Symantec Updates Cause Chaos in China

Hello Kitty writes "According to Computerworld, a signature update to Symantec's anti-virus software has knocked out thousands of Chinese PCs. Apparently the latest update for the AV component of the various Norton packages mistook two system files in the Chinese edition of Windows XP SP2 for the 'Backdoor.Haxdoor' trojan. Piracy issues may complicate recovery, since once the updates are installed Symantec says the only hope for reviving an affected system is to re-copy the affected DLLs from the Windows restore disks. Everyone has their official restore disks handy, right?"

no sympathy

[DaMattster]

I've got no sympathy for the Chinese. God only knows how many of the copies of Symantec Anti-virus over there are legitimately owned. This ought to teach them a good anti-piracy lesson.

Re:no sympathy

[Zo0ok]

So, you have no sympathy for paying customers because many other people in the same country presumably did not pay? I think there are about 1300 million Chineese - you should allow yourself not to judge them all together.

Re:no sympathy

No sympathy for Windows or Symantec either.

Windows for producing a modern operating system that is so dependent on third party patches in order to safely operate in an environment it is featured to operate in.

Symantec for making programs that futz around with sensitive core system files without the knowledge of what they all are doing.

Re:no sympathy

[mattmacf]

This ought to teach them a good anti-piracy lesson.

Perhaps they should have pirated something like ClamWin instead?

Re:no sympathy

[Kjella]

That makes about as much sense as saying they should nuke all Windows installations because world-wide there's many more pirated ones. And how is that exactly going to do anything:

1. "Damn, my pirated copy stopped working"
    "You should have bought a real copy"
    "Would that have helped?"
    "No."
2. ???
3. Piracy problem solved

Re:no sympathy

[jalet]

> I've got no sympathy for the Chinese.

Expressing as much stupidity in only 8 words certainly is a world record.

What next ? You've got no sympathy for blacks, blonds, left-handed or bue-eyed people ?

Racism at its best !

Re:no sympathy

I think there are about 1300 million Chineese - you should allow yourself not to judge them all together.

We hate every non-American equilly, along with homos and librals! We are gods chosen patriots and the presidunt says so and we must always obey so that it will keep us safe from all the terrists that hate us becuz we are free to be dumb.

Re:no sympathy

[karmatic]

Let's just shorten it to 4 words (including one contraction), and be done with it.

"I've got no sympathy."

See? Even more accurate than before, without the need for any racial discrimination.

Re:no sympathy

[l0rd.47hl0n]

Couldn't have happened to a more deserving country. Happy pirating ... NOT!

Re:no sympathy

[jack_csk]

Or maybe AVG Personal? (Actually, it is a violation of license if it is used in a profit / commerical sector)

Re:no sympathy

[billcopc]

The difference is that when you buy a "real copy" of something, you usually also acquire the privilege to call someone and complain when it doesn't work the way it's supposed to.

In the USA, that's process is called a law suit.

Re:no sympathy

[ewhenn]

I have no sympathy for software pirates. As if they have a right to complain that their pirated materials *gasp* stopped working. I only sympathize with the legit. customers.

I understand many chinese are poor and all... but that gives them no more right to pirate Windows than I would have to go and steal a BMW just because I can't afford one.

Re:no sympathy

Ah, I see. So all Chinese are software pirates.

You're not making the hole you're digging any less deep, you know.

Re:no sympathy

[ewhenn]

Where did I bring nationality into this?

Re:no sympathy

[lattyware]

Where did I bring nationality into this?

I understand many chinese are poor and all.

That is all.

Re:no sympathy

[hackingbear]

law suit? Read the fine print of your EULA. If you can sue so easily over software quality, there will be no software company left in the world.

Re:no sympathy

[fbjon]

Not only did you bring nationality into this, you (and many others) also brought piracy. Both of those are irrelevant and off-topic, as this affects all users at least equally, if not legitimate users more.

Re:no sympathy

[jalet]

Don't confuse stealing material goods like your beloved BMW, with unauthorized copying of immaterial goods like software. In the first case, you don't have a car anymore, in the latter case you still have the software you purchased.
Also pirates usually kill people, and that's (usually) not the case for people who duplicate binary numbers.
Finally, the problem in TFA isn't related to software being "illegally" copied or not, because it affected both type of software, legit and not legit versions of Windows XP.

Re:no sympathy

[Alsee]

What next ? You've got no sympathy for blacks, blonds, left-handed or bue-eyed people ?
Racism at its best !

I'm just curious... what if it's "I've got no sympathy for Freepers"? Would you give me the same reprimand or would you give me kudos? :)

-

Re:no sympathy

[jalet]

Of course I would give you kudos !

And you wonder why ?

Because chinese people didn't choose to be born chinese, same for black, french, unijambists, and so on...

You are comparing apples and oranges, but they have not very much in common.

Re:no sympathy

[LaughingCoder]

... you should allow yourself not to judge them all together.

That's right. Around these parts, the only people we are allowed (nay, encouraged) to judge all together are Americans.

Re:no sympathy

[1u3hr]

The difference is that when you buy a "real copy" of something, you usually also acquire the privilege to call someone and complain when it doesn't work the way it's supposed to. In the USA, that's process is called a law suit.

Oh really? And how many Americans have sued MS, despite billions of dollars in damage for lost time and data due to their software not working as advertised over the last 25 years?

Re:no sympathy

You've got no sympathy for blacks, blonds, left-handed or bue-eyed people ? No, I have NO sympathy for bue-eyed people. Let them stay in their own country, and stop stealing American jobs! The are all THIEVES and LIARS. Periodontitis is a just God's WRATH against the bue-eyed people!

Re:no sympathy

My reading comprehension skills must be failing me. When did the GP say anything to the effect that Americans should be judged en masse?

Oh, they didn't? So you're just making fun of a straw man? That doesn't seem very productive.

Re:no sympathy

[jZnat]

Or we'd have the best software companies ever due to the high requirements for secure and "bug-free" software.

Re:no sympathy

Symantec for using a business model that depends on the incompetencies of another corporation, not on the merits of their own product.

Re:no sympathy

[lilfields]

I wouldn't call "piracy" off-topic in this instance, the article original post does make a pretty strong hint at piracy; i.e. "Everyone has their official restore disks handy, right?"

Re:no sympathy

[YoYofella]

nonsense. Plenty of Chinese people purchase computers from Lenovo, Dell, Sony, Toshiba. They all paid for those licenses, just like the rest of us. Most Chinese computer users aren't haxor geeks who build their own computer and install pirate versions. I just helped a Chinese girl yesterday reinstall her VAIO laptop.

Re:no sympathy

[HiThere]

No, you've got to understand,

All windows users are software pirates. That's why they don't deserve sympathy.

Re:no sympathy

[Vicissidude]

Actually, I don't have sympathy for the lot of them.

No sympathy for the Chinese since 90% of the software they use is pirated.

No sympathy for Microsoft when it allows the deletion of a couple files which can cause a BSOD.

No sympathy for Symantec that turns out a shitty update that targets files that it shouldn't kill.

About the only people I can feel sorry for are the 10% of Chinese that actually spent the money to buy legitimate copies of the software.

Re:no sympathy

[Ash+Vince]

So many people are in here whining on about Chinese piracy.

But even if 90% of Chinese software is pirated, the numbers in the US are pretty high.

Are all the people who are complaining trying to say they have never used pirated software on their PC's? Have they ever downloaded a movie off the net? Or an MP3?

Lets stop being so hypocritical for a moment please. The vast majority of people I know have engaged in some form of piracy at one time or another.

Re:no sympathy

[MadnessASAP]

No sympathy for Microsoft when it allows the deletion of a couple files which can cause a BSOD.

Try typing

#rm -f /bin/init

and lets see how far your computer gets? Critical system files are critical system files if you remove these the system just doesn't work anymore. Off the top of my head I can think of several files that Linux would fail without (init, the kernel, modules, stage2 bootloader, /dev)

Re:no sympathy

[MichaelSmith]

No sympathy for Microsoft when it allows the deletion of a couple files which can cause a BSOD.

Plenty of things will do that in Linux. /vmlinuz for one.

Re:no sympathy

Yes, because we all know production is the ultimate measure of man's worth...

I think (and I seem to be with the majority) that when you choose to tar everyone in another country with the same brush, that you implicitly invite the same to be done to yourself.

By the same logic, all Americans are conservative, SUV-driving, soulless, white-trash, gadget-freaks who are obsessed with money and wear obesity like jewelry as a measure of their successful, and therefore sedentary life.

Actually, maybe there is something to this tarring-with-the-same-brush thing after all...

Re:no sympathy

[ravenshrike]

? Ehhh, countriism perhaps, but not racism. Had it been racism he probably would have used either chink or asian. Hmmm, any mainland china slurs I left out? Not exactly my forte.

Re:no sympathy

[ozmanjusri]

Try typing
#rm -f /bin/init
and lets see how far your computer gets?

Still fine.

Probably be different if I was logged in as root, but Linux discourages that.

Re:no sympathy

[MadnessASAP]

If you must be like that you'll note the '#' sign implying a root login.

Re:no sympathy

[Frenchman113]

No sympathy for Microsoft when it allows the deletion of a couple files which can cause a BSOD.

Here's a hint - "rm -rf /". Long as you have root/admin/whatever, you can do anything and everything. Seeing as Norton/Symantec uses kernel-mode drivers to implement scanning, the problem isn't exactly MS'. You'd expect "modprobe crappysoftware" to nuke your system, wouldn't you?

Also, claiming that being Chinese somehow automagically makes you a pirate is some pretty messed up logic.

Re:no sympathy

[specific_pacific]

of that last 10% are all the foreigners.. oh wait

Re:no sympathy

Actually, deleting /vmlinuz wouldn't cause a crash. It would just cause the machine not to boot up again next time. Which could be months later, by which time you may have installed a new /vmlinuz anyway.

Also, antivirus programs in Linux generally aren't allowed to touch /vmlinuz.

Re:no sympathy

[jamar0303]

Most Chinese computer users aren't haxor geeks who build their own computer and install pirate versions.

Thank you for getting this point across. I'm one of those people who buy legit (OK, I'm not a Chinese citizen, just happen to live in China for the time being) and hate that generalization. Well... I've been sorely tempted sometimes, though. I know that I'm not updating my copy of Symantec Antivirus until this is fixed, though (I have the Chinese version of XPSP2).

Re:no sympathy

[beuges]

Exactly! This is precisely why MS wanted to prevent antivirus products (amongst others) from running in kernel mode in vista in the first place. I believe Symantec was one of the most vocal opponents of this decision, even though there is no technical reason for allowing antivirus software into the kernel in the first place, as Trend Micro and others all had vista-compatible solutions that worked without requiring kernel access.

Back when that story was making news, there was a lot of commentry here on /. saying that MS shouldn't be restricting access to the kernel, but this just goes to show that the people who demand access to it often shouldn't have access to it. I know that the problem in the article relates to XPSP2 but the fact remains - Symantec shouldnt be installing kernel mode drivers in the first place.

