Slashdot Mirror

← Back to Stories (view on slashdot.org)

Microsoft Says Vista Most Secure OS Ever

Posted by ryuzaki0 on from the that's-evar dept.

darryl24 writes "Microsoft senior vice president Bob Muglia opened up TechEd 2006 in Boston Sunday evening by proclaiming that Windows Vista was the most secure operating system in the industry. But a bold statement can only go so far, and much of this week's conference has been spent reinforcing that point. Microsoft also acknowledges that nothing is infallible when it comes to computer security. In turn, the company has employed black hat hackers for what is called a penetration, or pen, test team."

34 of 440 comments (clear)

  1. MS Airforce Attacks OpenBSD Leader, Servers by Saint+Aardvark · · Score: 5, Funny

    CALGARY (ADP) - In a stunning development in the open source movement, the OpenBSD project, led by developer Theo de Raadt, was bombed and strafed by a hitherto-unknown air force belonging to private software corporation Microsoft (NYSE:MSFT).

    de Raadt's home, and the University of Alberta data center holding the OpenBSD CVS servers, were attacked nearly simultaneously. Though the attack only lasted fifteen minutes, it left hundreds of innocent Windows users injured.

    Canadian Prime Minister Stephen Harper has sent a "sharply worded" protest to the United States government.

    Shortly after the attack, Microsoft has released a publicity photo of Bill Gates, standing on the deck of the USS Abraham Lincoln, underneath a banner saying simply, "Mission Accomplished."

    Free Software Foundation founder Richard Stallman could not be reached for comment. Sources close to Stallman said he was "somewhere underneath Cheyenne Mountain, importing the OpenBSD source tree into the Hurd."

    --
    Carousel is a lie!
  2. Maybe true today, but by SIGALRM · · Score: 4, Insightful
    Vista is the most secure operating system in the industry
    Of course it is... virtually no one is using it yet. While Vista is obscure, it follows that there will be little exploitive effort.

    As always, future history is yet to be written--although it tends to reflect and repeat the past.
    --
    Sigs cause cancer.
  3. The Slashdot Criteria by eldavojohn · · Score: 5, Interesting
    From the Slashdot FAQ:
    Slashdot gets hundreds of submissions every day. Every day our authors go through these submissions, and try to select the most interesting, timely, and relevant ones to post to the homepage.
    Or, as in this case, any story with a headline that will start an instant flame war.
    --
    My work here is dung.
    1. Re:The Slashdot Criteria by Infonaut · · Score: 5, Funny

      Or, as in this case, any story with a headline that will start an instant flame war.

      Hey, it works for Dvorak. Why shouldn't it work for Slashdot? ;-)

      --
      Read the EFF's Fair Use FAQ
  4. Meanwhile... by Tweekster · · Score: 3, Insightful

    Those blackhats are just making notes of the real vulnerabilities while reporting simple superficial ones.

    --
    The phrase "more better" is acceptable English. suck it grammar Nazis
  5. Re:Microsoft + Stupid Claims = ... by TripMaster+Monkey · · Score: 4, Funny


    Of course it's the most secure OS ever. No one can compromise an OS that hasn't even been released yet.

    --
    ____

    ~ |rip/\/\aster /\/\onkey

  6. Depends on the definition. by jcr · · Score: 3, Insightful

    If the "industry" he's referring to is "the MIcrosoft operating systems industry"...

    -jcr

    --
    The only title of honor that a tyrant can grant is "Enemy of the State."
    1. Re:Depends on the definition. by kfg · · Score: 3, Insightful

      I am more curious about their definition of "secure."

      Secure against whom?

      KFG

    2. Re:Depends on the definition. by jcr · · Score: 5, Interesting

      Secure against whom?

      The user, probably. ;-)

      -jcr

      --
      The only title of honor that a tyrant can grant is "Enemy of the State."
  7. Well, I suppose in the end, it *is* secure... by soren42 · · Score: 5, Funny

    So, it's the most secure operating system ever... and from my use of the beta, I might be tempted to believe that. Here's an example of that "security": *insert CD*
    "You've just inserted an insecure piece of removable media. Are you sure you want to proceed?"
    *clicks yes*

    *launches Internet Exploiter*
    "You are attempting to connect to the internet. The internet is a very insecure place. Are you sure you want to do?"
    *clicks "Yes"*
    "Are you really sure? I mean, there are viruses out there on the internet. Do you know what a virus is? I mean, this stuff can really mess your computer up! Are you absolutely sure you want to connect to the internet?"
    *clicks "Yes"*
    "Oooooh, sorry - you don't have sufficient privileges to connect to the internet. Contact your Administrator or type your Administrator password now."
    *types password*
    *connects to internet*
    "You are attempting to send an IP packet over an unsecured interface. This is how viruses get on your computer. Are you sure want to send this packet?"
    *sighs* *clicks "Yes"*
    *beep beep beep* "USER ALERT: Your computer has received an unsecured packet from the internet! This packet could be part of a virus! Are you certain you want to allow this packet into the application for processing?"
    *clicks "Yes."
    "You are attempting to send an IP packet over an unsecured interface. This is how viruses get on your computer. Are you sure want to send this packet?"
    *sighs* *clicks "Yes"*
    *beep beep beep* "USER ALERT: Your computer has received an unsecured packet from the internet! This packet could be part of a virus! Are you certain you want to allow this packet into the application for processing?"
    *kicks computer*
    *installs Linux/BSD or buys Mac*
    VERY secure, indeed.

