Microsoft To Get Malware Bailout In Germany

hweimer writes "The German government plans on paying to set up a call center to help Windows users with malware infections. I think this has the effect of being a malware bailout for Microsoft, discouraging them and other software companies from writing better code and giving users little incentive to switch to more secure alternatives. How much government money is needed to run the call center is also not revealed." The call center, running in cooperation with ISPs (but not manufacturers), is envisioned to have a staff of about 40.

Not really

[sopssa]

I think this has the effect of being a malware bailout for Microsoft, discouraging them and other software companies from writing better code and giving users little incentives to switch to more secure alternatives.

I have to disagree with that. Malware problem is usually because of user stupidity. Like any other OS, you can run Windows securely if you don't do stupid things.

The thing is, as we don't care so much about how to properly feed, exercise and clean ponies, normal people don't care so much about computer security. They just want to do their thing. But now they would have a place they know they can seek help from, and who are giving helpful instructions how to not get infected anymore and how to solve their problem. Maybe those hints stick, maybe not, but at least they can get help with the problem (without calling over our fellow slashdotters all the time!)

But what is an interesting piece in the article (and somewhat worry-some)

Before the plans are implemented, however, a decision needs to be made on what sanctions customers who decline to cooperate with their ISP can be subjected to. According to an eco project manager, quoted by the dpa, "Anyone surfing without proper anti-virus software is endangering other web users, in the same way that a car driver driving with faulty brakes is endangering other road users."

I'm sure Symantec will hurray for that, but I don't want someone push an av software down my throat that I don't even need. Even less on my linux server. I really hope it only means those users who have been identified by the ISP to be sending spam out.

But the bottom line is, it's not a "bailout" for Microsoft. Malware goes where the users and money are and any kind of better code or secure alternatives cannot go around user stupidity. Linux is mostly secure from malware because the users generally are more geeky than the casual users on Windows and don't just random stuff from the internet. Repositories also help with this, but if Linux ever gained any actual desktop marketshare and casual users, the 3rd party applications/games/whatever that people want would be downloaded from the internet just the same way as on Windows. But any (good) Linux sysadmin knows there been worms in Linux too and remote hacks are commonplace if the system isn't properly secured (and casual users just wont do that).

Re:Not really

[eln]

as we don't care so much about how to properly feed, exercise and clean ponies

On the contrary, I've had an inexplicable interest, some might even say obsession, with ponies since April 1, 2006.

Re:Not really

[rolfwind]

1. This isn't the role of government.
2. No matter how much the apologists bray, the fact is that Windows has the most infections. The proof is in the pudding! Yes, user stupidity contributes to that... but it ignores deep design flaws in Windows itself! Will the infections ever go toward zero even with the best designs but dumbest users? No. But it sure doesn't excuse it being in the other extreme for Windows.

Re:Not really

[CaseCrash]

Thanks for pointing out something actually interesting from the article and relevant to us /.'ers

As it is, the summary reads "A government decided to do something to help their less computer-savvy citizens. Here's my rant against microsoft with no bearing on reality. Please go to my blog."

Re:Not really

The thing is, as we don't care so much about how to properly feed, exercise and clean ponies, normal people don't care so much about computer security.

If I had a pony, I'd learn how to feed, exercise and clean it properly (or at the very least, hand over the reins of responsibility to someone who knew). Or to be more precise, if I had a pony that I told my bank details to, I'd learn how to stop it talking to strangers I didn't want it talking to. It boggles my mind that people can be so reckless with their possessions and even financial security when learning is free.

Sorry for the o/t.

Re:Not really

I think this has the effect of being a malware bailout for Microsoft, discouraging them and other software companies from writing better code and giving users little incentives to switch to more secure alternatives.

Does he also think that hospitals treating the sick discourage people from taking steps to stay healthy?

If people do indeed get help from this it will be money well spent. Period.

Re:Not really

[Shakrai]

1. This isn't the role of government.

I'd normally be the first to agree, but isn't a large portion of malware used for criminal activity? Identity theft, botnets that engage in DDoS extortion attempts, spam relays, phishing, etc, etc. It seems to me that law enforcement (i.e: government) has a legitimate interest in reducing the number of malware infections that are out there.

Of course, a call center filled with follow the script support drones probably isn't the best way to go about doing that.......

