Slashdot Mirror

← Back to Stories (view on slashdot.org)

Symantec Updates Cause Chaos in China

Posted by CowboyNeal on from the trust-in-trust dept.

Hello Kitty writes "According to Computerworld, a signature update to Symantec's anti-virus software has knocked out thousands of Chinese PCs. Apparently the latest update for the AV component of the various Norton packages mistook two system files in the Chinese edition of Windows XP SP2 for the 'Backdoor.Haxdoor' trojan. Piracy issues may complicate recovery, since once the updates are installed Symantec says the only hope for reviving an affected system is to re-copy the affected DLLs from the Windows restore disks. Everyone has their official restore disks handy, right?"

11 of 266 comments (clear)

  1. Time for a Change by Thumper_SVX · · Score: 4, Interesting

    Sounds to me like it's time for a change. The Chinese have already demonstrated that when something from Western corporations runs amok they are quite willing to force a change on their people. I'm not saying it's right, it's just so.

    Now, this problem has actually highlighted a bigger problem; that Windows is Western software controlled by Western interests. Even the ancillary software you need to run Windows effectively (read: anti-virus) is from third parties in the West who obviously wouldn't necessarily have the desires of the Chinese government in mind. Now, at best I can see the Chinese government is going to realize that their reliance on Western anti-virus solutions may be a flawed dependency and they will write their own Chinese-specific AV solution. At worst... this might just highlight to the Chinese government how vulnerable they are to a "cyber attack", either malicious or accidental that could potentially cripple them.

    Microsoft might want to start "spinning", and quick. Chinese people are well aware there are better solutions out there than Windows for an operating system. It's only a matter of time before someone in power starts talking about "Red Flag Linux" and how it's openness can help prevent problems exactly like this... then it's all over for Microsoft in that market.

    Yes, I realize the pirated Windows market is huge in China as well... but it's still a massive market for Microsoft to lose because of the accidental actions of one of their "trusted third parties".

  2. In Soviet China... by 192939495969798999 · · Score: 1, Interesting

    In Soviet China, EVERYONE has "official restore" disks.

    --
    stuff |
  3. Re:windows CDs by HomelessInLaJolla · · Score: 2, Interesting

    I avoided prepackaged computer systems throughout the 90s for precisely that reason. Knowing the state of software copyright laws at the time, if I wasn't going to receive a full backup copy of all the software necessary to restore the system from ground zero then I wasn't interested in the system. That said I did have to make a few long distance phone calls to USR to be given a dial-in BBS number to download updated drivers for one of their 56k modems. Generic drivers only worked to 2400.

    I saw it as a travesty when the computer industry offloaded millions of systems between '94 and '00 with little or no factory backup disks. I was even less amused when companies began shipping restoration image disks which only worked if the (usually flawed) software on the disk determined that the system needed to be restored--and usually did so without any consideration paid to settings which had been customized by the user after the system was shipped.

    --
    the NPG electrode was replaced with carbon blac
  4. Only problem is by Maxo-Texas · · Score: 4, Interesting

    the pirated versions of windows I ran (win2k), I had full install disks.
    the oem versions (win98, winxp, winxp) I bought at best buy and other places, my only option is to wipe everything and reinstall.

    So, I would be screwed on the machines where I am a legitimate paying customer, and hunky dory on the machines where I was pirating.

    --
    She was like chocolate when she drank... semi-sweet at first and then increasingly bitter.
  5. What if they're right? by Anonymous Coward · · Score: 1, Interesting

    [dons tin-foil hat]
    What if they weren't really false alarms, and there really is a back-door in those DLLs? Isn't it a little suspicious that only the Chinese version was affected? Obviously what happened is that someone convinced Microsoft to add a back door into the Chinese version, and then, since Symantec didn't test against the Chinese version of windows, it wasn't on Symantec's white list.
    [removes tin-foil hat]

  6. Re:Pity the poor choices of consumers... and pirat by Dystopian+Rebel · · Score: 5, Interesting

    What does any of this have to do with good design? Are you serious? The whole AV software market is a crutch for the lame design of Monkeysoft.