    --

    "Adventure? Excitement? A Jedi craves not these things."
    1. Re:Well, I suppose in the end, it *is* secure... by Anonymous Coward · · Score: 3, Informative

      This may seem like a joke but I spent an hour trying to install a Flash active-X plugin on IE in XP_64 running as Adminstrator and finally gave up. The series of prompts from the OS were painfully close to the scenario presented in this "joke" post.

    2. Re:Well, I suppose in the end, it *is* secure... by Hinhule · · Score: 3, Funny

      I think that is just a big cover for the fact that they have not been able to complete TCP/IP support.

  8. Acronyms by linvir · · Score: 5, Interesting

    I noticed in this article that they're treading on our acronyms.

    SDL - Security Development Lifecycle
    Relatively inconspicuous. Simple DirectMedia Layer has nothing to fear from this in terms of mindshare. But then again, they knew that SDL was in use. Why not show a bit of cooperation?

    RMS - Rights Management Something
    This one is amazing, because it's basically DRM named after Richard Stallman. Someone at Microsoft either has a sense of humor, or is a complete prick. I really doubt that this was accidental.

    It's superficial, but I think both examples are very symbolic.

    1. Re:Acronyms by Tim+C · · Score: 5, Interesting

      Treading on "our" acronyms?

      I'm sorry, but rms has meant "root-mean-square" to me for about 15 years, or roughly 8 years longer than I've known about GNU or Linux, and it's meant that to mathematicians for a lot, lot longer than that.

      Since when does anyone "own" an acronym? Talk about overly touchy...

      --
      It's official. Most of you are morons.
    2. Re:Acronyms by colinrichardday · · Score: 3, Funny

      Is it a disk operating system or a denial of service?

      In the case of MS-DOS, both.

  9. Hold The Font Page! by NickFortune · · Score: 4, Funny

    In other news, Kellogs say Corn Flakes "taste nice". Film at eleven.

    --
    Don't let THEM immanentize the Eschaton!
  10. Black hat? by gcnaddict · · Score: 3, Insightful

    Arent the white hat hackers typically the ones employed for legitimate jobs such as this? Now I'm confused :-s

    Could someone explain the difference between the two so I can make sure I didnt screw up?

    --
    Viable Slashdot alternatives: https://pipedot.org/ and http://soylentnews.org/
    1. Re:Black hat? by maxwell+demon · · Score: 4, Insightful

      Imagine you are a black hat hacker, and are asked to evaluate the security. Wouldn't you be very tempted to keep silent about a few security problems you found, in order to exploit them later?
      What would you think if an airport employed terrorists as security personnel because they know better what to look for?

      --
      The Tao of math: The numbers you can count are not the real numbers.
  11. Similar Headlines by Billosaur · · Score: 4, Funny

    * White Star Lines Pronounces Titanic "Unsinkable"

    * Hindenburg Safest Way To Fly

    * Ford Pinto Named Safest Car For 1973

    --
    GetOuttaMySpace - The Anti-Social Network
  12. Which just goes to prove... by BearRanger · · Score: 3, Funny

    That not even Microsoft's air force can shoot straight.

    The University of Alberta is in Edmonton.

  13. Re:can't break what you can't see!! by syntaxglitch · · Score: 3, Funny

    That leaves Vista a very close second then, doesn't it? ;)

  14. No they are speaking the truth by SmallFurryCreature · · Score: 4, Interesting
    It was their most secure OS ever, right up to the point that WMF bug was exploited and Vista was found to be just as vulnerable as every other windows version.

    Claiming Vista to be the most secure OS ever when it has already had a security flaw is just insane and tells us that MS still just don't get it. Or maybe they do get it. After all they make billions. It is sad but lying to the gullible pays better then telling the truth to the clever. There are just so many more gullible people. Last count about 6 billion.

    --

    MMO Quests are like orgasms:

    You may solo them, I prefer them in a group.

  15. Black hat?? Come on guys. by TheDarkener · · Score: 4, Informative

    "...the company has employed black hat hackers...

    By definition, if you employ hackers to test an operating system, they are NOT "black hat" hackers - they are, at best, "grey hat" hackers.

    Definition from Wikipedia:

    Usually a Black hat is a person who maintains knowledge of the vulnerabilities and exploits they find as secret for private advantage, not revealing them either to the general public or the manufacturer for correction.

    --
    It is pitch black. You are likely to be eaten by a grue.
  16. I declare the Vega class starship the fastest ever by Weaselmancer · · Score: 4, Funny

    And it's not shipping yet either.