Re:Not really

[Locke2005]

If you're a genuine "OMG, Ponies!!!" fan, you may be interested in this

Re:Not really

If anything windows is now more secure than linux in the user space these days. For one, no user space programs can keylog your admin password with UAC. However they can keylog your root password with sudo.

Re:Not really

[dov_0]

Hey! Don't knock Windows! I make a lot of money cleaning infections from MS products...

On the other hand, removing infections from Windows is kinda like disinfecting a toilet. It just won't last... The more interesting thing is that the German gov. is taking employment away from pc repairers.

Re:Not really

[gbjbaanb]

Not really, governmental organizations are not so much interested in helping you clean up your malware-PC, but in funding the internet cops to trace and bring the perpetrators to justice.

The callcentre script drones will probably be fine - they'll tell everyone to run spybot, install an AV system, run windows updates and then take it to a repair centre or reinstall if symptoms persist.

Re:Not really

[HaZardman27]

The thing is, as we don't care so much about how to properly feed, exercise and clean ponies, normal people don't care so much about computer security. They just want to do their thing.

So... are you suggesting that you just want to.... "do your thing" with a pony?

Re:Not really

[noidentity]

I have to disagree with that. Malware problem is usually because of user stupidity. Like any other OS, you can run Windows securely if you don't do stupid things.

Agreed; Mac users are no more bright, so they should set up a call center for Mac OS X malware infections too, though they could staff it less, perhaps with one person. Oh wait, Mac OS X doesn't have the malware level as Windows, even given the same level of user carelessness.

Re:Not really

[natehoy]

No, the article is pretty clear that the ISP will use patterns (not the existence or presence of antivirus, which they really couldn't detect effectively anyway) to determine if a computer is infected with a bot.

The first step will be to contact the infected user and/or put up a custom web page that they will default to letting them know about the infection. That will be done by the ISP. The ISP will then refer them to the new advisory center to get the infection cleaned up.

I think part of the advice would be "get some antivirus software in place" but I doubt they'd enforce it. Though I imagine there may be some sort of action taken against people who refuse to fix their malware issues and are sending out spam or attacks, which affect other people on the network and the Internet as a whole. That was where the worrisome part you referred to came in - but the German government hasn't decided IF they are going to impose sanctions, much less what form they would take.

It may be as simple as shutting off their connection and mailing them a disk containing a free antivirus solution (AVG-Free, Avast, etc), then having them call to have their connection turned back on once the software is installed, or giving them access to a more limited set of URLs they could use to download anti-virus/anti-malware software then unlock the rest of the connection once the user called and stated that they had antivirus in place.

Re:Not really

[Eternauta3k]

Ponies Slashdot was in 2006? Fuck I'm getting old...

Re:Not really

[camcorder]

Do you know what you're talking about? What prevents a keylogger to log a user password on windows that do not prevent it in Linux? On the other hand, you need a couple of clicks to infect a Windows box even with UAC, but with a regular Linux desktop it's much more hassle for an intruder to convince user to install and run the application. Not only this, but it's technically much more hard for user-space applications to store keypress events on terminal than any other Windows version ever existed.

Re:Not really

[LWATCDR]

For the most part I tend to agree. Any user installed Trojan is the users responsibly.
If the malware gets installed through an exploit then it is the OS/Applications fault.
In a good amount of cases it is no longer Microsoft's fault.

Re:Not really

[sopssa]

Do you know what you're talking about? What prevents a keylogger to log a user password on windows that do not prevent it in Linux?

Well UAC is built-in to the system. Windows just disables sending the keys to other apps while user is presented with UAC dialog.

But what about when you're running a terminal screen on your X desktop in Linux and sudo to root. Linux kernel nor sudo can't disable the equivalent api's because X, terminal window and several other hooks need to be able to get them. That is a problem with a system build from blocks.

Re:Not really

Perhaps so, but how many people let UAC run without considering what it is? You are far more likely to have a keylogger running on Windows than on Linux.
UAC does not stop most malware, anyway, as shown here: http://www.sophos.com/blogs/chetw/g/2009/11/03/windows-7-vulnerable-8-10-viruses/ and here: http://blogs.zdnet.com/security/?p=175

Sudo, on the otherhand, is a far more secure solution.

Re:Not really

[AnotherShep]

I'd consider this one "Insightful" myself.

