Microsoft's "Dead Cow" Patch Was 7 Years In the Making

← Back to Stories (view on slashdot.org)

Microsoft's "Dead Cow" Patch Was 7 Years In the Making

Posted by timothy on Wednesday November 12, 2008 @07:57AM from the were-they-lean-years-or-fat-years? dept.

narramissic writes "Back in March 2001, a hacker named Josh Buchbinder (a.k.a Sir Dystic) published code showing how an attack on a flaw in Microsoft's SMB (Server Message Block) service worked. Or maybe the flaw was first disclosed at Defcon 2000, by Veracode Chief Scientist Christien Rioux (a.k.a. Dildog). It was so long ago, memory is dim. Either way, it has taken Microsoft an unusually long time to fix. Now, a mere seven and a half years later, Microsoft has released a patch. 'I've been holding my breath since 2001 for this patch,' said Shavlik Technologies CTO Eric Schultze, in an e-mailed statement. Buchbinder's attack, called a SMB relay attack, 'showed how easy it was to take control of a remote machine without knowing the password,' he said."

158 of 203 comments (clear)

Now I get it by Maniacal · 2008-11-12 07:59 · Score: 5, Funny

So that's how they came up with the name 'Windows 7'

--
MG
1. Re:Now I get it by thewils · 2008-11-12 08:03 · Score: 5, Funny
  
  Things look a bit bleak for Windows 2008 then :(
  
  --
  Once I was a four stone apology. Now I am two separate gorillas.
2. Re:Now I get it by mfh · 2008-11-12 08:04 · Score: 4, Funny
  
  So that's how they came up with the name 'Windows 7'
  No, they needed to get some luck for Windows, so they added the lucky number 7 to it. This bug fix was introduced to confuse us all.
  
  --
  The dangers of knowledge trigger emotional distress in human beings.
3. Re:Now I get it by Yvan256 · 2008-11-12 08:16 · Score: 4, Funny
  
  George Costanza works for Microsoft?
4. Re:Now I get it by Anonymous Coward · 2008-11-12 08:24 · Score: 2, Funny
  
  someone wanted to name their kid "Dead Cow"?
5. Re:Now I get it by morgan_greywolf · 2008-11-12 08:49 · Score: 1
  
  Nope. It was named for Jeri Ryan's character on Voyager. Someone at Microsoft has a fixation on her ... posterior region.
  
  --
  My blog
6. Re:Now I get it by cp.tar · 2008-11-12 09:38 · Score: 1
  
  Are you saying that Windows 9 will be the last?
  I'll drink to that.
  
  --
  Ignore this signature. By order.
7. Re:Now I get it by arelas · 2008-11-12 09:58 · Score: 1
  
  That would be me!
8. Re:Now I get it by MooUK · 2008-11-12 10:35 · Score: 1
  
  If Windows 7 is as good as her posterior, then times might be interesting.
9. Re:Now I get it by torry_loon · 2008-11-12 11:30 · Score: 1
  
  It would have been Windows 6 if they hadn't lost their Battlestar Galactica DVDs.
10. Re:Now I get it by initialE · 2008-11-12 13:52 · Score: 2, Funny
  
  "Windows Se7en - What's in the box?" was my personal favorite.
  
  --
  Starbucks, Harbuckle of Breath.
11. Re:Now I get it by MikeDirnt69 · 2008-11-12 23:52 · Score: 1
  
  An Apache baby maybe?
  
  --
  Am I eval()? - http://www.monst3r.com.br
'been holding my breath since 2001 for this patch' by Anonymous Coward · 2008-11-12 08:03 · Score: 5, Funny

...and boy are my arms tired.
P.S. I'm dead.
I forget... by jcr · 2008-11-12 08:06 · Score: 1

When did Hobbit write his paper about CIFS (Common Insecurities Fail Scrutiny)?
-jcr

--
The only title of honor that a tyrant can grant is "Enemy of the State."
1. Re:I forget... by burris · 2008-11-12 08:13 · Score: 2, Interesting
  
  I believe that's "*Hobbit*" ...
  (jan '97)
2. Re:I forget... by spacerog · 2008-11-12 08:19 · Score: 4, Informative
  
  According to Google, 1997. Yeah, over a decade ago.
  
  CIFS: Common Insecurities Fail Scrutiny
  
  - SR
3. Re:I forget... by megamerican · 2008-11-12 08:44 · Score: 1
  
  It must be older than that if the USSR was still around!
  
  --
  If you have something that you dont want anyone to know, maybe you shouldnt be doing it in the first place -Eric Schmidt
Does anyone use this OS any more? by WillAffleckUW · 2008-11-12 08:06 · Score: 5, Interesting

I mean, seriously, most of us have written it off, and it makes bad business sense too.
At work we've cancelled plans to use Win7 and WinVista and are moving to all Linux where we can, just from a staffing level perspective.

--
-- Tigger warning: This post may contain tiggers! --
1. Re:Does anyone use this OS any more? by HerculesMO · 2008-11-12 08:20 · Score: 5, Interesting
  
  Yes, lots of people still do.
  Makes little business sense right now to go to Win7/Vista, but XP is still a smart move for most people.
  It's too bad Slashdotters here are so entranced with the platform, they forget what it's supposed to delivery. I don't really care what OS is on the desktop, so long as it allows us to achieve what we are trying to do. Usually, it's the software that does that, not the OS.
  
  --
  The price is always right if someone else is paying.
2. Re:Does anyone use this OS any more? by Sancho · 2008-11-12 08:27 · Score: 5, Insightful
  
  Of course, if the OS is fighting you all the way while you're trying to work with the software, that's a problem.
3. Re:Does anyone use this OS any more? by HerculesMO · 2008-11-12 08:33 · Score: 5, Insightful
  
  From my experience, the Linux folks that try to work in Windows just simply don't know WTF they are doing.
  Likewise, Windows Admins who work in Linux don't know either.
  It's always easy to curse the platform if you don't have the knowledge. I've built stable environments out of Windows and out of Linux, and they all serve their purpose with perfectly fine uptime. Just a different delivery platform for different things.
  
  --
  The price is always right if someone else is paying.
4. Re:Does anyone use this OS any more? by boredhacker · 2008-11-12 08:37 · Score: 2, Funny
  
  Yes, people certainly do still use "this OS" (i.e. Windows)... people who produce costly products with little value.
  
  :P
5. Re:Does anyone use this OS any more? by heffrey · 2008-11-12 08:38 · Score: 5, Funny
  
  Hardly anybody still uses Windows, it's dying out.
6. Re:Does anyone use this OS any more? by qoncept · 2008-11-12 08:39 · Score: 2, Insightful
  
  If you've used Windows in a corporate environment and still feel that way, there is something wrong with your organization. I've been with my current company for just over a year now and yesterday I called the help desk for my first Windows related problem. It's stable, period. Now, all the antivirus, security, firewall etc they install makes the thing so slow it's awful to use, but that's beside the point.
  
  One thing is for sure, though. I don't want to make an 'Impress' presentation and send it to a client unless I'm sure they are going to be able to open it in Powerpoint.
  
  --
  Whale
7. Re:Does anyone use this OS any more? by Sancho · 2008-11-12 08:40 · Score: 4, Insightful
  
  I'm not specifically referring to tasks which are "hard to do" in the OS--I'm referring to the incessant stream of vulnerabilities in various components that makes working with Windows a virtual minefield.
8. Re:Does anyone use this OS any more? by DAldredge · 2008-11-12 08:50 · Score: 3, Funny
  
  I do. And I like Vista too.
9. Re:Does anyone use this OS any more? by tgd · 2008-11-12 08:52 · Score: 1
  
  "most of us"
  You might want to expand your world-view slightly... even if you are not a fan of their products, living in THAT fantasy world will get you nowhere.
10. Re:Does anyone use this OS any more? by tbannist · 2008-11-12 08:54 · Score: 2, Insightful
  
  Actually, I thought that was specifically the point. If people hate using their computer, then you're doing something wrong.
  It's about getting the job done, but Microsoft has consistently been the roadblock. Microsoft is the barrier to compatibility. They're the roadblock to having everything "just work". The Windows monopoly has to end before we can move forward again.
  