Re:no sympathy

[dekkerdreyer]

BLONDS? :)

http://www.youtube.com/watch?v=0rNfZxgkH7k

Re:no sympathy

the problem isn't exactly MS'. You'd expect "modprobe crappysoftware" to nuke your system, wouldn't you? If `modprobe crappysoftware` woulnd't nuke the english version of Linux it wouldn't nuke the chinese version either. Problem here is Microsoft's crappy localisation.

Re:no sympathy

>The vast majority of people I know have engaged in some form of piracy at one time or another.

Perhaps you should become acquainted with a better class of people?

Re:no sympathy

[budgenator]

Being Chinese doesn't automagically make you a pirate, but actually living in China means you learn not to ask embarassing questions; so when the asshole at the flea-market is selling Windows XP for a weeks pay, you dont go to the official store-front where it costs 4 months pay just to get the hologram on the case.

Re:no sympathy

[Cro+Magnon]

I'm curious. Why SHOULD I have any sympathy for blacks, blonds, left-handed or bue-eyed people ? Is there anything wrong with them that warrants sympathy?

Re:no sympathy

[jalet]

> Is there anything wrong with them that warrants sympathy?

Yes : all of them are living creatures.

Re:no sympathy

[billcopc]

Oh I don't know, just a few thousand here or there I guess. I mean, class-action suits don't court right ? We're not looking for the thousands of people united under one cause, we want the individual war stories of those who were wronged and didn't take the settlement.

Yeah, you really got me there.

Re:no sympathy

[1u3hr]

The first link is dead, four years old, so I don't know how that worked out. Sounds rather general complaint from the Slashdot summary. I somehow doubt there was a payday. The second is antitrust, evil but not about faulure of the product to work.

The system is working? If you say so.

Probably not intentional

[MarkByers]

Although it seems easy to accuse Symantec of receiving bribes form Microsoft to try to make piracy in China more difficult, this is unlikely to be the case. Never attribute to malice that which can be adequately explained by stupidity.

Re:Probably not intentional

[BCW2]

"Although it seems easy to accuse Symantec of receiving bribes form Microsoft "

You write that like you don't think Gates & Balmer would do something like that. Based on their normal business practices I'd say it was very possible. They have no respect or consideration for paying customers anymore than they do for other sortware companies.

Re:Probably not intentional

[vertinox]

Never attribute to malice that which can be adequately explained by stupidity.

Always attribute to stupidity which could be adequately explained by malice? ;)

Sometimes it is pretty malicious to remain so willfully stupid.

Although, I don't think Symantec is on good terms with Microsoft these days.

Re:Probably not intentional

[nrdlnd]

Just leave "it". Go Linux and stop paying tax to M-soft.

Re:Probably not intentional

[Taco+Meat]

"Never attribute to malice that which can be adequately explained by stupidity."

So you are saying they just had a few chinks in their security?

Hot-cha-cha-cha-cha!

Re:Probably not intentional

[jZnat]

Although, it sounds like a good majority of Chinese people don't even pay the MS tax due to the helpful pirate bazaars or whatever.

Re:Probably not intentional

[hal9035]

As a MS stockholder, all looks good to me! Best Symantec update in a long while.

Re:Probably not intentional

[A+non-mouse+Coward]

Of course it's not intentional. However, this is completely avoidable.

This is evidence that it's time to wave goodbye to signature based anti-virus methods. If we had anti-malware techniques that actually weren't anti-malware, but actually pro-goodware (bonware?), we would never have this problem. Essentially, in a production environment, we want to split all executable code into two categories: 1) Certifed, and 2) Non-certified. If we had tools that would only allow certified code to execute, who cares about AV (or anti-spyware, anti-ransomware, anti-bloatware, anti-threat-du-jour-ware)?

This is starting to get insane. Look at F-Secure's latest rate of malware growth. The amount of bad software (non-Certified for the sake of consistency above) compared to good software is unreal. Essentially anti-virus software is the process of outsourcing the software inventory of one's environment for the purpose of determining trustworthiness, only we require our outsourcers (the AV vendors) to work backwards (defining bad, not good) and blind (guessing at what software lives on our systems). With this premise, it's no wonder these mistakes happen. AV Vendors, by their signature-nature, are forced to implement significant changes to our systems several times per day to maintain effectiveness. And when any changes on this level occur at this frequency, there are bound to be quality assurance issues like overlooking critical system files from alternate languages during the testing phases.

Re:Probably not intentional

mod parent up - insightful

WTF?

[Farfnagel]

Bwaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaahaha !

In the immortal words of Nelson Muntz...

HA-HA!!!

Its not as bad as we think!

[NETHED]

Microsoft to Symantec: "Its OK, its not like there are many pirated versions, remember we have Windows Genuine Advantage!"

Be careful what you wish for...

[MarkByers]

Be careful about wishing ill on other people. Your desire to force them to purchase American products might inadvertently end up forcing them to use Linux instead, and then not only will American lose sales form China, but other countries might follow suit. Things are just fine the way they are now, so just try to find some way to be happy about it.

Re:Be careful what you wish for...

[sakdoctor]

might inadvertently end up forcing them to use Linux instead And this would be bad because...?

Re:Be careful what you wish for...

[BakaHoushi]

Because China buying Linux would create a change.
Change creates unknown circumstances.
People often have an innate fear of the unknown.
Fear leads to anger.
Anger leads to hate.
Hate leads to the Darkside.

Therefore, Chinese workers using Linux would cause an influx of Sith who would surely wipe us out. Just follow basic logic.

Re:Be careful what you wish for...

[cp.tar]

Actually, it's even worse.

Linux would then be a proved Communist OS.

As such, it would be un-American, un-democratic and therefore obviously a tool of the terrorists.

Therefore, only terrorists use Linux.

And Slashdot, as a site more or less advocating Linux, will be shut down for terrorist activity.

Re:Be careful what you wish for...

[jonaskoelker]

> Hate leads to the Darkside.

God damn you kids nowadays (and get off my lawn): Hate leads to suffering (http://imdb.com/title/tt0120915/quotes)

Re:Be careful what you wish for...

[BakaHoushi]

Yes, yes, I remember Yoda's exact words, but hate ALSO leads to the Darkside. It's always been my view that the suffering Yoda speaks of is caused by the Dark Side. So, I was not going for his exact phrase...

But the point is, unless we stop China from adopting Linux, then we have lost our last hope... (Unless... there is another... OSX Maybe? [Also note that this quote, too is inaccurate, but I'm simply adjusting it to context. Is that okay?])

Re:Be careful what you wish for...

[Heembo]

Hate leads to suffering (http://imdb.com/title/tt0120915/quotes) That's right. Hate leads to suffering for anyone who is NOT on the Darkside! Go Sith!

How Long

[TheUni]

...until some jackass posts a link to the files netapi32.dll and lsasrv.dll under the guise of a fix for these systems, but he has ACTUALLY infected with the backdoor.haxdoor virus?

Re:How Long

A simple Google search for netapi32.dll should be enough !
http://www.google.com/search?q=netapi32.dll

Re:How Long

[insecuritiez]

Haxdoor is not a virus, it is a Backdoor/Trojan.

Re:How Long

[26199]

Hmmmmmm. What gave it away?

Pre-pwned windows

[sakdoctor]

Not a false positive. The Chinese pirated copies of windows probably come pre-installed with Backdoor.Haxdoor

Re:Pre-pwned windows

[HomelessInLaJolla]

Most Windows systems come preinstalled with various backdoors and trojans. All it takes is a little insider knowledge--social connections within the software groups at MS--to know about them, access them, and activate them.

The best part is that it's been going on for 15 years and everyone still acts surprised!

Re:Pre-pwned windows

Tell us how you know such insider knowledge. Cite a few examples. If you discovered such backdoors yourself tell us what you did to find them.

Until then the parent such be modded down as flamebait, since no evidence whatsoever was given. Once again slashdot jumps to mod up anything anti-Windows regardless if it contains any amount of truth. Typical.

Santa Claus paid off Microsoft to put a back door in. Come on karma!

Re:Pre-pwned windows

[Anonymous+McCartneyf]

The fine summary seemed to suggest that all Chinese XP SP2 installations got hosed by this Symantec update. Therefore, if this update is killing an actual backdoor, then all Chinese copies of XP SP2 have the backdoor...
Just what we need: an official Microsoft backdoor (other than WGA)!

Re:Pre-pwned windows

[HomelessInLaJolla]

Santa Claus paid off Microsoft to put a back door in Wrong again, dumbass. No wonder you post AC.

The code base for an OS the size of Windows (and any Linux based OS as well) is bound to have security flaws. The great advantage of proprietary software development as that those security flaws are only known to the people in-house...and their friends...and the people they chat with on IRC...and the people they talk with at conventions...

You don't know a thing about social networking yet you somehow managed to influence someone with mod points.

Go AC go!

Re:Pre-pwned windows

Wrong again, dumbass. No wonder you post AC.

Looks like it is time to readjust the sarcasm-o-meter.

The code base for an OS the size of Windows (and any Linux based OS as well) is bound to have security flaws. The great advantage of proprietary software development as that those security flaws are only known to the people in-house...and their friends...and the people they chat with on IRC...and the people they talk with at conventions...

While Windows is proprietory software, its source is shared with thousands not affiliated with Microsoft. Most universities have at least one source license from Microsoft (usually donated from Microsoft, not bought). If you believe that a few seucirty flaws in a large project like windows are 'preinstaled backdoors and trojans', then Linux and all other large software projects have their fair share as well.

Re:Pre-pwned windows

its source is shared with thousands not affiliated with Microsoft Consider a package as large as glibc, though. If one person used a time-saving hack in an obscure function it is quite possible that nobody will ever audit the code closely enough to see it. I have never asserted that these things were put there maliciously (though some may have been) but rather that they exist, statistically, just because not everyone is the world's best programmer and some functions are designed poorly to begin with. While you chose to take it as some grand conspiracy theory just so that you could be a blister about it that's not what I had in mind.

Most universities have at least one source license from Microsoft (usually donated from Microsoft, not bought) Does it surprise you that the same people who make speed guns make radar detectors? It's been known, in the programming industry, that the best security experts are also the best virus writers. Academics used to make games out of who could choke the other's system first.

If you believe that a few seucirty flaws in a large project like windows are 'preinstaled backdoors and trojans' The software comes preinstalled with them. That does not make them preinstalled--that makes them QA oversights. You're still a dumbass.

then Linux and all other large software projects have their fair share as well. With the defining characteristic being that, with open source, everyone has a right to look at the source and report security flaws--and there certainly are more eyeballs. With proprietary software, especially with Microsoft, it's quite possible that uncovering a security exploit could lead to criminal charges against the researcher. This has happened before.

Re:Pre-pwned windows

[Xemu]

Not a false positive. The Chinese pirated copies of windows probably come pre-installed with Backdoor.Haxdoor

Of course the do, courtesy of CIA and the NSA. That's why symantec had to back down and quick...

