Slashdot Mirror

← Back to Stories (view on slashdot.org)

Vista Security Claims Debunked

Posted by CowboyNeal on from the setting-things-straight dept.

An anonymous reader writes "Apparently Microsoft still hasn't learned that counting vendor acknowledged vulnerabilities isn't a good way to establish the security of an OS. As an analysis of Microsoft's claims on Full Disclosure shows, we see that the methodology used was badly flawed. A bug in Firefox (not to mention emacs), counts as a flaw for Linux, while IE bugs get ignored on Vista's chart. Then we see that vulnerabilities aren't vulnerabilities when they're security-challenged features such as Vista's Teredo. Also, there's far too little consideration given to severity, given that it stoops to counting even extra access restrictions on a file in OSX to have something to show. In short, the original Microsoft analysis was good PR and poor research."

25 of 315 comments (clear)

  1. Microsoft found making PR-FUD-ing research by MukiMuki · · Score: 5, Funny

    In other news, scientists have confirmed that water is, in fact, wet.

    1. Re:Microsoft found making PR-FUD-ing research by Actually,+I+do+RTFA · · Score: 2, Funny

      But, I just quit my job at Google and applied to work at Microsoft based on this: http://slashdot.org/article.pl?sid=07/06/27/131421 9/.

      --
      Your ad here. Ask me how!
    2. Re:Microsoft found making PR-FUD-ing research by Tumbleweed · · Score: 5, Funny

      Au contraire - Gartner Group just released a study which concluded MS Water(tm) was not, in fact, wet*, unlike GNU/Water or H2O-BSD.

      (*) MS Water(tm) tested at temperatures below 0 degrees C and above 100 degrees C, GNU/Water and H2O-BSD tested between 0 degrees C and 100 degrees C.

  2. As Gunnery Sergeant Hartman would say by Anonymous Coward · · Score: 2, Funny

    Well... no shit...

  3. Shocked! by yotto · · Score: 5, Funny

    I am totally shocked. I just bought 10 licences too and threw away all my Linux computers!

    --
    Pulp Audio Weekly - Geek News and Reviews
  4. You don't need to see our identification. by Bombula · · Score: 4, Funny

    These aren't the droids you're looking for.

    --
    A-Bomb
  5. Microsoft "Research" by WilliamSChips · · Score: 5, Funny

    Bears are Catholic. The Pope shits in the woods.

    --
    Please, for the good of Humanity, vote Obama.
    1. Re:Microsoft "Research" by cronot · · Score: 4, Funny

      ... and this is, scientists have concluded, Sparta.

    2. Re:Microsoft "Research" by Gorshkov · · Score: 3, Funny

      Recent longitudinal studies released by the NIH in Atlanta, funded my grants from the Bill Gates foundation, have concluded that scientists are the leading cause of cancer in lab rats.

  6. Now... by Anonymous Coward · · Score: 4, Funny

    Does that sound like a people_ready business to you?

  7. And here I was... by Anonymous Coward · · Score: 5, Funny

    riding a flying pig on my way to get a sweater at the store 'cause I heard Hell had frozen over. At the gamestop next to the sweater store, some kid was playing Duke Nukem Forever, which I thought was an amazing game. ...so what do you mean the report isn't true?

  8. Re:Get The Facts by node+3 · · Score: 4, Funny

    Well, no doubt CmdrTaco carefully sifts through all the tags submitted for every story, and diligently evaluates them for selection. He even, I'm certain, cross-references tags for relationships to other projects to see if one is just an unlabeled continuation of the other. After such fastidious examination, and only then, does it make the grade. A grade which your most impressive tag passes with ease.

    Given Slashdot's exemplary editorial standards, how could it possibly be otherwise?

    This is clearly a gross oversight on Taco's part, and will be looked into with the gravest of concern, there can be no doubt. I suspect your well-crafted tag will don the front page in no time, perhaps even in an extra-crisp font to make up for any negligence and mishandling involved.

    I look forward to it with heightened eagerness, and commend you on the alacrity and aplomb you've shown in this, your all-important tag-choosing endeavor.

    Godspeed, you will prevail.

  9. Submit Macro by WiseWeasel · · Score: 4, Funny

    "I need a submit macro"

    You mean like the "Preview" button right next to the "Submit" one?