    When you are using the most common OS, you will need some form of anti-virus software. I see you've been drinking the Redmond Red flavour of Kool-Aid. UNIX is a common OS and it's been around for 37 years and networked for all that time. Why is there no AV software market for UNIX? What are the two most common implementation languages for Monkeysoft viruses? Monkeysoft has been on the Internet since about 1995. How much time have Monkeysoft users lost to viruses? Whose OS is the most 'botted?

    Is all this Symantec's fault for not protecting Monkeysoft better?

    If you replace "common" with "most vulnerable", your statement makes sense.

    If a program can be downloaded and run from the internet, it can be a virus. Sure... and if it runs with root or root-like privileges, it can do serious damage. Guess which OS lets that happen? To protect yourself, you can install AV software and dedicate one (or both) of your dual CPU cores to constantly scanning every file that is accessed so you can be "safe". A fine value proposition for your computer investment.

    This is Symantec being incredibly irresponsible. Failing to find something like this in pre-update testing (or the failure to test updates) is insane and they should be required to pay for repairs. I agree that Symantec made a serious error in deploying an updated defence for the weak OS that they make money defending. But I bet they'll pay nothing, or at least as much to pirates as they do to licensed owners.
    --
    Rich And Stupid is not so bad as Working For Rich And Stupid.
  7. Re:Radical change imminent by 1u3hr · · Score: 3, Interesting
    This is also a common cause of famine in China: the central planners tell each region how much rice they will grow in a season, and the beauraucrats tell them that's how much rice was grown. When that fails to be the case, people starve

    Yes, that did happen, during the Great Leap Forward, about 40 years ago. These days provincial governments still bullshit about economic growth statistics, but not so grievously.

    And of course it's not just a communists who try to save face and walk into disaster. "Mission Accomplished!"

  8. Re:no sympathy by jZnat · · Score: 2, Interesting

    Or we'd have the best software companies ever due to the high requirements for secure and "bug-free" software.

    --
    'Yes, firefox is indeed greater than women. Can women block pops up for you? No. Can Firefox show you naked women? Yes.'
  9. No sympathy for pirates by d_jedi · · Score: 2, Interesting

    First off, let me say I have no sympathy whatsoever for anyone who is unable to recover their PC after this snafu because they were running a pirated version of Windows. No sympathy whatsoever.

    Now, for all of those who were running a legitimate version of Windows and a legitimate version of Norton who were affected by this problem (probably a small percentage of all systems actually affected..) it really does suck.. and there are two sources of fault, here:

    1) MS. Aren't critical OS files supposed to be protected, such that they can't be unwillingly be deleted or modified? Maybe this is part of the reason why MS didn't want AV vendors to have kernel mode access to Vista..

    2) Norton (duh). How they could manage to screw this up so badly boggles the mind.

    --
    I am the maverick of Slashdot
  10. Re:no sympathy by beuges · · Score: 4, Interesting

    Exactly! This is precisely why MS wanted to prevent antivirus products (amongst others) from running in kernel mode in vista in the first place. I believe Symantec was one of the most vocal opponents of this decision, even though there is no technical reason for allowing antivirus software into the kernel in the first place, as Trend Micro and others all had vista-compatible solutions that worked without requiring kernel access.

    Back when that story was making news, there was a lot of commentry here on /. saying that MS shouldn't be restricting access to the kernel, but this just goes to show that the people who demand access to it often shouldn't have access to it. I know that the problem in the article relates to XPSP2 but the fact remains - Symantec shouldnt be installing kernel mode drivers in the first place.

  11. Re:no sympathy by budgenator · · Score: 2, Interesting

    Being Chinese doesn't automagically make you a pirate, but actually living in China means you learn not to ask embarassing questions; so when the asshole at the flea-market is selling Windows XP for a weeks pay, you dont go to the official store-front where it costs 4 months pay just to get the hologram on the case.

    --
    Apocalypse Cancelled, Sorry, No Ticket Refunds