Re:Not really

[Corporate+Troll]

O/T? Not OT... It's the first thing I thought when seeing the analogy. The reason we do not care about how to care about ponies is because we don't have any! But we're on slashdot, take a car analogy. Most people have a car.... Those who do not know to maintain it, go to the dealership or their trusted mechanic. Mechanics maintain their own cars. We are the computer equivalent of mechanics: we make sure machines run. However, in the public perception, a computer is an appliance and doesn't need maintenance.

To be honest, in my experience you can run Windows as Limited user completely (you just have to know how). This would be the equivalent of being a driver but not a mechanic.

That this doesn't happen is because people will never pay someone to check up their computers every 3 months or so.

Re:Not really

[bhtooefr]

There is one platform out there that's resistant to the dancing bunnies problem.

The iPhone.

Unfortunately, that's the only way to be resistant to it - don't allow third-party software unless it's been inspected by real people whose job it is to inspect it.

Re:Not really

[Tom]

Like any other OS, you can run Windows securely if you don't do stupid things.

Like any car, you can parallel park an 18-wheeler, if you are careful enough.

Sure, you can do it. Some OSes just make it easier, and some make it a challenge. I dare say Windos (any version) is in the later category. Heck, it usually comes with a fine selection of ad- and spyware pre-installed thanks to your friendly OEM.

Re:Not really

[shutdown+-p+now]

This isn't the role of government.

The role of a democratic government is precisely what the voting citizens define it to be. No more, and no less.

Re:Not really

I have to disagree with that. Malware problem is usually because of user stupidity. Like any other OS, you can run Windows securely if you don't do stupid things.

Agreed; Mac users are no more bright, so they should set up a call center for Mac OS X malware infections too, though they could staff it less, perhaps with one person. Oh wait, Mac OS X doesn't have the malware level as Windows, even given the same level of user carelessness.

People used to say this about FireFox as well. Until reported vulnerabilities started skyrocketing when it passed around 15% market share. You could assume that the codebase and security practices of FF devs suddenly deteriorated, or we can speak again if/when Mac's at least triple their current market share.

Re:Not really

[shutdown+-p+now]

Perhaps you should have clarified that a software keylogger cannot intercept the password when user logging on, or in UAC elevation prompts. A hardware keylogger, quite obviously, doesn't care.

Re:Not really

I have to disagree with that. Malware problem is usually because of user stupidity. Like any other OS, you can run Windows securely if you don't do stupid things.

By "stupid things", do you mean "surfing the internet on a computer that has Flash or Acrobat installed"? It's rather short-sighted to declare that all infections of the various forms of malware are always and only user initiated.

Re:Not really

[MadnessASAP]

Quite the contrary, you're too damn young if 3 years seems like a long time.

Re:Not really

[Kilz]

I have to disagree with that. Malware problem is usually because of user stupidity. Like any other OS, you can run Windows securely if you don't do stupid things.

Yes like
1. Spend money to run anti programs to fill in the holes left by bad code.
2. Dont download anything.
3. Dont use IE.
4. or simply unplug the computer from the internet.

But most people refuse to do any of those things. Then again they could just give Microsoft the boot.

Re:Not really

There is one platform out there that's resistant to the dancing bunnies problem.

The iPhone.

Unfortunately, that's the only way to be resistant to it - don't allow third-party software unless it's been inspected by real people whose job it is to inspect it.

There's an app for that. http://nexus404.com/Blog/2009/12/05/report-says-iphones-are-subject-to-spywaremalware-infection-non-jailbroken-iphones-not-as-safe-as-expected/

Re:Not really

what a load of horse shit. 1. completely agree, it is not the role of the government. 2. utter bullshit. The vast majority of malware has absolutely NOTHING to do with the OS or its securty, if anything OSX and linux are far more vulnerable with far less protection from malware, at least windows provides a relatively useless prompt. What deep design flawes in Windows? people like to perpetuate this myth, the reality is the security design of windows is actually pretty good, there is a lot of useless crap in windows and I don't like the OS much but design wise for security it is significantly better than OSX and a little better than linux too, however the vast majority of users behave in a very unsecure fashion.

Re:Not really

Yes, user stupidity contributes to that... but it ignores deep design flaws in Windows itself!

It's close to 2010, I wish people would stop saying stuff like that. The problem isn't "deep design flaws in Windows", the problem is sloppy coding, buffer overflows etc. Issues that exist in 99% of consumer softwares out there. Unfortunately, there are no easy and cost-effective ways of getting rid these problems, coders around the world are getting better at dealing with them, and the tools are also getting better but on the short/medium terms, it is utterly futile and naive to believe the situation can be easily corrected.