Re:Pre-pwned windows

[skeptictank]

http://www.wired.com/science/discoveries/news/1999 /09/21577

symantec

And this is why everybody hates Norton.

Re:symantec

Nah. For me, it was mainly those ties.

Re:symantec

[pe1chl]

In related news: two weeks ago, Norman (not to be confused with Norton) released an update to its antivirus package, which got automatically installed by the Internet update service for signatures.
This update caused many PCs and servers to stop dead, especially in company network environments.
Until today, the only thing the Norman company has been able to come up with is a series of patches that are to be manually installed, and a recommendation to turn off the on-access scanner.

Symbiant software

[goombah99]

This is no longer trojan but a full symbiant in china. If you kill the virus you kill the host.

Hypocrisy

[Romwell]

I guess this thread is going to become full of posts in the spirit of "they got what they deserved", as if this was an anti-piracy measure. Of course, piracy of IP is only legitimate when commited within USA, otherwise it is "OMG commies are stealig our moneyz". This was an effing software bug, which casued trouble to everyone, legitimate users too, and I don't see how piracy talk could be relevant. As a side note, having recovery CD's does not have to do anything with piracy. If you pirate Windows, you have all the CD's you need.

Re:Hypocrisy

I guess this thread is going to become full of posts in the spirit of...

You guess? The Internet is often a pretty unfriendly place as it is. In the spirit of spreading joy, might I suggest you not pre-emptively accuse random people of hypocrisy?

Re:Hypocrisy

You are wrong. It didn't cause any problems for me.
But ... I don't use Norton Internet Obscurity and I don't have the Chinese version of WindowsXP running. Want a copy?

Re:Hypocrisy

Why not? It is guaranteed when you pretend a group of random people with wildly differing opinions are somehow a "community" with shared values. Plus, complaining is good for the ego, as is being able to say you were first.

Re:Hypocrisy

[grommit]

I do it. They got what they deserved. Not for pirating Windows but for installing Norton/Symantec products. Anybody that willing installs any product from that company deserves any bad thing that happens to their computer.

Re:Hypocrisy

[grommit]

Whoops, meant to say "I'll do it."

let's hear it for editing... or not, in this case.

Re:Hypocrisy

I would say they got what they deserved for using a Symantec product!

Re:Hypocrisy

[Romwell]

From that point of view, I'm with you. Where are good ole times when "Norton" meant "Commander" ? =)

Re:Hypocrisy

Yeah, don't blame piracy for this. Symantec's product quality has gone so far downhill, I won't even pirate it anymore.

Re:Hypocrisy

[Kris_J]

Norton Commander, Norton Utilities, those were the days. Symantec's anti-virus software has been a bit of a joke for a while. And Backup Exec 11 is a complete train wreck. (Oh. Your. God. It must have found at least a dozen different ways to fail since I installed it on our new Exchange server late last year.) People need to know that buying any Symantec product is a huge mistake.

Re:Hypocrisy

[Heir+Of+The+Mess]

With all the chinese computers I see here I'm yet to see one running Symantec stuff. I do see Trend Micro 2003 stuff on them though. This problem may not be as big as you think. Afterall to get updates don't you have to pay a subscription fee?

Re:Hypocrisy

[suv4x4]

I do it. They got what they deserved.

Posting the official response to the allegations of Slashdot readers to the Chinese computer users, with simultaneous translation:

Wai Yu So Min (You are being unfair to us)
Noroton Sucan Sum Tin Wong (The Norton Security Suite had a software fault)
Yu Aru Dum Gai (You allegations make no sense)
Lai Suns Wel (The software we use is not pirated)

Chinese need to pay up

Who cares, fuck the Chinese market. They deserve to have thousands of their pirated computers go down. They are stealing money from the US everyday. It's bad enough we let them suck our manufacturing market dry simply for the sake of 30% off goods, now we are supposed to feel sorry for them that their pirated version of windows got hacked.. awwww.

Shit it probably IS a backdoor virus slipstreamed right into the Xp Sp2 install.

Blue Screen Of Effection

[chromozone]

"CISRT said. "This issue has made a huge effection to Chinese people." I knew Symantec was effectionate because it wanted to screw my computer all the time. It's hard to decide what's worse - an infection or an "effection".

Re:Blue Screen Of Effection

You mean "Affection" instead of "Effection"

And, yes, I didn't capitalize rightly either, _accept_ that I was not trying to capitolize; but the over-all _affect_ of my miscapitalization was _excepted_ by all the grammar-nazies on this forum who were _effected_ by the error. To air is divine, to four-give is Hugh Mann.

Re:Blue Screen Of Effection

[chromozone]

Lol - I was quoting the guy from China in the article who said "effection". It was great use of engrish.

Re:Blue Screen Of Effection

I like it. Separate words for a medical 'Infection' and computer 'E-fection.'

(or iFection? would apple sue?)

Surely this malapropism will cause someone somewhere to die... I can see it now -

"He's infected with what? A backdoor virus? Well... put him on antibiotics, I'm busy"

And Ballmer tells Xiang...

[slashthedot]

that the virus signature got lost in translation.

In [un]Related News...

...Microsoft reports that they have quietly invested a 100 million dollars into Symantec and insists that it is purely a coincidence. Cough... :)

Re:In [un]Related News...

[Teun]

Yep that was my first thought.
Symantec is showing it's gratitude to Microsoft for enabling their business model on Microsoft designed weaknesses.
One hell of a way to root out the pirated copies of Windows...

Do you want to PAY for that level of stupidity?

[khasim]

Okay, I understand when people say that patches cannot be tested against EVERY software package out there.

But to not test against the core files of the operating system you KNOW they will be installed upon?

And people pay an annual subscription fee for that kind of "service".

Re:Do you want to PAY for that level of stupidity?

[Vicissidude]

Hey, just use your restore disk to replace the files.

Oh, you don't happen to have a restore disk? Oh, you're running a pirated copy of Windows?

Wow, then I guess you're shit out of luck. I can't feel sorry for you. You should have spent the little extra money to buy a legitimate copy of Windows.

Oh, and who said this scenario wasn't tested?

Re:Do you want to PAY for that level of stupidity?

[tokul]

But to not test against the core files of the operating system you KNOW they will be installed upon?

All localized Windows versions? 33 MUI versions and 27 LIPs? Original XP, SP1, SP2 and other intermediate patched up versions?

Re:Do you want to PAY for that level of stupidity?

[Tony+Hoyle]

Yes.

Symantec are a large and profitable company. They can afford to do that kind of testing.

Re:Do you want to PAY for that level of stupidity?

[AntiNazi]

Who that has a pirated copy of Windows doesn't keep the disk around after they have installed? Sounds like it will be nothing more than a big hassle for the average pirate to me. I don't throw my msdnaa provided software disks away after I install, or discs for a game...

Re:Do you want to PAY for that level of stupidity?

[mcmonkey]

Hey, just use your restore disk to replace the files.

When was the last time you saw an OEM computer come with restore disks? For me, it was about 6 years ago.

Nowadays, computers with Windows pre-installed come with a restore image on the hard drive. Pirates are the folks most likely to have Windows on CD.

Re:Do you want to PAY for that level of stupidity?

[Vicissidude]

When was the last time you saw an OEM computer come with restore disks?

I don't know about Chinese computers, but my laptops from HP and Dell both came with restore disks. I bought my HP in 2005 and bought my Dell a few months ago.

Re:Do you want to PAY for that level of stupidity?

[1u3hr]

Hey, just use your restore disk to replace the files. Oh, you don't happen to have a restore disk? Oh, you're running a pirated copy of Windows? Wow, then I guess you're shit out of luck.

Actually, if you're using a pirated Windows install, you WILL have a restore CD, unlike many of those with OEM versions.

And by the time you read this, I'm sure the necessary files will be available on web sites and BT all over China, and in the friendly neighbourhood bootleg software store for 5RMB (about 50 cents). So don't smirk too much.

Re:Do you want to PAY for that level of stupidity?

[X-rated+Ouroboros]

When was the last time you saw an OEM computer come with restore disks?
About a week ago when my wife bought a replacement laptop for the one murdalized by the small child.

Re:Do you want to PAY for that level of stupidity?

[MillionthMonkey]

You know, I have to wonder on this site sometimes, when I see a headline "Tech Company X Snafu Causes Widespread IT Disaster" or "Tech Company X Announces Plans for Evil" posted on the front page, and then I open the comment threads, how many comments were actually posted by employees of X.

Re:Do you want to PAY for that level of stupidity?

[Vicissidude]

Yeah, and how many of the hate comments are actually filled out by competitors?

Re:Do you want to PAY for that level of stupidity?

[MillionthMonkey]

I think most hate comments are from users, not competitors. So posts by competitors are harder to identify.

I've never seen any competitor of any employer of my own on here. My Slashdot conflicts of interest are all of a more common type- I invest a few days of my life studying some technology which then suxxor rulez.

Re:Do you want to PAY for that level of stupidity?

[RobertLTux]

whats funny is all the folks that have a Windows Vista "anytime upgrade" disc i think have a Vista install disc (or at least a disc with the install image on it)
personally i think that a computer should come with a set of discs that have
1 just the OS
2 base software preload
3 bonus software preload
4 trial software preload
(of course the trick of having a seperate / and home partition is a good idea

Re:Do you want to PAY for that level of stupidity?

[jZnat]

Were these business or home machines? Dell and HP are a lot nicer to their corporate customers than their individual ones.

Re:Do you want to PAY for that level of stupidity?

[KDR_11k]

Who knows if the detection wasn't legitimate and the Chinese government had a backdoor installed/the NSA backdoor didn't match the exlusion criteria once translated to Chinese?

Re:Do you want to PAY for that level of stupidity?

It could be worse. I can only conclude that nobody in China installs McAfee Anti Virus. I used to buy several of their yearly subscriptions, apparently so that they could torpedo my systems at least twice a month.

Re:Do you want to PAY for that level of stupidity?

[ncc74656]

Hey, just use your restore disk to replace the files.

When was the last time you saw an OEM computer come with restore disks? For me, it was about 6 years ago.

The HP notebook I bought about a year ago came with a CD with an installable copy of WinXP (Home, unfortunately) and a DVD with all of the other preinstalled stuff on it, all of it independently installable. After wiping the hard drive and putting Windows back on, you can reinstall as much (or as little) of the shovelware as you want.

(You could also get off the Microsoft upgrade treadmill and put Linux on it. The only bits not working now are the SD-card reader (BFD...multi-format card readers that plug into a USB port are cheap) and the modem (BFD...haven't used dial-up in I don't know how long). This is starting to veer offtopic, though.)

Their newer stuff comes with a restore partition on the HD, but there's also an app to burn a set of CDs or DVDs. From what I saw of the discs burned by one such machine, it's still a collection of installable apps.

Re:Do you want to PAY for that level of stupidity?