  --
  Fanatically anti-fanatical
11. Re:Does anyone use this OS any more? by heffrey · 2008-11-12 08:58 · Score: 1
  
  people who produce costly products with little value
  The market says otherwise.....
12. Re:Does anyone use this OS any more? by Anonymous Coward · 2008-11-12 09:06 · Score: 3, Funny
  
  Good riddance, it's been a total pane since day one.
13. Re:Does anyone use this OS any more? by Duckie01 · 2008-11-12 09:07 · Score: 4, Insightful
  
  If you've used Windows in a corporate environment and still feel that way, there is something wrong with your organization. I've been with my current company for just over a year now and yesterday I called the help desk for my first Windows related problem.
  Perhaps the gp was on the other end of the line, dealing with the nightmare to keep the rest of the organization including you, clear from it. In other words, your experience with your office desktop computer might say more about the quality of the IT department that installed the OS than about the flaws in the installed OS.
  
  It's stable, period. Now, all the antivirus, security, firewall etc they install makes the thing so slow it's awful to use, but that's beside the point.
  No, that is *not* beside the point. You see, if you *need* to bog down your OS with third party software to keep it working reliably at all, I'd say that the flaws in this OS are exactly what causes your pc to slow down to the point that it's awful to use.
  
  One thing is for sure, though. I don't want to make an 'Impress' presentation and send it to a client unless I'm sure they are going to be able to open it in Powerpoint.
  Yeah or in something else they might have, like Impress ;) I actually don't know Impress, btw. But I get your point.
14. Re:Does anyone use this OS any more? by squallbsr · 2008-11-12 09:11 · Score: 1
  
  Netcraft confirms it!
  
  --
  Sleep: A completely inadequate substitution for Caffeine.
15. Re:Does anyone use this OS any more? by TBerben · 2008-11-12 09:13 · Score: 1
  
  Don't be silly, it's neither dead nor dying until Netcraft confirms it.
16. Re:Does anyone use this OS any more? by HerculesMO · 2008-11-12 09:14 · Score: 4, Insightful
  
  In the 7 years as a Windows Sysadmin I've seen my job getting easier and easier by taking a few proactive steps to corporate use of Windows.
  For server use, it's perfectly fine. I have a Windows file cluster running over a year without an downtime, but we've taken cluster members offline for patches in turn, and failed back to the alternate which is a net of 0 downtime.
  We use strict policies on the desktop, and don't allow users to do things that are going to cause problems. Mostly, this includes *not* giving them administrative rights, though we do delegate some things out.
  It's like any other system. The problem is that Windows is so large an ecosystem, and so many folks that 'represent' Windows sysadmins pretty much suck at their job, or are MCSEs on paper and not in practice, then it does a disservice to what I feel is a perfectly fine OS for daily use, and corporate use. I have no 'virtual minefield' because I know my business well, I know my job well, and I perform well in bringing harmony between them (the business and the IT use).
  It's like ANY system (*nix included), because if you have an incompetent sysadmin, you will have problems on your domain and infrastructure. If you have a competent sysadmin, you won't see anything wrong. Our users are largely very happy, and that's done by internal auditing (mandatory surveys, as we represent 19000 employees country wide), and consistently the 2500+ userbase I work with and for rank me highest of the family of companies I work for in their satisfaction in their computing needs.
  Again, it's not the platform at fault, it's the admins around it. If you feel Windows is a virtual mine field then it may indicate your talents lie elsewhere (*nix), and as such should keep to the business you know, rather than tell folks who run Windows successfully that they have inherent problems at hand they aren't aware of.
  
  --
  The price is always right if someone else is paying.
17. Re:Does anyone use this OS any more? by stevied · 2008-11-12 09:20 · Score: 4, Informative
  
  I've hacked an interesting little solution together for my household, which I'm sure would scale. I've been using Linux for about 13 years, and have forgotten more tricks than most people know. Over that time I've done a certain amount with Windows, too, but the lack of a rich toolset and open / free documentation and source always put me off spending too much time on it. I understand things are a bit better now on those fronts, but I chose where to invest my time ages ago. I've certainly not bothered about keeping up to speed, have no experience with Vista, Office, 2007, etc.
  Anyway .. I have to provide a Windows environment for a family member who's really not up to learning anything new. I wanted to be able to manage it, secure it, control changes to the configuration, etc., etc., and eventually hit on the idea of just running XP inside VBox on Ubuntu. It starts automatically, changes to the main Windows partition are discarded on each shutdown, and I can do all my management with ssh (and occasionally rdesktop if I need to actually fiddle with Windows, which is rare.) Performance is fine even on old hardware.
  Virtualization on the server is obviously mainstream now, and I guess many users are running virtualization software themselves to provide access to apps on other platforms and run old software. I haven't seen much about using virtualization as a platform for managed desktops though, and I reckon it has some advantages: moving images between machines when hardware fails or users move departments; change control; configuration testing, etc., etc. Knowing you've got the exact same disk image in use on a herd of workstations, regardless of hardware, seems like a good thing for peace of mind ..
18. Re:Does anyone use this OS any more? by Tubal-Cain · 2008-11-12 09:25 · Score: 3, Informative
  
  One thing is for sure, though. I don't want to make an 'Impress' presentation and send it to a client unless I'm sure they are going to be able to open it in Powerpoint.
  It may give you peace of mind to know that MS released the specs on their binary formats in late June, so the OOo team had about 2.5 months to fix their implementations in version 3. If they didn't manage that, they should have them in the next release.
19. Re:Does anyone use this OS any more? by HerculesMO · 2008-11-12 09:32 · Score: 1
  
  You can actually get ESX Server for *free* now, you just don't get management tools.
  But if you know Linux well, it should be rather irrelevant. I've been tooling around with it, Hyper-V as well... VMWare still has a lot of advantages but at the cost of Hyper-V.. I dunno which to choose given the performance is similar, but scalability lacks on Hyper-V. I'm sure they will add it in, and for $25 or whatever per server, it's next to nothing to get using it.
  
  --
  The price is always right if someone else is paying.
20. Re:Does anyone use this OS any more? by boredhacker · 2008-11-12 09:33 · Score: 1
  
  The market says otherwise.....
  Which market are you talking about exactly?
  
  MSFT 5yr
  
  GOOG 5yr
  
  AAPL 5yr
21. Re:Does anyone use this OS any more? by ccool · 2008-11-12 09:43 · Score: 1
  
  One thing is for sure, though. I don't want to make an 'Impress' presentation and send it to a client unless I'm sure they are going to be able to open it in Powerpoint.
  Yeah or in something else they might have, like Impress ;) I actually don't know Impress, btw. But I get your point.
  I would normally use PDF in that case. Also, I don't like the fact that they can easily change the presentation if I send a Impress/Powerpoint file...
22. Re:Does anyone use this OS any more? by heffrey · 2008-11-12 09:49 · Score: 1
  
  Not those markets. I was referring to the sales of Windows. It appears to be the dominant client OS and has growing market share in server space.
23. Re:Does anyone use this OS any more? by Cowmonaut · 2008-11-12 09:54 · Score: 4, Insightful
  
  How, HOW is this Flamebait? I happen to like Vista as well, now that SP1 is out and the majority of my driver issues are resolved. In fact, literally the only issue I have with my system currently is a VERY small sector on my hard drive or bad memory space on a single stick. I'm not sure which, I occasionally (3 times a month) blue screen due to an issue relating to one or the other. For all I know, its really my motherboard since memtest and SMART test my hardware fine.
  Just because YOU don't like Vista doesn't mean others don't. On my desktop I happen to think my system runs smoother and faster and is easier to fix than with XP. To each his own, like several other +5 Insightful in this thread have mentioned...
24. Re:Does anyone use this OS any more? by malkavian · 2008-11-12 09:58 · Score: 5, Insightful
  
  Hear hear. I've been running UNIX and Windows in admin capacity since the early '90s. The biggest problem I've seen at the moment is caused by marketing. Microsoft just refuse to stop advertising Windows servers as being so simple the cat could administer it.
  With that message on the table, HR departments get the idea that all it then takes to administer servers is one cat and a magic wand. So they create low paid jobs for 'admins' that don't actually know much about administration (as it's so easy, who actually needs skills in it 'eh?).
  UNIX tends to get better results overall, largely because it's seen as a skilled job. They pay the money, they require that you know what you're doing.
  Where you get admins that know the detail on Windows to the depth that UNIX gurus know UNIX, comparable results are obtained.
  Now, if only Microsoft would stop telling suits that all they need to administer Windows is someone with one finger and half a brain, then the rep. of Windows would increase dramatically. However, there's money to be made today by churning out an MCSE who two weeks ago didn't know what the power cable plugged into. Who cares about the future of the platform when you can advertise tomorrow with a new glossy pamphlet, and make money today? Well, apart from the people who really understand system administration, and hey, what do they know?
25. Re:Does anyone use this OS any more? by WillAffleckUW · 2008-11-12 10:06 · Score: 2, Interesting
  
  Market cap is a reference to net revenue multiplied by copies.
  If we were to do a simple math exercise, we would see that if they (as they did) double the price of Windows (WinVista and Win7) but only lose 40 percent of the customers, then they end up with INCREASING MARKET SHARE.
  Even if the number of people actually losing it decreases.
  Even if many copies of WinVista are rebuilt as either WinXP or Linux (or BSD).
  Simple math exercise any first year economist could do.
  