    --
    "I like systems, their application excepted", George Sand (French)
  10. Remove the power cord too by EmbeddedJanitor · · Score: 3, Funny

    After extensive research we found that having the computer powered up was the source of all the security flaws. Don't blame MS - they don't make the power cords!

    --
    Engineering is the art of compromise.
    1. Re:Remove the power cord too by Sarisar · · Score: 2, Funny

      Oooooh! I just thought of a cool 'invention'. A power cord that protects 100% against all vulnerabilities both known and unknown!

      (Yes it's a broken cord)

      Perhaps I should call it the iCord? Putting an 'i' in front of the word seems to be the in thing at the moment.

      And don't worry, After I've made my fortune I'll make the cord open source so everyone can make their own iCords!

  11. Vista on Firewalls... by flyingfsck · · Score: 4, Funny

    I haven't seen Cisco jump to run Vista on their Firewall Machines. So, maybe, just maybe, they had a reason to stick to *nix.

    --
    Excuse me, but please get off my Pennisetum Clandestinum, eh!
  12. I Am So Amazed That MS Would Deceive by NeverVotedBush · · Score: 5, Funny

    I mean, in their entire history, when has Microsoft ever done ANYTHING untrustworthy?

    Like literally copying/stealing other people's code line for line and putting it in their OS? (Stacker)

    Like putting in software hooks to see if competing office products were running and then crash them or make them run slow? (WordPerfect)

    Like swapping code in an OS and a browser to make it appear that the browser was integral to the OS to weasel out of antitrust issues? (Win98 / Explorer)

    Naw... I just can't believe that MicroSoft would stoop so low as to try to promote its "ground-up" new OS (that amazingly has many of the exact same vulnerabilities as XP) as being hardened and more secure than Linux and OSX>

    They wouldn't do anything like that, would they?

  13. Re:Teredo by ozmanjusri · · Score: 4, Funny
    It's not about reality, it's about what they will say, how they will spin it

    Look, Windows can't even compete on features against Puppy Linux.

    No Microsoft sales droid will ever get in a pissing contest against a full blown Linux distro with more than 20,000 packages installable. They'd just end up with a wet leg and a deep-seated sense of personal inadequacy.

    --
    "I've got more toys than Teruhisa Kitahara."
  14. Re:The really sad part.... by presearch · · Score: 2, Funny

    you just have low expectations, that's all.

  15. The bug about emacs... by darksith69 · · Score: 2, Funny

    ...was well counted, after all, it's a nice OS with a poor text editor.

  16. Emacs is a bug? by Bob54321 · · Score: 2, Funny

    A bug in Firefox (not to mention emacs), counts as a flaw for Linux...
    I like text editor wars as much as the next guy, but calling emacs a bug...
    --
    :(){ :|:& };:
  17. Re:Thing I learned in the marketing class I failed by adamofgreyskull · · Score: 2, Funny

    Marketing is cheaper than R&D.

    You haven't read an annual company report recently, or ever for that matter?
    You haven't read the title of the grandparent. He said he failed it, sheesh...you people.
  18. Re:Teredo by fonik · · Score: 2, Funny

    I like this argument. My Linux box is extremely secure because my apartment is too messy for anyone to ever find it. It's not filth, it's extra security!

  19. Most Secure Windows ever by number6x · · Score: 2, Funny
    • 486 SX 66Mhz machine running Windows 3.1
    • In Dick Cheney's Bunker
    • No Modem
    • No Token Ring
    • No Banyan VINES
    • No Ethernet or IPX
    • No TCP/IP winsock implementation.
    Most Secure Windows Ever!
  20. Re:Upfront cost isn't the point by Quince+alPillan · · Score: 2, Funny

    Particularly when it comes to computers or any other sort of information technology, which most people view the way the monkeys viewed the black monolith, as a mysterious object to be feared.
    This reminds me of an appropriate bash.org quote:

    #2328 <TeamsterX> man watching 6 MSCE's around a sun box, looks alot like the opening scene's of 2001:space odyssey and the monkey's with the monolith
    And these are people who are supposed to be technically savvy. I can't imagine what people who know nothing about computers would do.