[jamar0303]

I bought a Chinese VAIO from Best Buy (yes, we have Best Buy here in China- but just one store for now) and it didn't have restore discs.

Re:Do you want to PAY for that level of stupidity?

[Xiaran]

I was once speaking to some people that worked as developers and QA people at McAffee... this kind of thing is their worst nightmare. They test more than you would believe(the head QA guy told me that he used to work on medical equipment testing and that McAffee tested *way* more than that). These kind of produces have user bases that most software developers in the world rarely come close to in terms of numbers... something like 50 million licenses apparently... so if something goes horribly wrong you get a *lot* of angry customers.

Radical change imminent

[Howitzer86]

China is quick to legislate change. I believe after this, all of their social organizations will adopt Linux for the sake of national security.

Re:Radical change imminent

[Tuoqui]

Here's hoping. At least with Linux you can have those army of Chinese coders examine each and every part of that 50mb kernel for exploits and flaws :)

Re:Radical change imminent

Most likely what will happen is that an edict will come from the highest levels to use Linux, and within months all state information will say that Linux has been fully adopted. However, it will most likely also be the case that the low level managers have kept their free pirated versions of Windows and simply lied to their superiors about Linux to tell them what they expect to hear.

This is also a common cause of famine in China: the central planners tell each region how much rice they will grow in a season, and the beauraucrats tell them that's how much rice was grown. When that fails to be the case, people starve because nobody ever admits to lying, so nobody knows that the surplus regions have a surplus and the deficit regions have a deficit.

dom

Re:Radical change imminent

[1u3hr]

This is also a common cause of famine in China: the central planners tell each region how much rice they will grow in a season, and the beauraucrats tell them that's how much rice was grown. When that fails to be the case, people starve

Yes, that did happen, during the Great Leap Forward, about 40 years ago. These days provincial governments still bullshit about economic growth statistics, but not so grievously.

And of course it's not just a communists who try to save face and walk into disaster. "Mission Accomplished!"

Symantec/Norton AV is a pile of junk

It's hard to say if it creates more problems to viruses or to its users.

I just yesterday had to fight with a customer PC which was slowed down like molasses by this crap and had to use the registry trick to remove it because they have lost the uninstall password. I always recommend people to run better AV software (Avast, Avira, Clamwin, etc.) and I have yet to meet one that regretted to have thrown away the NAV/SAV junk.

The fine folks at Symantec should keep doing their research on viruses, but leave the software production to better developers.

'The cure is worse than the disease'...

...ought to be Symantec's new slogan.

Buying a Symantec product to protect your Windows PC is like hiring a quadriplegic to be your bodyguard.

Re:'The cure is worse than the disease'...

[Feyr]

no, a quadraplegic wouldnt protect you against anything.

a better analogy would be

Buying a Symantec product to protect your Windows PC is like hiring a suicide bomber to be your bodyguard.

it protects you, and blows you and everyone around you to pieces in the same run!

not a mistake?

[navtal]

China is said to have a great deal of piracy? Could they actually have been pirated copies with malicious code?

Time for a Change

[Thumper_SVX]

Sounds to me like it's time for a change. The Chinese have already demonstrated that when something from Western corporations runs amok they are quite willing to force a change on their people. I'm not saying it's right, it's just so.

Now, this problem has actually highlighted a bigger problem; that Windows is Western software controlled by Western interests. Even the ancillary software you need to run Windows effectively (read: anti-virus) is from third parties in the West who obviously wouldn't necessarily have the desires of the Chinese government in mind. Now, at best I can see the Chinese government is going to realize that their reliance on Western anti-virus solutions may be a flawed dependency and they will write their own Chinese-specific AV solution. At worst... this might just highlight to the Chinese government how vulnerable they are to a "cyber attack", either malicious or accidental that could potentially cripple them.

Microsoft might want to start "spinning", and quick. Chinese people are well aware there are better solutions out there than Windows for an operating system. It's only a matter of time before someone in power starts talking about "Red Flag Linux" and how it's openness can help prevent problems exactly like this... then it's all over for Microsoft in that market.

Yes, I realize the pirated Windows market is huge in China as well... but it's still a massive market for Microsoft to lose because of the accidental actions of one of their "trusted third parties".

Re:Time for a Change

[CrimsonScythe]

Yes, I realize the pirated Windows market is huge in China as well... but it's still a massive market for Microsoft to lose because of the accidental actions of one of their "trusted third parties".

Yes, I realize that it takes a while to count to 244, but that doesn't make it a "massive" number. ;)

Re:Time for a Change

[hexed_2050]

They can't even say the word democracy over there. You really think someone is going to have the cubes to stand up and suggest open source?

Re:Time for a Change

[Vicissidude]

Why should Microsoft spin anything? Microsoft gets almost no money from China because piracy is so rampant there. It wouldn't be worth it to Microsoft to yet again lay down more money, except for maybe in the far distant future when China actually takes intellectual property seriously. Their government "crackdowns" on piracy are a joke, especially in a government that is extremely efficient when it actually wants to crack down - they just don't want to.

Re:Time for a Change

There are several homegrown anti-virus packages in China already. Probably the most popular is from Kingsoft.

Re:Time for a Change

[CrossChris]

Chinese people are well aware there are better solutions out there than Windows for an operating system. It's only a matter of time before someone in power starts talking about "Red Flag Linux" and how it's openness can help prevent problems exactly like this... then it's all over for Microsoft in that market.

It already is all over for MS in most of the Third World. On a recent trip to the Far East, the only Windows machines I saw were on an airline check-in desk, and they'd all blue-screened! Every computer I saw was running some Unix variant - whether it was Linux, BSD, Solaris or Mac.

Microsoft has no significant presence in what is probably the biggest market in the world.

On similar business trips to Australia and to parts of South America, I have seen progressively less and less MS products. Consumers outside the USA have discovered that there are truly viable alternatives, and are fed up with all the insecurities, instabilities and expense of MS products that basically don't work properly (and can't ever work properly!).

Game Over, Microsoft!

Re:Time for a Change

[budgenator]

Well since MS products typically don't play well with others it creates a lot of inertia, I think even pirated copies of windows and office have value to microsoft because of this. The Chinese see this vendor lock-in as an foreign influence and have been trying to keep foreign influence out for a couple of millennium now, I suspect they'll get it figured out any century now.

Re:Time for a Change

"Now, at best I can see the Chinese government is going to realize that their reliance on Western anti-virus solutions may be a flawed dependency and they will write their own Chinese-specific AV solution."

It's already out there.

http://en.kingsoft.com/products/index.shtml

windows CDs

[cornswaggle]

... since once the updates are installed Symantec says the only hope for reviving an affected system is to re-copy the affected DLLs from the Windows restore disks. Everyone has their official restore disks handy, right?"

I have my official restore copy right here!

Re:windows CDs

[CowboyBob500]

The last Windows machine I used was my old IBM Thinkpad. It had a restore partition and came with no CD media at all. Guess I'd have been shafted for one, even though my copy was 100% genuine.

Bob

Re:windows CDs

[HomelessInLaJolla]

I avoided prepackaged computer systems throughout the 90s for precisely that reason. Knowing the state of software copyright laws at the time, if I wasn't going to receive a full backup copy of all the software necessary to restore the system from ground zero then I wasn't interested in the system. That said I did have to make a few long distance phone calls to USR to be given a dial-in BBS number to download updated drivers for one of their 56k modems. Generic drivers only worked to 2400.

I saw it as a travesty when the computer industry offloaded millions of systems between '94 and '00 with little or no factory backup disks. I was even less amused when companies began shipping restoration image disks which only worked if the (usually flawed) software on the disk determined that the system needed to be restored--and usually did so without any consideration paid to settings which had been customized by the user after the system was shipped.

Woe is Symantec

[rueger]

For years I always installed Symantec products, and before them Central Point and Norton products.

They worked, they worked well, and I could see how they helped me.

Somewhere along the line though they became first large, then irritating, then expensive to keep updated (pay for virus signature updates?), then finally began actually damaging systems.

And somewhere along the line I stopped buying their products, installing their products, and recommending their products.

I've come to view Microsoft the same way. Between excessive DRM, excessive hardware demands, and a generally customer hostile attitude I find it hard to think that I would ever move to a Vista machine. Thus far Windows 2000 still does everything that I need with a lot less hassle.

Someday though I will need to upgrade. The question is what will fill the gap? Linux still isn't there, nor are most Open Source replacements for common Microsoft and Adobe applications.

Is there a company that can step in with a viable replacement for Photoshop or MS Office? Can OpenOffice or GIMP make the final leap to become a reasonable and reliable alternative to those tools? I don't want something that sort of does everything that Photoshop does, I want a professional tool that does everything, and does it equally well.

The door is open, we're just waiting someone to step through.

Re:Woe is Symantec

[whoever57]

And somewhere along the line I stopped buying their products, installing their products, and recommending their products.

I went through the same process, although I now recommend Linux when appropriate. The experience that turned me off Symantec was installing a new version that required activation, but would not activate. Support was hopeless -- asking the same question over and over ("do you have a firewall?"). Why the vendor of a security product should suggest that I turn off my firewall to activate their product, I just don't know -- anyway, I could see the queries in my squid logs.

Since then, I've seen machines crippled by malfunctioning Symantec rootkits. Yes -- I refer to them as rootkits since they have made un-installation impossible in some cases. For example, their uninstall program refuses to run in safe mode.

Re:Woe is Symantec

"I don't want something that sort of does everything that Photoshop does, I want a professional tool that does everything, and does it equally well."

So, let me get this right, you've tried the FREE software version - GIMP - but you claim that it doesn't do everything that a £513 software suit does? I'm shocked.

Re:Woe is Symantec

[cybereal]

I recently asked the same questions as I decided my system was beginning to age. I wanted to look forward and Windows Vista was not on the... vista.

The only difference here is that I wasn't concerned that my software be free. I don't mind paying a few bucks here and there if it's good quality software.

So after spending several weeks trying to pin down a comfortable desktop linux distribution, and learning no such thing exists yet (close, seriously, but linux will need to get over its anti-cooperative attitude about commercial products and software before it's viable for a regular desktop like mine) I decided to go with OS X. I bought a new computer and haven't been happier in all of my 17 years of computing.

I did spend a year working with an OS X machine several years ago, so it wasn't like I jumped in cold turkey, but I hadn't actually owned a Mac myself until now. Also I used Linux without worrying about ease of use, and compatibility for a long time, at least 6 years, and I can tell you that OS X gives me everything I enjoyed having from Linux.

I just can't take reconfiguring my X server every time an update comes along and breaks it, horrible power management, and all the rest of the excess management that goes into making a Linux system work well and work with all of my random hardware and devices.

When I'm at home I'm a user, and I want my machine to serve me, not the other way around which is what Linux ultimately demands.

Re:Woe is Symantec

pay for virus signature updates?