  --
  -- Tigger warning: This post may contain tiggers! --
26. Re:Does anyone use this OS any more? by HerculesMO · 2008-11-12 10:08 · Score: 2, Insightful
  
  There is something to be said about *nix platforms always championed by the 'geeks'. Windows is GUI based to be sure, but there are behind the scenes things (registry, hosts files, policies, clustering, etc) that is not as intuitive as people think it may be. That's also where a LOT of problems occur, and cause the BSODs and other things that the *nix fans love to jump at.
  I'm not really a proponent of Windows, or Unix. I am a proponent of *getting things done*. Now whether I find *nix to do a job better, faster, cheaper, or Windows, that's the platform I'll do it off of. More often than not, it's actually cheaper (in terms of FTE billing) to do the job in Windows. It's not universally true, but it holds true in a lot of client/server applications.
  As far as Microsoft advertising Windows to be more hard to use -- I don't know... I think people who use Windows and are 'sysadmins' (and I use quotes on that on purpose) are the ones who will continue to delude themselves that they can 'figure it out' without any study or knowledge. The amount of reading I've done on the ability to edit active directory is insane, and unexpected from me before I actually scratched the surface. And it's the same idiot sysadmins who try the same thing in 'figuring it out' and wreak havoc for the entire organization.
  
  --
  The price is always right if someone else is paying.
27. Re:Does anyone use this OS any more? by jargon82 · 2008-11-12 10:22 · Score: 1
  
  Desktop virtualization might not be as hot as server virtualization, but it's certainly nothing new. I have a client with 5 IBM blade chassis, which are mostly dedicated to running VMs for desktop use. They have desktop devices with a VGA and keyboard/mouse plugs, to which they plug in everything else (I think wyse makes them, though I may be wrong. The desktop stuff is outside my realm).
28. Re:Does anyone use this OS any more? by Bearhouse · 2008-11-12 10:22 · Score: 1
  
  Agree, neat & easy. I do this for the kids. (I've been around a while too..started with an RM 380Z then IBM S/3).
  Is it ready for prime time on corporate desktops? Has been tried, (not just via virtualisation, which I agree has come on a lot), but also more simply by just 'locking' the client desktop. In each case, result similar - users complaining about lost settings, tweaks and sometimes (OK, illegally-installed) apps.
  Will the growth of Google Apps, Salesforce.com et al. neuter the desire of PC users to do what the hell they want with their desktop, (even if that means screwing it up?), nope.
  I remember the glow in my clients' eyes when they said 'you mean if we buy a System/36 we can buy and run the programs we WANT?'
  Plus ca change...
29. Re:Does anyone use this OS any more? by Sponge+Bath · 2008-11-12 10:40 · Score: 5, Funny
  
  ...stop telling suits that all they need to administer Windows is someone with one finger
  Damn skippy! Alt-Ctrl-Del takes three fingers.
30. Re:Does anyone use this OS any more? by HerculesMO · 2008-11-12 10:42 · Score: 1
  
  Hah, I laughed at that one :)
  But in honesty -- if you have ILO (HP Servers), you can just click a button.
  Truly one finger CTRL-ALT-DEL :)
  
  --
  The price is always right if someone else is paying.
31. Re:Does anyone use this OS any more? by stevied · 2008-11-12 10:49 · Score: 1
  
  True, I guess with modern server and network performance and reliability fairly dumb terminals are possible again (there was a decade or so when it was all rather iffy, beginning about the time that people started using Windows.) There might be a niche for poorly connected workstations, though - offices in locations with no broadband, laptops ..
32. Re:Does anyone use this OS any more? by stevied · 2008-11-12 10:50 · Score: 1
  
  Ah yes, the eternal tension between empowering users and protecting them from themselves :)
  Sticking user profiles somewhere writeable should be enough for 90% of users. For those more trustworthy and with more need for customization, their own personal disk image should do the trick. It still means firewalling and virus scanning can be run on the host where it can't be subverted, and disk images can be shunted around and rdiff'd for backups, etc.
  The only snag is that playing Direct X-requiring games is probably out, and I'd bet that's what would underlie most of the moaning ;-)
33. Re:Does anyone use this OS any more? by benjymouse · 2008-11-12 10:53 · Score: 4, Informative
  
  You could have just used Windows SteadyState Hint: Can revert harddisks state at each reboot while still allowing windows update to run and make persistent changes, can leverage much of the same policies (restrictions) Windows allows in a domain, but without the central AD. Among other things.
  
  --
  Reading slashdot one-liner: (irm http://rss.slashdot.org/Slashdot/slashdot).rdf.item | fl title,desc*
34. Re:Does anyone use this OS any more? by Bearhouse · 2008-11-12 11:22 · Score: 1
  
  Oh yes - Direct-X. Yet another failed USP for Vista.
  Shame OpenGL is - still - not 'there' yet. Optimised drivers for Linux or BSD - where are they, outside of high-end CAD cards? Real Soon Now (c) Pournelle.
  You're right - it's always the 'emotional' apps that somehow fire people up. Funny how the business case evaporates in front of the VP.
  Still, the user still hates you forever for saying 'no'. Lose/lose. I'm now handing out 200$ Asus EeePCs for those situations. Dual boot in Linux/Win, and user can restore from 'bricked' to original config in 30 seconds...high CPU and FPS game playing - unfortuantely - impossible ;-)
35. Re:Does anyone use this OS any more? by conlaw · 2008-11-12 11:24 · Score: 4, Interesting
  
  Windows is GUI based to be sure, but there are behind the scenes things (registry, hosts files, policies, clustering, etc) that is not as intuitive as people think it may be. That's also where a LOT of problems occur, and cause the BSODs and other things that the *nix fans love to jump at.
  Yes, my penultimate reason for leaving Windows was all of those hidden problems like "why is xxx.dll using 92% of my capacity? and WTF is xxx.dll anyway?" MS would never tell anyone the answers so you had to go to all of the forums where people volunteer to help you, but first you have to download and run a spy seeker, an ad finder, a virus detector and "Hijack this." BTW, I have great respect for these volunteers but they shouldn't be needed in a system that I paid for.
  Just to forestall questions, my ultimate reason for leaving was when I read what Microsoft Genuine Advantage was going to do, rather than blindly pushing the download key so that I could get this "advantage."
36. Re:Does anyone use this OS any more? by Thaelon · 2008-11-12 11:33 · Score: 3, Insightful
  
  What format was that survey in?
  I recently had the opportunity to design a survey. And preemptively learned from the mistakes at UPS.
  We started out with a ton of questions we thought were good, then scrapped the idea and asked three open ended questions with big free form text fields.
  Another group went ahead and asked a bunch of continuum and multiple choice questions.
  In their survey everything looked peachy.
  In ours (the freeform one) results were considerably less favorable, and considerably more useful.
  Usefulness can be lost especially easily when you simply boil the continuum questions down to percentages. What if that mere fraction of a percentage of your employees that are extremely dissatisfied are crucial to it's function? Or if you didn't ask the right questions?
  It's really easy to create a survey that tells you absolutely nothing useful.
  