    --
    Weaselmancer
    rediculous.
  17. Re:Open BSD users everywhere... by Winterblink · · Score: 4, Funny

    "Falling out laughing"?? Are all you BSD users *that* overweight? :)

    --
    "I'm a leaf on the wind. Watch how I soar."
    -Hoban Washburn
  18. Re:Microsoft + Stupid Claims = ... by Aladrin · · Score: 4, Informative

    Actually, 'release' isn't a magical point where an OS becomes hackable. There's PLENTY of beta copies of vista out there if hackers wanted to play with it.

    They haven't told us about any exploits they've found, but some crackers hold their exploit until the day of release and use it on retail, instead of beta. This allows them a '0-day release' that would be impossible otherwise for something with this much 'security'.

    --
    "If you make people think they're thinking, they'll love you; But if you really make them think, they'll hate you." - DM
  19. In Similar News... by mugnyte · · Score: 4, Funny

    3D Realms declared today that "Duke Nuken Forever" is The Best Game Ever! With an incredible non-linear storyline, incredible learning AI across games, outrageous low-lag multiplay, both 1stP and ortho views - and runs on a standard gaming machine! Published with a complete set of of level-making tools and start-of-the-art texture and atmosphere effects, Duke Nuken Forever is set to be the most played game ever.

    3D Realms gave a presentation of the all the features that will help Duke keep the number one spot in the market. It also outlined the TV channel, movies series and theme park spun from the elements of the game.

    Check it out!

  20. Microsoft + Stupid Claims = ... by Fuzzball963 · · Score: 5, Funny

    Are you sure about that ? this IS Microsoft after all ;). If anyone can compromise an OS surely it's them.

    --
    "The boy is dangerous, they all sense it, why can't you?"
  21. Re:This doesn't work. by B3ryllium · · Score: 3, Funny

    By your logic, Windows Millennium Edition is actually more secure than all other versions of Windows.

    Combined.

  22. Re:Microsoft + Stupid Claims = ... by justsomebody · · Score: 5, Funny

    Nah, no trouble here. Just look at their equation.

    1. They made PR claims about .NET being made to be crossplatform. But in reality their implementation is not even Winplatform.
    2. Based on 1. only Windows exist.
    3. MS was bitching about computer without OS, meaning Linux and others in their eyes are not OS
    4. Based on 4. Windows is the only OS
    5. So this will be most secure Windows ever.
    6. In MS eyes 2. and 4. equals to most secure OS ever.

    --
    Signature Pro version 1.13.2-3 release 83.5 beta3try7 after-breakfast edition
  23. Re:This is laughable by DeadChobi · · Score: 5, Insightful

    Oh, wow. So they're going to top Vista off with being MORE ANNOYING than Windows XP? You mean I'm actually going to have to be prompted every time I want to do something? There'd better be a way to turn this off or I'm never going to buy a copy of Vista.

    It's bad enough to be prompted every 15 minutes for a restart after I've installed updates, EVEN IF I AM IN THE MIDDLE OF SOMETHING. Yes, Windows will pull me out of full-screen just to tell me that it has finished installing updates. To top it all off, I wont be able to browse the internet or insert CDs without some twat at Microsoft building the program to assume that I dont know what the fuck I'm doing with my computer? Sounds like a brilliant security strategy. Piss people off enough so that they never use your OS.

    That kind of treat-you-like-you're-stupid shit is what makes me dread installing updates. I dont give a shit that I need to restart to install updates. Windows has waited for weeks for me to restart, and I dont need the constant nagging while it's waiting. Let me know when Vista has had its obligatory "dont treat me like I'm a mindless twat computer user" update. Then I'll get it.

    --
    SRSLY.
  24. bummer of a birth mark... by slashname3 · · Score: 4, Insightful

    Microsoft just painted a huge bullseye on Vista. If the hackers were not interested in spending time finding exploits they will now. Waving red flags and yelling watch this are things you should not do unless you know for sure the bull is in the other corral or that you are an expert at the stunt you are about to try and pull. Microsoft is in the same corral with the hackers and they are not experts on OSes based on past performance.

    From my favorite FarSide cartoon: Two deer standing in the woods, one has a bullseye on his chest, the other one says, "Bummer of a birth mark Hal."

  25. Re:Microsoft + Stupid Claims = ... by Foofoobar · · Score: 4, Insightful

    And oddly enough, exploits were already found that affect XP as well as VISTA. But since Vista isn't even out yet, they don't have to patch anything.

    Honestly, I think Vista is their Titanic and they just solidified this feeling by claiming that it's 'unsinkable'

    Ahoy! Iceberg ahead...

    --
    This is my sig. There are many like it but this one is mine.
  26. It's True! by ch-chuck · · Score: 4, Funny

    I just tried to rdesktop to my Vista installation from Linux, and instead of allowing a remote 'hacker' access the system, it bravely BLUESCREENed. Imagine an OS so secure it would rather self destructs than allow an intruder. Now that's a secure OS, yes indeed.

    Tip: You must update to latest cvs of rdesktop, something about key size.

    --
    try { do() || do_not(); } catch (JediException err) { yoda(err); }