Yeah, god forbid we should have to pay for people to continue working for what we want! You know what's worse? I bought a car and I have to pay for oil, gas, washer fluid, etc. WTF is this world coming to? I remember back in the day I only had to pay for a person once at the market, and then they would just keep working for me for the rest of their lives... ah, those were the days of simplicity!

Re:Woe is Symantec

[Verity_Crux]

I've never seen a virus as bad as the anti-virus software. I personally can't stand the stuff. I'm mandated to run a copy of AVG at work. It regularly wastes my time with little pop-up messages. Of the three machines (belonging to relatives) I've repaired with a virus, all three were running some form of anti-virus software that failed to catch the virus. Somebody should do a study to determine the CPU time used by anti-virus software vs. the downtime caused by a virus. Fortunately, system firewalls and education about email are greatly reducing the need for anti-virus software.

Re:Woe is Symantec

[garett_spencley]

I despise AV products as well, and have never used one on my own PC. I've also never, in my entire 15+ years online, had a virus infect a Windows PC that belonged to me. Not once.

However, despite all of the preaching and common sense talk I've given to my wife she still somehow managed to get her PC infected not too long ago. I installed AVG free and am trying to convince her to switch to Linux. The problem is all of the windows games that won't work in wine or vmware (the sims2 for example - I did try on my ubuntu feisty box). Other than that she'd be happy to run ubuntu. So I'm considering doing a dual-boot on her box and disabling all networking on windows.

Re:Woe is Symantec

[Dan+Ost]

Linux still isn't there

What, in your opinion, is missing?

Re:Woe is Symantec

[Buran]

"Is there a company that can step in with a viable replacement for Photoshop or MS Office? Can OpenOffice or GIMP make the final leap to become a reasonable and reliable alternative to those tools? I don't want something that sort of does everything that Photoshop does, I want a professional tool that does everything, and does it equally well.

The door is open, we're just waiting someone to step through."

Apple stepped through that door years ago. You can run every one of those applications on a Macintosh. Photoshop is there. Office is there. Thousands more apps are there -- many of which run more smoothly, look better, and are cross-compatible with Windows versions (same file format). Plus you get to stop dealing with viruses and random scanners trying to infect your system and you don't have to worry about drive-by downloads infecting your system while surfing the Net. There's even an OpenOffice variant that works on Macs.

Cost? Starting at around $700. Yes, it may be a little higher up front but the aggravation and worry you save is worth it -- plus over time the cost is lower. Why are you posting about your wish to drop Microsoft software altogether, when you could have already done it?

Re:Woe is Symantec

[kwoff]

The door is open, we're just waiting someone to step through.

Maybe why companies aren't interested in doing that, is because so many people like you don't "step through" to Linux.

Re:Woe is Symantec

[Kymermosst]

(1) I despise AV products as well, and have never used one on my own PC.
(2) I've also never, in my entire 15+ years online, had a virus infect a Windows PC that belonged to me.

How could you be so sure of (2), given what you said in (1)? Without a virus scanner, signature checking tool, etc. (all "AV products, and we'll include IDS systems in the category, too), how do you know that you don't have a silent virus that's sending spam to my inbox, or logging keystrokes, or waiting for the right moment in time to trash your hard disk?

You say you are running Windows, do you also skip the malicious software removal tool update that happens every month?

Re:Woe is Symantec

[xtracto]

How could you be so sure of (2), given what you said in (1)? Without a virus scanner, signature checking tool, etc.
Hehehe I was asking exactly the same question.

This surely is the guy who said he migrated to Linux because his windows installation started to get *very* sluggish and a because Microsoft started selling him V1agr4 via IE popups... oh and just after 30 seconds of starting his Windows PC a screen stating that the system was going to be rebooted appeard counting down.... fucking windows it is so usesless =oP.

Re:Woe is Symantec

[Glytch]

It's amazing how many XP problems can be fixed by running Symantec's symnrt utility and installing something not made by Symantec afterwards.

Re:Woe is Symantec

[nrdlnd]

Open Office, K-Office or Abi-Word replaces the "Office". You want a free replacement for the 10k Photoshop? The zero k Gimp replaces this but as of now "only" 8bit. You have many very competent raw converters in Linux for free as in beer, i.e. Raw Therapee and Lightzone. What else do you need?

Re:Woe is Symantec

[jZnat]

By the sounds of it, you haven't used Linux in several years. Try out Ubuntu for the "Just Works(R)(TM)(SM)(C)" experience. Pretty much any complaint people normally have about Linux (since they haven't used it since the 20th century) have been solved for quite some time in distributions like Ubuntu. There are also some other more proprietary-friendly yet still "Just Works(R)(TM)(SM)(C)" like Linspire, Mandriva, etc.

Re:Woe is Symantec

[garett_spencley]

Not quite.

I've never had problems keeping a Windows install relatively clean. And I've never "migrated" to Linux. I've used both Linux (since around '98/'99) and Windows (since 3.1). I've never been compelled to use one exclusively over the other. Linux provides me with an excellent development platform and Windows provides me with games and "professional" audio recording tools.

The parent does have a valid point. I don't know for certain that I've never been infected, but I've never had problems. There has been the odd occasion where I've run a virus scanner because I'd been experienced odd behaviour and suspected that Windows may be infected with something. They've never turned up anything. And occasions where I've had such problems are rare and usually end up turning out to be hardware issues.

My point was that, in my experience, nothing beats common sense. Obviously I have experience using anti virus products, otherwise I wouldn't know that I don't like them. I've just always found that, for me, they've created more hassle than anything else. I chose to do without them. That doesn't mean that I don't recommend them to other users. People never cease to amaze me by how messed up they can let their systems get. I was hoping that my wife could do without one. I guess my expectations where just a little too high. Though she hasn't had any issues (or viruses detected) since I installed AVG Free.

Re:Woe is Symantec

[HiThere]

If you can't find the applications that you want for Linux, check Mac. It has nearly everything. Linux hasn't been a large enough market until quite recently, so the scattering of titles is still quite small.

That said, if it's games you want, the Mac probably isn't the answer. Gameboy? Nitendo? (Nothing I currently consider accessible measures up to Civilization II. Alpha Centuari comes pretty close, though. And it's on Linux.)

Or switch to Linux, and run MSWind2000 under an emulator. That will let you get what you need from both places... you'll need a faster machine, but not as much faster as you'd need for MSVista.

Re:Woe is Symantec

[metalmonkey]

Just wondering have you heard of this little company called 'Apple'
"I don't want something that sort of does everything that Photoshop does, I want a professional tool that does everything, and does it equally well."
I think Photoshop comes on Apple too ;)

Re:Woe is Symantec

[Servo]

Uh, you are aware of Apple and OSX right?

You do realize that you don't need to run Windows to run those apps right?

Except for gaming, Mac's are great. And the only reason why they aren't great for gaming is because they lack the games, not the hardware. Mac's are well designed for exactly what you're looking for.

Re:Woe is Symantec

[Cro+Magnon]

What, in your opinion, is missing?

The ability to install it on the computer you bought from Best Buy yesterday.

man I hate it being bundled

[Elsapotk421]

just another reason symantech is one product that immediately gets deleted from my computer.

Re:man I hate it being bundled

[Dunbal]

just another reason symantech is one product that immediately gets deleted from my computer.

      Good lord! And how exactly do you manage THAT? The thing is impossible to delete - at least for the layman...

Re:man I hate it being bundled

[j79zlr]

This actually does a good job of removing all Symantec products. I finally removed NPF & NAV from my work PC and it got everything minus one empty Symantec folder in Program Files\Common Files. Removal tool.

Re:man I hate it being bundled

Why do you need a special removal tool? What's wrong with "uninstall"?

Re:man I hate it being bundled

[Cro+Magnon]

Maybe I was lucky, but Add/Remove Program deleted Norton from my last two PCs with no problem.

Re:man I hate it being bundled

NoNav 2.51

Pity the poor choices of consumers... and pirates

[Dystopian+Rebel]

As a Linux and OS X user who only runs Monkeysoft in virtualization, I can only squeeze out a little amount pity for the affected folks.

EEEERRRRK. URGGGGGGGG. Hah! There it is.

1) Monkeysoft Windows is a weak OS that requires anti-virus software to keep it safe. The OS tells you as much itself.

2) Security starts with good design. Any OS that depends on third-party tools to be safe is not designed for networking. And THAT is Monkeysoft's real problem. The Internet has done more damage to their products than any competition.

3) The computing model in which anti-virus software companies manage users' safety remotely is a bad idea. Do they know what they are doing, and do you want them doing it? Probably not, and probably not.

Symantec updates have caused problems before.

[3seas]

And so has Microsoft updates....

neither of which had anything to do with piracy issues, but rather doing things to my at work system that broke and even removed other legal software. Adobe is guilty of this too.

What this really means? Well for symantec to effect pirated systems would mean that symantec software was also pirated (which just happens to run on Windows system). Because this is a symantec problem more then it is a windows problem..... I'd imagine users of symantec will better question the risk of using risk prevention software. And Pirates are less likely to use it, leaving the effected to be less pirates and more honest users.

A good way to kill pirates

[gelfling]

Since most pirated installations don't have the install media either, it's a sure fired way to wipe out thousands of fake installs in one fell swoop.

Re:A good way to kill pirates

Oh, Confucious! I guess I'll have to go to the stall on the corner and pay 50 cents for a pirated copy of the disc! And then I can lend it to all my friends when I'm done with it.

Nice try, genius.

Re:A good way to kill pirates

[vertinox]

Since most pirated installations don't have the install media either, it's a sure fired way to wipe out thousands of fake installs in one fell swoop.

I don't think it will hurt the pirates that much to redownload it.

If they aren't patient enough they can walk down the corner store and pick themselves up a "copy" of Windows XP for $3.

Re:A good way to kill pirates

A lot of legitimate copies of XP come without install media but instead a i386 folder on the c: drive of the pc when bought. So if you had one of these copies you may be effectively screwed. For an operating system that costs so much to buy you would think that M$ would insist on spending the 50 cents or so on each copy to make sure that each copy came with the install media. But noooo they have to allow proprietary computer manufacturers to sell their operating system without the media. Just in case your computer goes down and you don't really know what you are doing they can slug you for another copy of XP. So I wonder how many people owning legitimate copies of Windows went out and bought a new copy of XP after this.

As far as Symantec are concerned. Who would be silly enough to actually buy and install their grossly inferior products. They might try to by get people to buy their products by acquiring their competitors and then throwing the code used by these competitors even though superior in the bin and leave a message on their website saying that the product has been replaced by norton internet security (i.e sygate R.I.P).

I am a computer technician and not long after I got into the game I started encouraging my customers to uninstall symantec products because of their instability and inferiority to many other anti-virus, anti spyware and firewall products available. Even some of the free stuff is better.

Re:A good way to kill pirates

[chmod+a+x+mojo]

Since most pirated installations don't have the install media either, it's a sure fired way to wipe out thousands of fake installs in one fell swoop.


ummmmmm, you know that most pirates would have either 1. cheaply bought or 2. downloaded a copy of the install disk right?? .....the same disk that you can restore from..... just pop the disk in choose install option without formatting and it pretty much just reinstalls $SYSTEMROOT\windows while leaving your other files untouched ( most of the time anyways).