  --
  Question everything
37. Re:Does anyone use this OS any more? by stevied · 2008-11-12 11:40 · Score: 1
  
  Interesting - I had absolutely no idea that existed, shows how out of touch I am. Personally, I'll stick with my implementation, because it gives me a Unix host and pretty good confidence in the non-"subvertibility" of the change control (I couldn't - quickly - find any details of what level Windows Disk Protection works at), but I'll certainly suggest it for anyone who needs a Windows-based solution ..
38. Re:Does anyone use this OS any more? by stevied · 2008-11-12 11:48 · Score: 1
  
  Still, the user still hates you forever for saying 'no'. Lose/lose. I'm now handing out 200$ Asus EeePCs for those situations. Dual boot in Linux/Win, and user can restore from 'bricked' to original config in 30 seconds...high CPU and FPS game playing - unfortuantely - impossible ;-)
  Neat. It'll be interesting to see how they get treated. Something tells me people may "connect" better with a portable device that small, than a damn great desktop on a desk wired to the network. Hopefully people will feel more responsible for them, or at least their data ..
39. Re:Does anyone use this OS any more? by Jabbrwokk · 2008-11-12 11:53 · Score: 1
  
  We use strict policies on the desktop, and don't allow users to do things that are going to cause problems.
  
  That must be a long list.
  Seriously though, we use Macs in our office and one person here has the touch of death for computers. He was given a brand-new iMac running Leopard, clean install, and within a month he has managed to get the computer so bunged-up it won't even log out. What did he do? "Nothing," apparently.
  I hate to say it, but things were better when the computers were mostly locked out by the previous tech, a permission nazi, and only a few computer-savvy people like myself with our collection of stolen passwords were able to make modifications. That's the only way to keep the PEBKACs from making things a splode.
40. Re:Does anyone use this OS any more? by WillAffleckUW · 2008-11-12 12:25 · Score: 1
  
  (sorry meant "even if the number of people actually USING it decreases)
  
  --
  -- Tigger warning: This post may contain tiggers! --
41. Re:Does anyone use this OS any more? by HerculesMO · 2008-11-12 13:22 · Score: 3, Informative
  
  We didn't initiate the survey (it comes from a third party, and we don't know when it goes out), but it was about your user experience, what problems you have, how quickly they are resolved, that kind of thing.
  Given the 'marks' our department gets consistently, and the bonus *I* get as a result afterwards, I am going to assume that I'm doing okay. Besides, I'm one of the few sysadmins that puts my name out 'in the wild' for the business users to get a hold of me. I don't answer helpdesk calls, but at least people know who's running the systems they are on, and who can help them if there's an issue.
  
  --
  The price is always right if someone else is paying.
42. Re:Does anyone use this OS any more? by NatasRevol · 2008-11-12 14:33 · Score: 1
  
  That's cool.
  http://milw0rm.com/platforms/osX
  Says the latest remote exploit for OS X is when you're using 1+ yr old Quicktime.
  Nice to know.
  Then there's this:
  http://milw0rm.com/platforms/windows
  Holy crap. Just keep scrolling....
  
  --
  There are two types of people in the world: Those who crave closure
43. Re:Does anyone use this OS any more? by SunTzuWarmaster · 2008-11-12 15:15 · Score: 1
  
  Thank the Lord that *nix is so intuitive that you need have need of a support forum.
  I support Linux, I really do, but the community aspect is a large part of solving problems in any environment. Hint: not just approved Windows or Linux people can solve problems, or have them.
44. Re:Does anyone use this OS any more? by davolfman · 2008-11-12 17:36 · Score: 1
  
  It may help though that you don't have to be independently wealthy to teach yourself Unix administration these days. I'll bet that the amateur Linux admins who know their way around /etc far outweighs the amateur windows admins who can figure out on their own what registry key they need to tweak to get the job done when they can't sift through enough trash returns on Google.
45. Re:Does anyone use this OS any more? by caller9 · 2008-11-12 17:45 · Score: 1
  
  XenServer5 has a mode that is essentially custom made for this. It "streams" the OS and applications from a single image to multiple VMs. Clients connect to the VMs via RDP on thin clients. They're blending some of the Citrix Metaframe stuff with Xen VM and some apparently something else for the storage layer. There are a few modes for storage, one writes changes locally to attached storage on the VM Host. Another uses a RAM Disk. I think the last streams back to a difference/snapshot on the central SAN/NAS. From their propaganda, which I kind of like, you can upgrade an application, say Acrobat Reader or even AutoDesk stuff and it gets pushed to the ppl on reboot. The only issues I've had with RDP thin clients (Neoware/linux, now HP) is attaching peripherals other than a keyboard and mouse. We have managed to put cash drawers and receipt printers on them though. Had to do some custom scripting to get the terminal server to act correctly though. It also occasionally gets pissed off with thumb drives on public machines. You still don't save much on hardware with any large workloads. Its not like that 150MB instance of Outlook gets any smaller on a VM, you just have multiples of it on a single server.
46. Re:Does anyone use this OS any more? by Nazlfrag · 2008-11-12 18:20 · Score: 1
  
  On my ancient Amstrad XT the UK keyboard mapped shift-tab (or was it shift-capslock..) to delete. I could just mash the buttons on the left hand side with my little finger for a one finger salute. For some reason I really miss that old keyboard.
47. Re:Does anyone use this OS any more? by Nazlfrag · 2008-11-12 18:49 · Score: 1
  
  So it crashes 3 times a month, and the blue screens don't tell you anything at all useful about what failed, where it failed or why. They really went the extra mile on the backwards compatibility didn't they! Hopefully they'll have it patched sometime in the next 7 years or so.
48. Re:Does anyone use this OS any more? by Felixk · 2008-11-12 20:05 · Score: 1
  
  Well the first thing you should be asking is is this program that is using 90% of "my capacity" linked to me asking what capacity am I using? or is it linked to the P2P program I have running with x users leeching and being leeched from, while running the defrag program. Also it is a simple matter to determine what functions a dll is offering. It is a little tricker determining what hidden functions(in kernel mode) those public functions end up calling though. The sad fact is is that computer science and the engineering abstracts are really really complex. After all the universe is using us to make these "things" for the first time, and well lets just say that we are closer to finding a cure for cancer than we are to making the first computer hardware/software no problems ever system.
  
  --
  Disseminate the Power!
49. Re:Does anyone use this OS any more? by Hucko · 2008-11-12 20:19 · Score: 1
  
  Hogwash, people dont know Windows. Ive been a linux bloke for 4 years, a windows98 (hey, Is poor and spent all my dosh on the win98 pc) bloke previously. Ive been working as a tech with a managed corporate implementation of winxp for the past 3 months.
  Im constantly telling people how to do little things like move a window around to where you want it! These are people who have been using Windows since its inception.
  They dont want to move to other systems because it might not be compatible then proceed to tell me of the time they had compatibility problems between office versions. It is fear that keeps people on windows, not knowledge.
  
  --
  Semi-automatic amateur armchair Australian philosopher; conjecture ready at any moment...
50. Re:Does anyone use this OS any more? by The_reformant · 2008-11-12 21:40 · Score: 1
  
  Congratulations, you have pushed the octaganal shaped brick through the triangular hole.
  
  --
  I have discovered a truly remarkable sig which this post is too small to contain.
51. Re:Does anyone use this OS any more? by stevied · 2008-11-12 22:26 · Score: 1
  
  That sounds like a pretty cool merge of the two concepts. Despite the lack of hardware savings, I would assume the manageability benefits are worth having..
  Its not like that 150MB instance of Outlook gets any smaller on a VM, you just have multiples of it on a single server.
  If you let multiple clients attach to one VM, presumably you at least get the benefit of sharing the executable / DLL pages (I assume Win32 does this the same way *NIX does) ..
52. Re:Does anyone use this OS any more? by stevied · 2008-11-12 22:27 · Score: 1
  
  There is a certain truth behind that ;-) But it seems to fit the problem and my particular skill set nicely. For added complexity, I've added an X server running on Windows running on the VM .. The aim is to migrate gently, one-at-a-time, to Linux apps, then drop the VM (or at least only access it via Seamless RDP for the one Win32 app I may not be able to get rid of.)
  If you're thinking, by this point, that I'm understimulated by my day job, you would be right!
53. Re:Does anyone use this OS any more? by stevied · 2008-11-12 22:29 · Score: 1
  
  Absolutely :-) I am aware, though, that I'm getting a bit out of touch. I realize that when I'm floundering around in, say, GNOME guts, that I don't really know how it all hangs together. Dbus? gconf? There seems to be much less info about them in common currency within the culture, compared to more established parts of the system. Oh, well ..
54. Re:Does anyone use this OS any more? by clickety6 · 2008-11-12 22:37 · Score: 1
  
  nah, it takes three appendages, as any clever DICK with one FINGER NOSE...
  
