been exceptional brief bright pockets of clue (the Pocket PC group when Derek Brown was there, Windows Services for UNIX after they bought Softway Systems, ...), but this has been my usual experience with Microsoft Support.

Paying someone else for support on Microsoft products is much more cost-effective.