Percentage of nonZombie & legit Win installs?

[catmistake]

Undoubtedly, the vast majority (if not all) of the machines affected were either
(1) zombies bombarding our machines with annoying brute force attacks and/or
(2) illegitimate/illegal installs of Windows.

Its difficult to believe Symantec would actually go and do something so incredibly helpful and effective, afa computer security is concerned.

In Soviet China...

[192939495969798999]

In Soviet China, EVERYONE has "official restore" disks.

Re:In Soviet China...

In Soviet China, "Official Disks" restore You!

ugh - Norton?

[hejog]

Norton is the single worst application you could use on a PC.

At work we installed it on our CAD machines - and it totally killed the performance. We eventually switched to Panda, and have been really impressed. Saying that, Panda still has those bloody annoying popups telling the user it's doing something.

I wish the applications would just DO it, rather than constantly telling users about what they're abouts to do.

Re:ugh - Norton?

[flyingfsck]

Uh, you are a Sloshdatter and you don't use Clamwin???

Re:ugh - Norton?

[jZnat]

I like using ClamAV on mail servers, but for general antivirus, it doesn't do anything automatic very well, so it's better for diagnostic when fixing some Windows boxen.

Re:ugh - Norton?

[evilviper]

I like using ClamAV on mail servers, but for general antivirus, it doesn't do anything automatic very well, so it's better for diagnostic when fixing some Windows boxen.

ClamWin doesn't do on-access scanning, but that's really not the problem... There are 3rd party add-ons like WinPooch that can add that, but it's overkill.

Scanning files when they are downloaded, along with a weekly full-scan, would be more than enough protection for just about everybody. Unfortunately, the problem is ClamWin and ClamAV/win32's terrible performance. It takes about 4X longer than any native Win32 antivirus scanner, and all while using up significantly more RAM, and far more CPU time.

Until some dramatic performance improvements happen, free.grisoft.com and freeav.com are available.

Perhaps it would be better to re-write the scanner completely for win32, and merely use the clamav virus signature database...

The pirates have the disks.

[khasim]

Oh, and who said this scenario wasn't tested?

Fascinating. So you are floating the possibility that this was PLANNED? And what possible reason could Symantic have for annoying their customers this much?

Oh, you don't happen to have a restore disk? Oh, you're running a pirated copy of Windows?

The "pirates" will have every CD and diskette ever made readily available to them.

The only people who won't have the disks are the home users who have been spending their lives doing things other than storing and tracking everything that ever touched their computer.

But they've been PAYING for the regular updates to PROTECT them from "problems".

Not to mention that many OEM's don't provide the right disks. You get a "recovery" CD which will reformat your box and re-install all the software TO THE CONDITION YOU ORIGINALLY RECEIVED THE BOX.

Too bad about all your files and pictures and such.

Oh, and who said this scenario wasn't tested?

Still waiting on the reasons why Symantec would do plan this and test it.

Re:The pirates have the disks.

[Vicissidude]

So you are floating the possibility that this was PLANNED? And what possible reason could Symantic have for annoying their customers this much?

Sure. With Chinese users using pirated versions of Windows with who knows what kind of backdoor trojans built into their copies, they're lucky this hasn't happened previously.

Caveat Emptor - let the buyer beware, especially when buying from pirates.

(Personally, I think this is hilarious! The Chinese like to talk about harmony. Well, the universe has become a little more balanced and harmonious now.)

Re:The pirates have the disks.

But they've been PAYING for the regular updates to PROTECT them from "problems".

I doubt it. Why would someone who copies XP not copy Symantec's software as well?

Re:The pirates have the disks.

[SageMusings]

Caveat Emptor?1?

Dude, you're assuming the Chinese actually purchased legitimate copies of the OS and Norton AV. I'm fairly certain little money has actually changed hands.

Was the anti virus s/w also pirated?

[Palmyst]

That would be funny. No mail in rebates in China.

Re:Pity the poor choices of consumers... and pirat

[wwahammy]

What does any of this have to do with good design? If a program can be downloaded and run from the internet, it can be a virus. It's part of the risk of having a networked world. When you are using the most common OS, you will need some form of anti-virus software. If OS X or Linux were the most common OS, they would need anti-virus software as well. As long as people have the ability to run unsafe code (and yes that can be done on Linux and OS X), they can get viruses. This is Symantec being incredibly irresponsible. Failing to find something like this in pre-update testing (or the failure to test updates) is insane and they should be required to pay for repairs.

Yes.

[khasim]

All localized Windows versions? 33 MUI versions and 27 LIPs? Original XP, SP1, SP2 and other intermediate patched up versions?

Yes. If they need help I'm sure that VMWare will be happy to provide them some expertise (seeing as how they seem to be sorely lacking it). And than is JUST FOR INSTALLING THE PATCH.

And you don't need to test "other intermediate patched up versions".

This is a virus scanner. Right?

So they only need to test against the various released versions of the files. All they need is a set of DIRECTORIES with the files to be scanned in them.

So one box could have ALL the various patches for that system. Based upon the variances in the files. One box for the US release. One box for the Spanish release. Etc.

And as I said, they don't have to be physical boxes. VMWare can help out a whole lot in that regard.

It's called "Computer SCIENCE" for a reason.

In Next Week's News...

"The Chinese government has initiated steps for government agencies to surport Red Flag Linux, Chinese officals believe that if this goes smoothly then Red Flag Linux could be marketed internationally."

I'm going to get modded redundant

[symbolset]

But for the sake of slashdot consistency this article needs a link to the fix for this problem, and I don't see it here yet.

Otherwise those poor folks in China might never get their computers working again.

Original install discs?

[jridley]

NOBODY has original install discs anymore. Go buy a PC and see if you get original install discs. You're screwed.
The best you can hope for now is that your machine allowed you to make a set of full system restore discs when you got it. Some of those will allow you to restore individual files, but many of these utilities just re-image your system drive, so you lose everything on there that was installed since the machine was new (at least, anything on the boot partition).

I'd say this is probably MORE destructive to people with legitimate copies, who probably just have such images. The pirates are more likely to have install CDs.

Re:Original install discs?

Here is another reason I bought Mac. Not only do I not need to worry about viruses, but I don't need to worry about the installation disk problems. Every Mac comes with the install CDs.

Re:Original install discs?

[Lord+Faust]

You know, everyone seems to forget that you're completely entitled to call up your OEM and ask for a CD copy of the OS you did in fact pay for.

Slashdot idiocy

[mattr]

Look people they're just dumb. No company is intentionally going to want to shoot their foot off in China.

Re:Slashdot idiocy

[Yoshy]

In Soviet Russia, your foot shoots you !

Re:Slashdot idiocy

[mattr]

In Chinese foot, you shoot Russia!

Business Partnerships

[PacketScan]

Could this be targeted at specific keys? This should be interesting as it unfolds.

dealextreme?

[arazor]

Is this why dealextreme.com is down or something totally unrelated?

Only problem is

[Maxo-Texas]

the pirated versions of windows I ran (win2k), I had full install disks.
the oem versions (win98, winxp, winxp) I bought at best buy and other places, my only option is to wipe everything and reinstall.

So, I would be screwed on the machines where I am a legitimate paying customer, and hunky dory on the machines where I was pirating.

Re:Only problem is

[bigstrat2003]

If you bought them at Best Buy, wouldn't they be retail, not OEM? Important distinction, for price reasons if nothing else. Also, if you have an OEM copy of XP, it has a full install disk. You don't have to wipe everything and reinstall, unsure about retail however.

Re:Only problem is

[Maxo-Texas]

Nope.

I have three "restore" disks.

That's it. I can put them in and they will take the machine back to base state. On one of my machines I do not even have that. All I have is a hidden sector/partition on the disk that I can "restore" from. Oh joy.

What if they're right?

[dons tin-foil hat]
What if they weren't really false alarms, and there really is a back-door in those DLLs? Isn't it a little suspicious that only the Chinese version was affected? Obviously what happened is that someone convinced Microsoft to add a back door into the Chinese version, and then, since Symantec didn't test against the Chinese version of windows, it wasn't on Symantec's white list.
[removes tin-foil hat]

So Symantec did NOT fuck up their software?

[khasim]

Sure. With Chinese users using pirated versions of Windows with who knows what kind of backdoor trojans built into their copies, they're lucky this hasn't happened previously.

So what you are saying is that Symantec CORRECTLY identified those files as being infected.

Yet that does not seem to be what TFA stated. In fact, let's take a look at what, exactly, TFA stated, okay?

The Cupertino, Calif.-based security vendor also said that only Simplified Chinese versions of Windows XP SP2 that have been patched with a Microsoft fix from November 2006 were impacted.

Well! It seems that your supposition was incorrect and that it was an actual flaw in Symantec's product that identified clean files as "infected".

Imagine that. It seems that Symantec did fuck up their update.

(Personally, I think this is hilarious! The Chinese like to talk about harmony. Well, the universe has become a little more balanced and harmonious now.)

Yeah, why let the facts get in the way of disparaging an entire nation.

Re:So Symantec did NOT fuck up their software?

[Vicissidude]

Me: The Chinese like to talk about harmony. Well, the universe has become a little more balanced and harmonious now.
You: Yeah, why let the facts get in the way of disparaging an entire nation.

Hey, China pirated 9 out of 10 movies, music, and software products for the last 15 years. THOSE are the facts. They'd have their restore disks had they bought legitimate copies.

Re:So Symantec did NOT fuck up their software?

[1u3hr]

They'd have their restore disks had they bought legitimate copies.

They can use their pirated discs to restore their systems. You can buy them for about 50 cents in China if you misplace them. A lot less hassle than if they were using legit OEM versions.

Actually, according to TFA, it's corporate users with Symantic accounts who are being fucked up. Home users will just shrug and reinstall.

Re:So Symantec did NOT fuck up their software?

ur retarded

Re:So Symantec did NOT fuck up their software?

[dwater]

> Hey, China pirated 9 out of 10 movies, music, and software products for the last 15 years.
> THOSE are the facts.

Pulled out of thin air, I presume...

> They'd have their restore disks had they bought legitimate copies.

What makes you equate restore disks with legitimate copies?

In any case, IMO, the people who don't pay for MS Windows don't pay for their AV s/w either, and so don't use Symantec. No problem for most people. In fact, it's only the people who *did* pay (for both) that have the problem.

Re:So Symantec did NOT fuck up their software?

[dwater]

> 50 cents

Last I looked it was 5rmb for MS Windows XP, same for MS Office XP. Not far off 50 cents (if you're using USD) I suppose.

> Home users will just shrug and reinstall.

Na. Home users won't be buying Symantec s/w...they'll not bother at all or use some free version. I think I saw a Chinese AV app somewhere.

Re:So Symantec did NOT fuck up their software?