  --
  ----------------------------------- My Other Sig Is Hilarious -----------------------------------
55. Re:Does anyone use this OS any more? by DaveDerrick · 2008-11-13 02:01 · Score: 1
  
  If the OS is so insecure that it makes your system easy to compromise, thats an OS problem not software.
56. Re:Does anyone use this OS any more? by Ozric · 2008-11-13 02:02 · Score: 1
  
  I've built stable environments out of Windows and out of Linux, and they all serve their purpose with perfectly fine uptime.
  You contradicted yourself, and you got an insightful. Maybe you should be in politics.
  No really this is true for the most part, I have also witnessed UNIX admins who are worthless in Linux. I have no explanation for that.
  Out
57. Re:Does anyone use this OS any more? by DAldredge · 2008-11-13 02:19 · Score: 1
  
  Mine has never crashed. How do I make it crash?
58. Re:Does anyone use this OS any more? by the+entropy · 2008-11-13 19:12 · Score: 1
  
  Because 2.5months is enough to read thousands upon thousands of pages of documentation and fix an implementation that spans 300MB worth of source code.
  Yeah right.
59. Re:Does anyone use this OS any more? by caller9 · 2008-11-25 15:12 · Score: 1
  
  Sorry for the late reply. Windows RDP only shares app memory as well as the application does. So maybe shared libraries get loaded once, but application data like a cache-glut of email and calendar items are process specific. That is the majority of the problem with Outlook. People that have 3000 items in their inbox and IT bosses without the backbone and/or policy backing to nuke 'em.
my prayers are answered! by Trepidity · 2008-11-12 08:08 · Score: 5, Funny

Seven years ago, The Register devastated me with this terrible news:

It's backward compatibility that has MS in a trap now. "NTLMv2 was created to address many of these issues, and if Windows came configured to use only NTLMv2 these would not be issues, unless the user knowingly opened himself up to allow communication with older operating systems," Sir Dystic noted.
[...]
However, if for some reason it's necessary for you to use the many thrilling features of Windows networking without NTLMv2, then there is absolutely nothing you can do but pray.
Finally, I can use my favorite thrilling NTLM features without giving in and using NTLMv2!

--
10 PRINT CHR$(205.5+RND(1)); : GOTO 10
1. Re:my prayers are answered! by Bert64 · 2008-11-12 19:08 · Score: 1
  
  Backwards compatibility and just plain shoddy design...
  Their passwords are typically hashed twice, once for backwards compatibility using a laughable algorithm and once for newer systems using a not quite so laughable algorithm.
  And it's not like unix where the only thing to interact with the password hash is the login service (xdm, ssh etc) the hashes are reused for all kinds of things like smb connections, so while on unix you can substitute in a new encryption cipher with ease on windows it would break lots of things.
  
  --
  http://spamdecoy.net - free throwaway anonymous email - avoid spam!
SMB? by EraserMouseMan · 2008-11-12 08:09 · Score: 3, Funny

Could a Windows Server Admin worth his/her salt please explain to us what SMB is, who would use it, and if there was a workaround that made the vulnerability a non-issue?
1. Re:SMB? by corsec67 · 2008-11-12 08:13 · Score: 5, Informative
  
  SMB is used by Windows for file/printer sharing.
  
  --
  If I have nothing to hide, don't search me
2. Re:SMB? by eln · 2008-11-12 08:14 · Score: 5, Informative
  
  http://en.wikipedia.org/wiki/Server_Message_Block
  Also,
  http://justfuckinggoogleit.com/
3. Re:SMB? by Walpurgiss · 2008-11-12 08:14 · Score: 1
  
  Not really a server admin, but SMB stands for server message(messaging?) blocks. SMB is the MS windows file sharing standard basically, and Samba is basically an implementation of it for linux/unix.
  
  I would hope enterprise environments would use something a bit more sophisticated than windows file sharing. Even then, I doubt any business would have any box with smb/samba enabled without a firewall preventing internet based or external smb connections.
4. Re:SMB? by pejyel · 2008-11-12 08:17 · Score: 1
  
  No need to be a windows server admin.
  SMB is the the protocol used by windows for networking (files, printers, etc... sharing).
  It might be a bit more famous through the story of its Linux implementation Samba, and the trials Microsoft lost for refusing to open the specifications needed for interoperability.
  
  --
  AltSlashdot. Because f'k the beta
5. Re:SMB? by blincoln · 2008-11-12 08:21 · Score: 1
  
  I would hope enterprise environments would use something a bit more sophisticated than windows file sharing.
  Such as?
  If you have Windows clients and Windows servers, SMB is the most common way to get files between them. This is true whether you're connecting two Windows machines to your home wifi router or you're running a corporate environment with tens of thousands of Windows machines on it.
  
  --
  "...always new atoms but always doing the same dance, remembering what the dance was yesterday." -Richard Feynman
6. Re:SMB? by QuantumRiff · 2008-11-12 08:24 · Score: 3, Interesting
  
  Okay Mr. Quick with the link.. Where does the "dead cow" Reference come from?
  
  --
  
  What are we going to do tonight Brain?
7. Re:SMB? by Anonymous Coward · 2008-11-12 08:35 · Score: 1
  
  I don't know, but I know all about super cow powers.
8. Re:SMB? by Anonymous Coward · 2008-11-12 08:38 · Score: 5, Funny
  
  It took me a while, but apparently Sir Dystic was(is?) a member of The Cult Of The Dead Cow (reference).
  What a crappy headline. I hate teasers like that.
9. Re:SMB? by Anonymous Coward · 2008-11-12 08:39 · Score: 2, Insightful
  
  Windows file sharing is far, far more sophisticated than other file sharing solutions that work out-of-the-box in various operating systems. NTFS provides a level of detail and control over permissions that is unsurpassed, and its integration with Active Directory makes other services look like a joke.
  
  Samba's primary weakness is that it doesn't run on a Windows file system.
10. Re:SMB? by corsec67 · 2008-11-12 08:45 · Score: 5, Informative
  
  http://en.wikipedia.org/wiki/Cult_of_the_Dead_Cow
  and
  http://en.wikipedia.org/wiki/SMBRelay
  
  --
  If I have nothing to hide, don't search me
11. Re:SMB? by Anonymous Coward · 2008-11-12 09:10 · Score: 1, Informative
  
  Cult of the Dead Cow, probably. Oldskool hacker group, probably most famous for the Back Orifice trojan^W remote administration utility.
12. Re:SMB? by TuxThePenguin2205 · 2008-11-12 10:14 · Score: 3, Interesting
  
  When I ran some benchmarks on NT4 back in the day file transfer speeds over 10baseT was half that of FTP .. I haven't found a use for SMB outside homogeneous Windows set-ups that can't be beaten by alternate solutions.
C2MyAzz by Anonymous Coward · 2008-11-12 08:10 · Score: 5, Interesting

Hmm - there was an attack called C2MyAzz that was even simpler than the man in the middle attack. It would just spoof the handshake between client and server. The attacking workstation would watch for client->server message requesting authentication. The attacking workstation would send a packet back to the client before the server, asking the client to send back a clear-text password. Much easier than a man-in-the-middle attack, and it worked well. When it was released, Microsoft's official response was "most organizations use switches and routers, so this is not a problem". Originally released in 2001, IIRC.
1. Re:C2MyAzz by Anonymous Coward · 2008-11-12 08:54 · Score: 1, Informative
  
  Actually, it was originally released in 1997 http://www.security-express.com/archives/ntbugtraq/1998/msg00512.html
2. Re:C2MyAzz by bertok · 2008-11-12 09:15 · Score: 1
  
  Except there's several ways of monitoring traffic even on switches.
  You can spoof ARP packets and confuse the client, confuse the switch, or use any one of several DNS vulnerabilities. That's not even mentioning WiFi networks!
  Sounds like typical Microsoft arrogance.
port 139 by heffrey · 2008-11-12 08:15 · Score: 5, Funny

Oh well, I guess I'd better block incoming public Internet traffic on port 139 then. That's a shame because it's been so very useful to have an Internet facing SMB share.
1. Re:port 139 by adamruck · 2008-11-12 08:39 · Score: 3, Insightful
  
  If you still want that service just run it over a vpn.
  
  --
  Selling software wont make you money, selling a service will.
2. Re:port 139 by heffrey · 2008-11-12 08:40 · Score: 1
  
  If you still want that service just run it over a vpn.
  I guess you missed the attempted irony of my original post.....
3. Re:port 139 by powerlord · 2008-11-12 08:58 · Score: 1
  
  I agree.
  Instead of needing to go out looking for pr0n and Warez they just magically appear in the SMB share.
  Sure, not all of it are your tastes, but you can always pick and choose later, right?
  Sorry, gotta go, there seems to be a knocking at my door.
  Why hello officers ...
  
  --
  This space for rent. All reasonable inquiries will be entertained at proprietors discretion.
Windows Server Admin? On Slashdot? Are you kidding by drachenfyre · 2008-11-12 08:18 · Score: 5, Funny

Like any windows server admin reads slashdot.... And the ones that do aren't going to stick their hands up and say "Oh, pick me" so we can all berate them for their choice in closed source server operating systems.
Without knowing the password? by girlintraining · 2008-11-12 08:19 · Score: 5, Insightful

It's always been easy to take control of a machine without the password. Sit down in front of the computer. Now the only thing stopping you is yourself. Oddly enough, that's what keeps most systems up... The fact that the vast majority of people are honest, decent folk. That, and they don't know what a null pointer is.

--
#fuckbeta #iamslashdot #dicemustdie
1. Re:Without knowing the password? by morgan_greywolf · 2008-11-12 09:11 · Score: 1
  
  That, and they don't know what a null pointer is.
  Does that help?
  
  --
  My blog
2. Re:Without knowing the password? by Culture20 · 2008-11-12 14:51 · Score: 1
  
  That, and they don't know what a null pointer is.
  Does that help?
  Not if they're programmers.
Re:Windows Server Admin? On Slashdot? Are you kidd by HerculesMO · 2008-11-12 08:21 · Score: 3, Informative

I do.
You can make fun of me :)
That said, if you have a Linksys firewall in place, it usually takes care of the issue. Granted the attacks you'll get internally *can* happen, but we have managed to circumvent SMB exploitation via policy settings in Windows. It works fine for us, nice to see they finally patched it though.

--
The price is always right if someone else is paying.
Re:How long ago seven years really is by dannycim · 2008-11-12 08:25 · Score: 1

You're getting nostalgic / introspective / retrospective over a 7 year old bug?
Call me when they patch a PDP-11 bug. __m_(^,^)_m__
Holding his breath ? by Tomun · 2008-11-12 08:25 · Score: 3, Funny

"I've been holding my breath since 2001 for this patch"
With lungs like that he should try free-diving!
1. Re:Holding his breath ? by AlgorithMan · 2008-11-12 09:05 · Score: 2, Funny
  
  Yeah, he even beats Guybrush Threepwood!
  
  --
  The MAFIAA is a bunch of mindless jerks who will be the first up against the wall when the revolution comes
2. Re:Holding his breath ? by writermike · 2008-11-12 12:36 · Score: 1
  
  "I've been holding my breath since 2001 for this patch"
  With lungs like that he should try free-diving!
  "By this time his lungs were aching for air."
  
  --
  If Nalgene water bottles are outlawed, only outlaws will have Nalgene water bottles.
cDc by alxkit · 2008-11-12 08:30 · Score: 1, Funny

This is not a bug but a fundamental design flaw.

aka "a feature"
What made it worse? Really? by 140Mandak262Jamuna · 2008-11-12 08:31 · Score: 5, Insightful

From the article: To make matters worse, the SMB flaw was already publicly disclosed prior to Tuesday's updates, Microsoft said.
What made it worse? Taking 8 years to fix it or disclosing it before the patch was released?
Further it is not a bug at all. It is essentially badly designed protocol having a hole and instead of abandoning it and making users upgrade, MSFT left this hole open for 8 years. All the in the name of backward compatibility. Why has backward compatibility trumped security for 8 years? It not surprising no one takes MSFT's statements about its commitment to security seriously?

--
sed -e 's/Chuck Norris/Rajnikant/g' joke > fact
1. Re:What made it worse? Really? by UnknowingFool · 2008-11-12 08:43 · Score: 4, Insightful
  
  From the article: To make matters worse, the SMB flaw was already publicly disclosed prior to Tuesday's updates, Microsoft said.
  What made it worse? Taking 8 years to fix it or disclosing it before the patch was released?
  This is MS modus operandi. You know all those MS based studies that say that MS fixes bugs faster than Linux. Well we never really believed them but they are technically true. See MS only counts the time between when they publicly disclose a bug and when they patch it. They don't count the time between when they find or are informed of the bug. With Linux people the whole process is more transparent. When bugs are discovered in Linux, they are almost disclosed at the same time. So this 8 year old bug will appear on all MS studies as only taking a few days rather than 8 years.
  
  --
  Well, there's spam egg sausage and spam, that's not got much spam in it.
2. Re:What made it worse? Really? by juan2074 · 2008-11-12 09:11 · Score: 1
  
  What? Microsoft has a commitment to security?
3. Re:What made it worse? Really? by syousef · 2008-11-12 10:01 · Score: 1
  
  Why has backward compatibility trumped security for 8 years?
  Because the best security in the world is of no use or consequence if your hardware and software can't do the job.
  
  --
  These posts express my own personal views, not those of my employer
4. Re:What made it worse? Really? by guruevi · 2008-11-12 17:44 · Score: 1
  
  You're right. I know of a bug and one of my old colleagues actually has a PoC where one can take over a whole host with simple .NET code. It has been reported in 2004 hasn't been fixed and it probably won't, the guy never gave me the code or how it worked and he will never because he like MS, gets paid partly by them and I don't. But it goes as follows: You are a developer on a machine and install .NET code in your website. Then that .NET code has a HTML interface which allows you to control just about anything on the IIS instance even though .NET in IIS is supposed to keep the whole thing separate in Application Pools, the code apparently runs as SYSTEM or some other level. Of course if the developer already has control over the machine to install code, you could say it's no big deal. However Shared Hosting providers would like to have a word with you and the concepts of separating applications in Application Pools is broken since your has control over all other applications and application pools.
  
  --
  Custom electronics and digital signage for your business: www.evcircuits.com
5. Re:What made it worse? Really? by ion.simon.c · 2008-11-12 19:05 · Score: 1
  
  Working code or GTFO. ;)
6. Re:What made it worse? Really? by jez9999 · 2008-11-12 23:57 · Score: 1
  
  Further it is not a bug at all. It is essentially badly designed protocol having a hole and instead of abandoning it and making users upgrade, MSFT left this hole open for 8 years.
  That's nothing. MS customers have been holding their holes open for 30 years...
  