[jamar0303]

Yep, there is a Chinese AV app available. I currently have Symantec Antivirus (corporate edition) on my Chinese VAIO but I think I'll go with the local product rather than continue using Symantec, looks like.

Re:So Symantec did NOT fuck up their software?

[1u3hr]

>> 50 cents,
>Last I looked it was 5rmb for MS Windows XP, same for MS Office XP. Not far off 50 cents (if you're using USD) I suppose.

I was just approximating, rather than try to explain the concept that other countries use different currencies.

Re:So Symantec did NOT fuck up their software?

[dwater]

Yes, I was acklowledging that with my statement 'Not far off ... I suppose'.

Re:So Symantec did NOT fuck up their software?

[jotok]

Corporate "users" all have mechanisms in place to restore their systems if files go corrupt or--gasp--some AV product misidentifies critical files. Nobody is being "fucked up," but I guarantee some IT guys in China get to charge overtime this weekend. Welcome to IT.

Re:So Symantec did NOT fuck up their software?

[1u3hr]

Corporate "users" all have mechanisms in place...

Well, ideally. But in practice...

Serves them right...

[Ant+P.]

...for running symantec software.

Re:Serves them right...

[Chemicalscum]

Serves them right for running MS Windows.

Isn't Panda a front for Scientology?

Out of the frying pan and into the fire, it would seem.. http://en.wikipedia.org/wiki/Panda_Software

Re:Isn't Panda a front for Scientology?

For anything other than pure on-demand commandline scanning, AVG (http://en.wikipedia.org/wiki/AVG_Anti-Virus) is as far as I'll go.
I don't know what the other brands are thinking, but it's obvious they don't want staying customers. (or they get all their income, and plan to, from 'default' installs and continued licensing to small-business/office computers no one ever uses for more than spreadsheets and mails; and which everyone expects to run slow in the first place)

Re:Isn't Panda a front for Scientology?

[hejog]

I'm a scientologist and it wouldn't bother me either way.

Suprise! :)

Re:Isn't Panda a front for Scientology?

[grolschie]

I'm a $cientologi$t and it wouldn't bother me either way.
Suprise! :)

Perhaps I am slow, but you have to be kidding, right?

Re:Isn't Panda a front for Scientology?

[hejog]

I'm sure there is a nice saying about don't believe everything you read, or something.

Scientology could do lots of good for people (which is does) but its shadowed by stereotypes - so no one will believe them. Ever.

Scientology isn't some evil 'cult', or at least, I've never came across anything like that.

I always just see it equally as absurd as any other religion.. so choose one that works for you, and ignore all the silly websites claiming otherwise :)

PS, I was never brainwashed, unfortunately - maybe it'd make me forget the likes of goatse and tubgirl...

Re:Isn't Panda a front for Scientology?

[grolschie]

So you are a believer in the whole Xenu, thetan, sci-fi story, etc deal?

Out of interest, how much has scientology cost you so far? And how long have you been involved with it? What good has it done you so far?

What do you think about Hubbard's own quotes about profiting from creating ones own religion?

Re:Isn't Panda a front for Scientology?

[hejog]

So you are a believer in the whole Xenu, thetan, sci-fi story, etc deal?

Out of interest, how much has scientology cost you so far? And how long have you been involved with it? What good has it done you so far?

What do you think about Hubbard's own quotes about profiting from creating ones own religion?

Hmm. Okay... I'm not a believer in the whole Xenu thing, per se. But mainly because I don't know /enough/ about it - I am quite open to the idea, but currently - I personally don't believe it. Yet. The whole Xenu thing is a bit of an interesting sore point for the church, and people are very touchy about it. It sucks when people are too embarrassed to talk about their own religion because of peoples incorrect interpretations of it :)

Hasn't cost me anything, well, nothing significant. The odd donation at a church and so on. Nothing huge, no more than going to any other church and leaving a good will donation. I've been involved with it for 5 or so years (I'm 20ish, young, ack) heard about it from a few friends, at the time I was curious about religion -- decided I'd use my Computer Science Logic whilst looking for a religion, and amusingly Scientology came out top.

What good has it done for me? Lots. More confident, talkative, and generally nicer. Before I took Scientology seriously I was the typical closed computer nerd - Now I'm a totally different, nicer, friendlier person.

Quotes are just that, Quotes. They arent accurate, they aren't a persons final belief. I don't take his quote seriously, and quite frankly I wouldn't care if it was true. Its helped me, and it's helped some friends - and I don't know anyone it has hurt. I really really really recommend you check out the Dianetics, if only for your own curiosity. For the sake of $10, its worth the chance that it may make a difference to you.

Re:Isn't Panda a front for Scientology?

[grolschie]

Thanks for sharing that. :-)

I understand why the use of an e-meter in therapy - it seems that it could be employed in other therapies. Are you able to tell me briefly what kind of therapy scientology uses to heal/fix/repair/erase/remove these memories/traumas/depressions/anxieties/fears? The detective of such "engrams" or "implants" seems obvious, but the dealing with them, not so obvious.

I mean for example, lets consider victim of a violent rape who constantly lives in terror, has flashbacks of that past event and has developed social phobia and/or agoraphobia? Providing that the person is willing to seek help and can make appointments at the local COS, how would this be fixed with scientology? How soon could that person expect a reasonable level of freedom from this?

If there were merit in some of scientologies practises, then I think maybe they could be employed elsewhere, separately from the sci-fi and theology that it comes packaged with. Thanks in advance Hejog.

Re:Pity the poor choices of consumers... and pirat

[Dystopian+Rebel]

What does any of this have to do with good design? Are you serious? The whole AV software market is a crutch for the lame design of Monkeysoft.

When you are using the most common OS, you will need some form of anti-virus software. I see you've been drinking the Redmond Red flavour of Kool-Aid. UNIX is a common OS and it's been around for 37 years and networked for all that time. Why is there no AV software market for UNIX? What are the two most common implementation languages for Monkeysoft viruses? Monkeysoft has been on the Internet since about 1995. How much time have Monkeysoft users lost to viruses? Whose OS is the most 'botted?

Is all this Symantec's fault for not protecting Monkeysoft better?

If you replace "common" with "most vulnerable", your statement makes sense.

If a program can be downloaded and run from the internet, it can be a virus. Sure... and if it runs with root or root-like privileges, it can do serious damage. Guess which OS lets that happen? To protect yourself, you can install AV software and dedicate one (or both) of your dual CPU cores to constantly scanning every file that is accessed so you can be "safe". A fine value proposition for your computer investment.

This is Symantec being incredibly irresponsible. Failing to find something like this in pre-update testing (or the failure to test updates) is insane and they should be required to pay for repairs. I agree that Symantec made a serious error in deploying an updated defence for the weak OS that they make money defending. But I bet they'll pay nothing, or at least as much to pirates as they do to licensed owners.

context

You're ignoring the context in which his words were written. He didn't mean he has no sympathy for Chinese people in any circumstance; if you apply a little common sense it's clear that what he means is that he has no sympathy for the Chinese people pirating Windows who got hosed by this Symantec update. Of course he could have been more specific in his wording, but you are completely disregarding the context. If you take someone's words out of context you can make anyone look like an idiot. Context is everything.

Re:context

[jalet]

Sure, I'm not a native english speaker, but I can see where the dot at the end of the sentence was put. "Piracy" has nothing to do with the problem if you had RTFA you would know this.

Re:context

[rohan972]

"Piracy" has nothing to do with the problem if you had RTFA you would know this.

From the summary: Piracy issues may complicate recovery, since once the updates are installed Symantec says the only hope for reviving an affected system is to re-copy the affected DLLs from the Windows restore disks.

Pot, meet kettle.

Re:context

[jalet]

You're talking about TFSummary. TFA contains only one sentence about this, completely disconnected from the rest of the article : the problem has nothing to do with "piracy", ALL users are affected.

Re:context

[rohan972]

The AC you replied to said the OP's comment about having no sympathy for the Chinese was , when taken in context, not based on racism but on his views of software piracy levels in China.

I quote the AC: "He didn't mean he has no sympathy for Chinese people in any circumstance; if you apply a little common sense it's clear that what he means is that he has no sympathy for the Chinese people pirating Windows who got hosed by this Symantec update."

I quote the original poster: "This ought to teach them a good anti-piracy lesson."

The article mentions piracy as significant factor impacting recovery, the summary mentions piracy as a significant factor impacting recovery, and the OP DaMattster said he had no sympathy for the Chinese, which in context of the rest of his post, and certainly the article and summary, would be clearly understood to be in regard to software piracy, not as a result of racism.

Your accusation of racism is without evidence to substantiate it. Even if piracy is not a big factor in the software troubles in China, it is cleary the motivating factor of DaMattster's remark. Your accusation is without merit.

Symantec got it kind of right...

[mysidia]

Windows is a virus, but the proper name would not be Backdoor.Haxdoor... the files should have been detected as W32.Backdoor.MSoft.Windows, but it shouldn't have detected just two DLLs, the whole OS, the whole C:\WINNT and C:\WINDOWS directories. And the proper fix isn't to merely delete the files, the AV software needs to either patch the machine to turn it into a Mac and install OS X... or put Linux/any real OS on it.

Is it just me...

[RelaxedTension]

Or has there been a distinct drop in spam since this happened? :)

take conroll

[sm4096]

I like the hands on approach of reading thought what the update is about, what it fixes and installing it at my own pace. I have done this with windows linux, and anything else I have used. Basically people are willing to abdicate control of their personal computers. Some are stupid and give control to anyone just to download a song, file-sharing software etc. Some give it to the companies they hope will protect them. I would say think of the problems we would have to put up with if those companies where not around. A lot of users are willing to install just about anything on their computers and if not for software warning them and restraining them albeit slightly we all would have a worse time of it. And so long as people install just anything (god help us) it does not matter what Operating system they are running.

Never attribute to malice...

...that which can be accounted for by stupidity.

Norton has been a really, really bad (and insecure) product for years. The fact that they force their product to integrate itself with the proper functioning of the OS itself is a great example of how badly their app is designed.

Ever since Norton and McAfee's whining screed about how they NEED the Vista source code in order to create their product, we see the true colors of how bad their products are. It's just another application, guys, get a grip. If you can't program properly, stop using "access to the source code" as an excuse for why your product is such complete and utter crap. Kaspersky AV never had access to Vista's source code, and they currently have the highest rated AV app.

Nortons down the drain

[c0rrupt0]

That's why Norton's AV sucks. I have been advising people against that package for a while now. I have seen many machines loaded with Norton's, and ad-ware. Not to mention the whole package runs like 6 different applications in the background and is a resource hog. Trend Micro Internet Security is still top dog in my opinion. It is easy On the machine and catches damn near everything. But if your a cheapskate and want free, AVG or Avast(if you have a 64-bit processor).

Antiviruses are scam

[ceeam]

First - how many viruses cause comparable damage _ever_?