  --
  == Jez ==
  Do you miss Firefox? Try Pale Moon.
And yet the world didn't end. by Beelzebud · 2008-11-12 08:32 · Score: 4, Insightful

How many people were actually a victim of this exploit? Is there one documented case of an electronic break-in because of this exploit?
1. Re:And yet the world didn't end. by Sun.Jedi · 2008-11-12 09:10 · Score: 1
  
  How many people were actually a victim of this exploit?
  IIRC, it wasn't just the shares that were affected by the port 139 holes.
  I'm pretty sure port 139 was abused in very large numbers for silly IRC channel pissing matches. Sending a few hundred 'winnukes' was easier than splitting EFnet, and largely just as effective, except the larger #'s.
2. Re:And yet the world didn't end. by westlake · 2008-11-12 09:21 · Score: 1
  
  How many people were actually a victim of this exploit? Is there one documented case of an electronic break-in because of this exploit?
  That you can ask this question on Slashdot - and hear nothing in response but the sound of crickets chirping in the background - answers your question, I should think.
3. Re:And yet the world didn't end. by SuseLover · 2008-11-12 10:25 · Score: 1
  
  Probably because most users have no idea if it even happened. And the fact that windows probably doesn't log anything that might leave evidence of this exploit or if it was exploited it cleaned the logs up after itself.
4. Re:And yet the world didn't end. by ymgve · 2008-11-12 17:01 · Score: 1
  
  I can confirm heightened script attacks on port 139 from our IDS. I suspect that your average Joe doesn't have the same level of protection that is afforded by a good IT department - the amount of times this has been exploited could be surprising. Sounds like a good way to increase a botnet.
  Almost every average Joe is behind the NAT of a router nowadays. Now, NAT is problematic in many ways, but it does act like a very simple firewall, and therefore makes Joe practically immune to SMB attacks from the outside.
Easter egg for Windows 7? by pcolaman · 2008-11-12 08:34 · Score: 2, Funny

So does that mean we can expect a Dead Cow Level to be hidden in an included Windows 7 app, a la Flight Sim hidden in Excel 97.
1. Re:Easter egg for Windows 7? by dkleinsc · 2008-11-12 09:06 · Score: 5, Funny
  
  That would make it harder to get to than the Secret Cow Level in Diablo II, because in Diablo II all you have to do is go through Hell, whereas with Windows 7 you have to install it successfully.
  
  --
  I am officially gone from /. Long live http://www.soylentnews.com/
2. Re:Easter egg for Windows 7? by jgtg32a · 2008-11-12 09:08 · Score: 1
  
  There is no cow level
Re:How long ago seven years really is by dunkelfalke · 2008-11-12 08:38 · Score: 1

yep, march 2001
had my abitur exams, my girlfriend just dumped me, i finally gave up on os/2 and started to become a fatty i am now.
and about your partitioning problems: back then partition magic was still great.

--
"It's such a fine line between stupid and clever" -- David St. Hubbins, Spinal Tap
Re:How long ago seven years really is by Knackered · 2008-11-12 08:43 · Score: 2, Funny

How many times have you changed occupation, had kids, changed partner, moved to a new city, changed your lifestyle habits, reconsidered your core values and beliefs, or made some other big change in your life?
None, none, none, none, none, none, none.
I guess I should get out more...

--
a.
Re:Windows Server Admin? On Slashdot? Are you kidd by 0racle · 2008-11-12 08:46 · Score: 4, Funny

I do.

You can make fun of me :)

That said, if you have a Linksys firewall

Now you deserve to be made fun of.

--
"I use a Mac because I'm just better than you are."
At least there's a positive side by ZekoMal · 2008-11-12 08:48 · Score: 1

Well at least they're fixing things...eventually...

Guess they just keep trying and trying until we have no idea what it is anymore.

Wonder how many decades it'll be until Vista is fixed.
What will the patch break? by Anonymous Coward · 2008-11-12 08:52 · Score: 1, Interesting

So, if I patch my XP workstations, will I still be able to talk SMB to Win98?
(Stop laughing you bastards, I was being serious...)
1. Re:What will the patch break? by gad_zuki! · 2008-11-12 10:08 · Score: 1
  
  Think so. I have a patched XP client with an unpatched NT4 server and both are able to communicate over SMB.
Re:Windows Server Admin? On Slashdot? Are you kidd by DAldredge · 2008-11-12 08:52 · Score: 1

I read /. and I admin windows and linux servers.
laptops travel outside the firewall by SethJohnson · 2008-11-12 09:04 · Score: 1

I agree with your post about SMB and would like to add to it....

Even then, I doubt any business would have any box with smb/samba enabled without a firewall preventing internet based or external smb connections.

The modern computing environment is complicated by laptops that travel outside the corporate network firewall. Users frequently enable SMB on their company laptop when at home or at coffee shops, airports, etc. to transfer files between machines. A (computer) member of a zombie bot herd can then exploit a weakness like this to take control of the laptop and add it to the zombie herd. When the laptop returns to the corporate network, it becomes a zombie recruiter.

This is probably how the Obama campaign was compromised.

Seth

--
$5 / month hosted VPS on linux = awesome!
1. Re:laptops travel outside the firewall by dave562 · 2008-11-12 12:44 · Score: 1
  
  Or someone inside the network visits a malicious web page and has their machine hijacked. That hijacked machine then has complete access to the soft underbelly of the network and can report back to the outside world on port 80.
"Dead Cow" by Jerry+Smith · 2008-11-12 09:18 · Score: 1

Has it anything got to do with the cult of the dead cow? www.cultdeadcow.com ? They got some internetattention for their BackOrifice stuff waaay back, AFAIK.

--
All those moments will be lost in time, like tears in rain. Time to die.
Re:How long ago seven years really is by Phil+Urich · 2008-11-12 09:21 · Score: 1

yep, march 2001
had my abitur exams, my girlfriend just dumped me, i finally gave up on os/2 and started to become a fatty i am now.
and about your partitioning problems: back then partition magic was still great.
Ye gods, you're right! I've stayed away from that program like the plague for years now, and hey, GParted does everything Partition Magic did but more reliably than even those old versions were . . . but yes, Partition Magic used to get the job done like nothing else at the time could. Wow, it's been ages since I thought of that. PM went downhill while this bug sat unfixed? Yikes.

Actually, for the fun of it I remember exploiting this bug back when I lived in University Residence. I remember, among other things, mentioning to a floormate that kept having virus problems that he should probably at least add a password to his user account, since I knew it was a blank password. I quickly got a (probably undeserved, since this was script-kiddy stuff) reputation as the computer-hacker guy, heh.

--
I remember sigs. Oh, a simpler time!
Re:Windows Server Admin? On Slashdot? Are you kidd by HerculesMO · 2008-11-12 09:33 · Score: 2, Insightful

It wasn't meant in seriousness, but if you want to take it and run, feel free.
Just meant that any port blocking software or hardware (as simple AS a Linksys firewall) prevents this from being anything of an issue.
Hell, even Windows built-in firewall will do the trick.

--
The price is always right if someone else is paying.
Why? Perhaps the end of the original notice tells by Ungrounded+Lightning · 2008-11-12 10:08 · Score: 1

Why has backward compatibility trumped security for 8 years?
Well, if you look at the original notice you'll see it ends this way:

> Exploit
> =======
> We will publish the exploit code after a patch be created by software
> vendor.
Perhaps Microsoft decided to hold off publication of the exploit code until none of their valued customers were using the service. B-)

--
Bantam Dominique roosters crow a four-note song. Once you've heard it as "Happy BIRTHday" you can't NOT hear it that way
Re:How long ago seven years really is by toiletsalmon · 2008-11-12 10:23 · Score: 1

I just assumed that you eat free at Pancake-Hut on Tuesdays. Senior Discount Day FTW!
Way overhyped ... only applies to deprecated OSes by laughingskeptic · 2008-11-12 10:42 · Score: 2, Informative
If you look at
http://support.microsoft.com/kb/q147706/
You will see that the affected operating systems are old and that Microsoft long ago told people how to configure their systems to avoid this issue.
- Microsoft Windows NT Server 4.0, Terminal Server Edition
- Microsoft Windows NT Workstation 3.51
- Microsoft Windows NT Workstation 4.0 Developer Edition
- Microsoft Windows NT Server 3.51
- Microsoft Windows NT Server 4.0 Standard Edition
- Microsoft LAN Manager 4.2 Standard Edition
- Microsoft Windows for Workgroups 3.2
- Microsoft Windows 95
That's a silly question. by argent · 2008-11-12 10:56 · Score: 1

Why has backward compatibility trumped security for 8 years?
"Microsoft: putting the 'backwards' into 'backward compatibility'."
When Microsoft abandons ActiveX and other technologies that run unsandboxed binaries from random websites, then I'll start taking their claim that they care about security seriously.
1. Re:That's a silly question. by argent · 2008-11-12 12:03 · Score: 1
  
  Then you should try Vista. It runs ActiveX low-priv [...]
  [...] in a porous sandbox that has had several holes documented already.
  A remote execute exploit that has to be followed by a well known and more-or-less unfixable privilege escalation exploit is not much of an improvement over a straight remote execute exploit.
  and has all of XP SP2's "are you really sure you want to run this?" prompts too.
  All those do is train users to approve security dialogs.
  Worse, Apple seems to have gotten sucked into the stupid dialogs too.
  And people who should know better, such as the folks working on Mozilla browsers, are getting on the same Microsoftian bandwagon.
Veracode Blog Clarification by dildog · 2008-11-12 12:21 · Score: 2, Insightful

I've posted on the Veracode Blog about this issue for clarification purposes.
Here's the content:
With regard to the recent Patch Tuesday fix, there has been an issue fixed regarding NTLM Relaying, that has been around for more than eight years.
In 2000, I wrote an advisory about NTLM relaying (CVE-2000-0834). The problem turned out to be significantly larger than I originally suggested in the advisory. The attack extended to other NTLM-based authentications on other protocols and allowed general-purpose credential theft via a man-in-the-middle attack.
The SMBRelay tool was published in 2001 by Sir Dystic of Cult Of The Dead Cow, and that really took it to the next level. The protocol completely fell apart. It kicked off a number of other analyses of the NTLM protocol that finally resulted in this patch. Eight years after itâ(TM)s discovery.
At least they got around to it. Thanks!
--chris
(Buy my house! http://tinyurl.com/dilshouse)
Windows Server can be solid, however... by kwabbles · 2008-11-12 13:12 · Score: 4, Insightful

My #1 beef with Microsoft is that they market it so that every small to medium business owner thinks that everything will all run together happily on one box all "plug-n-play" and snuggly whirring away on the floor of their office closet.
I have the hardest time convincing users that they cannot run their 20-user network on one SBS 2003 server, with Exchange (running OWA and OMA), running their heavily-accessed SQL database, sharepoint, anti-virus server software, backup software, and company file and printer sharing to 5 multi-function copiers and expect 5 9's of freaking uptime.
This is how it is marketed. This is what the end user expects when shopping for a Microsoft solution. You tell them that they'll need at least 3 separate boxes, Server, Exchange, SQL, etc all separate, RAID and ideally a failover system and an excellent firewall for the remote access they look at you like you're nuts. So they buy it and have it set up their way, it works like hell for a year, then they end up paying in the end to have it done again the right way (and more this time, because they have to now migrate off of their old system).
And the Microsoft money machine chugs on.

--
Just disrupt the deflector shield with a tachyon burst.
1. Re:Windows Server can be solid, however... by HerculesMO · 2008-11-12 13:27 · Score: 1
  
  Amen to all that and more :)
  
  --
  The price is always right if someone else is paying.
2. Re:Windows Server can be solid, however... by shutdown+-p+now · 2008-11-13 02:57 · Score: 1
  
  This is how it is marketed.
  Hm. In my experience dealing with Microsoft server solutions (which, admittedly, usually involve the word "SharePoint" somewhere), it has always been the "official" recommendation to use a dedicated database server.
3. Re:Windows Server can be solid, however... by darkpixel2k · 2008-11-13 03:42 · Score: 1
  
  This is how it is marketed.
  Hm. In my experience dealing with Microsoft server solutions (which, admittedly, usually involve the word "SharePoint" somewhere), it has always been the "official" recommendation to use a dedicated database server.
  Yeah--except that Microsoft offers a product (SBS 2003) that very specifically sets up all that crap on one box.
  
  From what I've heard of Windows 2008 SBS (which my company still hasn't even started testing) it will let you split SBS into two servers.
  
  --
  There's no place like ::1 (I've completed my transition to IPv6)
Re:Windows Server Admin? On Slashdot? Are you kidd by ronabop · 2008-11-12 16:20 · Score: 1

You do know what OS that Linksys is running, yes?
..and you do know that NAT is not a firewall?
Not all that great... by Nazlfrag · 2008-11-12 18:29 · Score: 2, Funny

"Microsoft has released the specifications for the binary file formats used by pre-2007 Microsoft Office applications"
And we all know how well Microsoft maintains backwards compatibility with its office file formats...
Re:Windows Server Admin? On Slashdot? Are you kidd by Bert64 · 2008-11-12 19:12 · Score: 1

Ofcourse, if you're using IE then someone could construct a malicious site that redirects to an smb address, IE will dutifully try to connect to the share and send the authentication details that you are currently logged on with.

--
http://spamdecoy.net - free throwaway anonymous email - avoid spam!
Re:How long ago seven years really is by Bert64 · 2008-11-12 19:14 · Score: 1

The difference is, known PDP-11 bugs are not being carried forward into current systems.

--
http://spamdecoy.net - free throwaway anonymous email - avoid spam!
Re:'been holding my breath since 2001 for this pat by MikeDirnt69 · 2008-11-12 23:54 · Score: 1

P.S. I'm dead.
Dead Cow? Is that you?

--
Am I eval()? - http://www.monst3r.com.br
Re:Windows Server Admin? On Slashdot? Are you kidd by HerculesMO · 2008-11-13 03:17 · Score: 1

Yes, I also know that some newer Linksys firewalls actually do SPI, but apparently that fact glossed over you.
You just need something to do port blocking. But feel free to stay on your high horse. It's an attitude that keeps *nix relegated to geeks and not go mainstream because of the same type of attitude the admins convey.

--
The price is always right if someone else is paying.
A Good Windows Security Guide (online) by Anonymous Coward · 2008-11-13 04:09 · Score: 1, Interesting

Whoever modded you funny must think they are clever. It appeared to me that you asked an honest question. Here is the best answer I can give you (2 hrs. of your time, tops, for years of stable and faster uptime for years into the distance, by following a guide, an automated tool for security of PC/Server evaluation from a free and reputable security audit tool, some registry hacks (automated via .reg files that are fully internally documented no less with sources), and instructions on how to use layered security in detail, with tools/tips/tricks/techniques that really work, if you can follow/take direction, use common-sense, & adhere to some simple rules (and, of course, it depends on if you can read english or not))
A good overall security guide is here:
HOW TO SECURE Windows 2000/XP/Server 2003, & even VISTA, + make it "fun-to-do", via CIS Tool Guidance (& beyond):
http://www.tcmagazine.com/forums/index.php?showtopic=2662 [tcmagazine.com]
It shows you how to config NTLMv2 for instance to be 'proofed' vs. this form of attack this thread on this website is noting today, and the techniques been known for the better part of a decade.
If you are a standalone machine (single machine not on a LAN at home or LAN/WAN on the job for instance on a network there) it goes into far more that is effective vs. this, and other attacks possible on a Windows NT-based OS.
By following both the CIS Tool and this guide's points, You also go faster online as a bonus ontop of being far more secure (91/100 on Windows XP, and 86/100 on Windows Server 2003 scores are quantified for viewers from CIS Tool evaluation (a multiplatform benchmark of security based on industry best practices for securing PC's and Servers that was well noted by sources such as COMPUTERWORLD)).
Re:Windows Server Admin? On Slashdot? Are you kidd by Lord+Kestrel · 2008-11-13 05:52 · Score: 1

It'll only auto-login if you let it. There is a reason that anyone with half a clue disables that.
Re:Windows Server Admin? On Slashdot? Are you kidd by Bert64 · 2008-11-13 23:46 · Score: 1

Yeah, but it's turned on by default which means that millions of people will have it turned on...
People who have a clue are more likely to be using other browsers too, and i don't believe any others have such a ridiculous "feature".

--
http://spamdecoy.net - free throwaway anonymous email - avoid spam!
Re:How long ago seven years really is by badkarmadayaccount · 2008-11-16 04:25 · Score: 1

You do know that the core devs for NT came from DEC, right? And NTFS is suspiciously like Files-11?

--
I know tobacco is bad for you, so I smoke weed with crack.
Released in 2001 by Sir Dystic at Atlantacon by Helevius · 2008-11-16 09:32 · Score: 1

This topic was discussed on March 31 2001 at @lanta.con in Atlanta, Georgia.
Re:How long ago seven years really is by Bert64 · 2008-11-17 03:09 · Score: 1

Yes, but the SMB protocol predates NT by some margin...

--
http://spamdecoy.net - free throwaway anonymous email - avoid spam!