Second - once I tried testing several known AVs with some fresh dialers and trojans I've had (mostly as email attachments). Not a single one(!) has been detected by AVG, Avast, and Kaspersky.

All they do is detecting irrelevant (in the age of Internet) old "viruses", wasting your resources, and through occasional fuckups like this one doing real damage. Good thing if your AV is at least free one.

Mod parent insightful!

[Mazin07]

This might be a joke, but it's very very probable that pirated Windows comes with all kinds of "bonus" software, like backdoors, viruses, rootkits, etc. It's just another way for the software pirates to get a little extra income, because other people will pirate their pirated copies (thus spreading their viruses even further.)

Re:Pity the poor choices of consumers... and pirat

[wwahammy]

Read my post again. As I explained, any OS that allows you to run programs as root allows people to run programs that can damage their OS or files. Even if you run something as a standard user you still risk any files that your user account has available to it. Anti-virus isn't designed to protect the OS, its designed to protect people from themselves.

Again as long as users can execute unsafe code, you are guaranteed that some users will. People will download executable files and run them no matter the system and will damage the files that the user has access to. Windows has been moronic to allow everyone to have admin privileges but on Linux you can still mess up your own files, files that a lot of people consider very valuable. AV software can prevent people from running that type of software and losing those valuable files. I don't think anti-virus software is great by any means, I don't use it but if there were enough systems running Linux with average users, people would try to run the types of programs that anti-virus software blocks.

In the end, this story has nothing to do with any particular OS. We're talking about one company who are entrusted to protect their customers property from damage but end up making their customer's systems unusable. If you weren't so busy making your stupid "Monkeysoft" puns, you might realize that.

Of course,

[digitig]

The recovery disk shipped with most systems will reset the computer to factory state, deleting all user files. Everybody here does have a recent backup, don't they? And you have all checked recently that it works?

Re:Pity the poor choices of consumers... and pirat

[that+this+is+not+und]

UNIX is a common OS and it's been around for 37 years and networked for all that time.

I wouldn't make the claim that UNIX has been 'networked' for 37 years. The TCP/IP Stack didn't magically appear on that first PDP-7. Furthermore, for many of the early years of UNIX the 'network' was the computer, i.e. the people who 'networked' together were doing so because they were all logged onto the same timesharing UNIX system with dumb terminals. For years and years of historical UNIX usage, the 'network' was machines dialing each other up using UUCP in the wee hours of the morning to pass around big packets of email from one UNIX system to another.

Hope this helps you figure things out a bit better.

There is more reliable solution

[inews.110mb.com]

There is more reliable solution - AV software named AVAST. See my essentials http://inews.110mb.com/

Lucky me and my machines.

[imkow]

The 10 computers in my office are all with Windows and Norton installed. All of the softwares were brought from an unknown CD vendor at a very reasonable price. At this moment everything seems still fine.
    Except some of the computers have an annoying banner popping up from the bottom-right corner of screen states "You possibly are a victim of privated software". I wish Norton would have taken this banner a malware.

testing is expensive...

[dropadrop]

But the funniest "bug" I've seen in an anti-virus software has come from F-Secure. An ancient version of their software had the uninstaller just delete everything from the folder it was installed in. A distant friend had installed it in c:/ and the uninstall had caused a huge havoc by the time the computer crashed!

Patent violation

[mithras+invictus]

I can see the headlines now: Microsoft violates HaxDoor patents!

veddy cleva grasshoppr

[noshellswill]

Jeeepers how clever of DOD ta leave something extra in somebodies HongKong mailbox. Or wherever those chi-com hackers are hackhackhacking at gov'mnt kit. Listen up Kang! Coupla' Cisco_routers here_out ... coupla' Cisco_routers there_out ... pretty soon it adds up! Hate to have it happen from Mongolia to Vietnam. Eh hoser? I believe historically this is called a "shot across the bow"... or would be if the chi-coms had a real navy.

Paid Software against Piracy?

[dysfunct]

As for the conspiracy theories that surface in the comments: I guess that many people affected by the problem *do* have a genuine (god, how I hate that word) copy of Windows. If I'm not completely mistaken a valid license is required to receive new virus definitions. So why would anybody in their right mind "pirate" the operating system, which is crucial for many aspects of their daily work and for some people the only viable and/or only option known to exist, and then actually buy an overpriced virus scanner for which many better and cheaper or entirely free options exist - especially when it's highly unlikely that their copy of XP came with a 30 day trial version of Symantec products.

Real copy

[don_oles]

Really good words to describe many things happening on this planet: real copy.

Re:Pity the poor choices of consumers... and pirat

[Dystopian+Rebel]

I've already agreed that Symantec blundered. Your point is understood.

Anti-virus software is a Monkeysoft-based market.

You say it's because Monkeysoft is popular. But you admit that Redmond has made a seriously bad design decision. If not for the Internet, Monkeysoft wouldn't have these costly episodes. You called its permissiveness "moronic", I didn't. But we agree there too.

Anti-virus isn't designed to protect the OS, its designed to protect people from themselves.

Hmmm. Given that the OS was damaged in this case, it appears that the OS needs protection too. Bot networks and honeypots prove that this isn't just about userland files. Now in this case, the AV software itself harmed the OS. That SHOULD NOT be possible... but it ~has~ to be possible to give the AV software such access, because other applications have the same access too. Set aside the current news: there are many other examples of Monkeysoft OS being harmed or altered by malware and spyware. I worked in a corporate environment for several years and I know how easily the computer of even a careful Monkeysoft user can be compromised.

In the end, this story has nothing to do with any particular OS.

Given that AV software is a Monkeysoft market, and the fact that well over 98% of all virus reports are about Redmond, this is a nonsensical statement. But we'll agree to disagree.

Re:Pity the poor choices of consumers... and pirat

[Dystopian+Rebel]

Connect two users by whatever protocol and you have a network. It doesn't have to be a "modern" one.

Hmm...

[sesshomaru]

After a Windows Update a couple of days ago, my PC went out. Hmm... a strange coincidence. Too bad I already formatted it and reinstalled from another WinXP disk my roommates happened to have lying around.... This information might've been handy then...

The Norton Virus

[kullnd]

WARNING: A virus has been detected on your computer.
Your computer has been infected with the Norton Anti-Virus Virus .... ....
There was an error removing this virus, please contact technical support
with your license key, windows recover disk, and proof of purchise. .... ....
System halted. .... ....
There was an error loading Windows XP, if this is the first time you have seen....

Hahahaha

Ha ha, ha ha, hahahahahaha

Next time get a Mac. Or maybe Red Flag Linux- this should give RFL a big boost.

And shortly afterward

[Arancaytar]

From: thomson@symantec.com
To: gates@microsoft.com
CC: genuine-advantage@microsoft.com
Subject: Mission Accomplished

Hi Bill,

Done as requested. That will be one billion; pleasure doing business with you.

-John

Re:And shortly afterward

[Servo]

That's just what the CIA wants you to believe.

Great news

[Ticklemonster]

Just more reason for people to move away from the Virus Magnet. Hello, Linux calling!!!!

No sympathy for pirates

[d_jedi]

First off, let me say I have no sympathy whatsoever for anyone who is unable to recover their PC after this snafu because they were running a pirated version of Windows. No sympathy whatsoever.

Now, for all of those who were running a legitimate version of Windows and a legitimate version of Norton who were affected by this problem (probably a small percentage of all systems actually affected..) it really does suck.. and there are two sources of fault, here:

1) MS. Aren't critical OS files supposed to be protected, such that they can't be unwillingly be deleted or modified? Maybe this is part of the reason why MS didn't want AV vendors to have kernel mode access to Vista..

2) Norton (duh). How they could manage to screw this up so badly boggles the mind.

as opposed to the updates here in the states?

[jollyreaper]

Yeah, cuz those run like well-oiled machines, assuming the machines in question are McCormick rapers. (does the work of a hundred men!)

They Got Jack Bauer

...they can get the Symantec guys.

Re:Pity the poor choices of consumers... and pirat

[wirelessbuzzers]

I see you've been drinking the Redmond Red flavour of Kool-Aid. UNIX is a common OS and it's been around for 37 years and networked for all that time. Why is there no AV software market for UNIX? What are the two most common implementation languages for Monkeysoft viruses? Monkeysoft has been on the Internet since about 1995. How much time have Monkeysoft users lost to viruses? Whose OS is the most 'botted? Microsoft was the first company to attain a critical mass. Remember also that worms and similar malware haven't even been around for 20 years, and the first one was released for UNIX.

If you replace "common" with "most vulnerable", your statement makes sense. You have a whitewashed view of security. Linux and Mac are as vulnerable as Windows. Maybe Linux users are more clueful, but if you find holes in, say, OpenOffice or GhostScript or GIMP or mplayer (I'll bet there's more than one), you can trick a power user a decent percent of the time. And occasionally there are remote root holes (or remote holes plus local root holes); several machines in the Harvard CS department got rooted this way last year.

Of course, it can be harder to convince a Linux user to download and run a program directly off the web, since distros have package managers. But I've downloaded and compiled several programs in the past year, and I haven't looked through the thousands of lines of source of any of them (a casual look won't do it, you'll need to go over them with a fine-toothed comb and a static analysis tool).

Sure... and if it runs with root or root-like privileges, it can do serious damage. Guess which OS lets that happen? For almost any purposes, it doesn't matter if the malware gets root. Consider a Linux desktop: if a malicious program gets access to your account, it can steal your files, keylog you (it can get root that way if you ever su or sudo), or install a modded Firefox or extension which sends your bank account info to the attacker. It can send mail, it can attack other machines, it can listen on the network, it can make itself autolaunch via cron or login scripts.

Sure, it can't affect other users, but on most desktop machines, there's only one user anyway. It can't listen on low ports or sniff or spoof packets. It can't install a rootkit, but it can hide itself from the user it's installed on (it can change environment variables to cause your programs to link with a hacked libc, and it can alias the statically linked ones). These things are a big deal on servers, but on desktops they aren't.

chinese

How was the software to know? All those Chinese files look alike.

F-Secure too

[FRiC]

Strangely enough, F-Secure also ran into a false positive on a Windows system file (shdocvw.dll) on the same day, and on the Simplified and Traditional Chinese editions of Windows...

i predict...

A sudden (but temporary) decrease in:

viruses.
Trojans.
Worms.
warez.
spam.
Adware/Spyware.
Corporate espionage.
Copyright infringement.
Baby sales.
Human slaves.
Ebay sales.

Etc...

Don't kid yourselves, this is China my peepz.

Symantec did the world a favor.
And I put my money on it NOT being a fuck up on Symantecs part.

You actually think the majority of Chinese would pay for American software to begin with.

LOL LMAO LOL LMAO

Pegasus Email Client Also Affected

[Forthan+Red]

This update also incorrectly identifies the Pegasus email client executable file as the Trojan.Dropper virus. An email to Semantic got nothing in return except instruction on how to remove a virus that I don't actually have.

Note to self

[symbolset]

Don't project negative moderation in the subject of your comment.