Saying that it's all Microsoft fault is a good way to play the blame game, but it doesn't address the problem at all. It's like saying that the poor are responsible for being poor - in many cases this may be true, but saying this won't fix the issue of poverty.

Re:Not really

[MBaldelli]

2. No matter how much the apologists bray, the fact is that Windows has the most infections. The proof is in the pudding! Yes, user stupidity contributes to that... but it ignores deep design flaws in Windows itself! Will the infections ever go toward zero even with the best designs but dumbest users? No. But it sure doesn't excuse it being in the other extreme for Windows.

I think you miss the perspective on the level of human stupidity that's out there using computers. On a day to day basis, from any of these categories at least 20 times a night from people calling in looking to connect their laptops to a Wi-Fi Hotspot in a Hotel:

My internet isn't working, send someone up now to fix my problem!!!

My name and room number don't match, I'm running Windows 97

I'm calling from Room xxxx please turn on the internet for this room (It's always on, this is why it's Wi-Fi just like at Starbuck's).

You mean I have to have my laptop on in order for me to use the Internet?

I'm running the newest Windows -- Windows 2007 -- and I can't get it to find any Wi-Fi Hotspot

What do you mean I have to pay for the network wire?! You need to comp me for that immediately!

I'm on my business' laptop and I don't know what I'm looking at, can you remote into my computer and show me?

Re:Not really

[sconeu]

Best. April Fools Page. Ever.

Re:Not really

[Jarjarthejedi]

Spend money? Why would you do that when the free anti-virus softwares are far superior to their commercial counterparts. As for the rest of your options the only one that's even remotely valid is not using IE, I presume your 2nd and 4th options are just jokes.

Signed a windows user who has never been infected (and has checked his logs recently to verify that fact).

Re:Not really

[sopssa]

Yeah, it's not like we are discussing about malware or anything. Or that the GP said "no user space programs can keylog".

Re:Not really

Time for me to play devil's advocate here:

Windows used to have some critical design flaws. XP had three main ones. ActiveX, no real user/administrator priv separation by default (although a clued user would fix that), and autorun.inf mindlessly executing anything on a CD without asking. Of course, there would be running without the XP firewall that would add a fourth issue.

However, Vista and Windows 7 fixed all these issues. The firewall is on by default. Vista doesn't just automatically run a CD's autorun script. ActiveX is pretty much turned off, and not even used if you use another browser. Finally, administrator and user rights are separated by UAC.

This is really something one can't compare fact for fact on. Is Windows attacked the most because it has weaknesses, or is it attacked the most because blackhats get the most bang for their buck due to the operating system's popularity?

Rewind to about 1991-1992. Back then, Linux was still being fleshed out, and was primarily a tinker's tool. In production, the main operating system you would encounter past the glass walls was SunOS 4.1.x or Solaris 2.x. Since the jump to Solaris 2 was such a big move for a lot of businesses, they stuck on 4.1.x. Of course, because SunOS was the #1 OS on the Internet, it was the #1 choice for crackers to attack. All the whining I see about Microsoft, I've seen almost verbatim aimed at commercial UNIX providing companies before Windows had an official TCP/IP stack.

As for user stupidy, you can always take functionality away in return for security. For example, you won't see much malware on a PS3 Slim because nobody has even gotten a crack or modchip going for it. However, it won't do much for a user other than play games on it (The Slim has no hypervisor to allow Linux to run.) On the other scale, if you sit an uneducated user at a Linux root prompt, they have the best footshooting tools in existance. Similar with a ChromeOS appliance. It won't have malware issues, but the tradeoff will be not having local apps or much local storage.

So, Microsoft may not be perfect, but Windows 7 is light years ahead of XP in security. With ASLR, full disk encryption, encrypted backup volumes, and downloadable antivirus, it can be argued that it is a generation ahead of OS X when it comes to security.

Re:Not really

The role of a democratic government is precisely what the voting citizens define it to be. No more, and no less.

No that's the role of the "tyranny of the majority" government. Not the liberal-democratic government.

Re:Not really

[sopssa]

But what do you need sudo for? Most malware that is trying to steal your info, send spam or whatever runs perfectly happy in user base.

You only need root access if you're trying to get control over the box, which is more of a hacking thing than what malware does.

Re:Not really

Well UAC is built-in to the system. Windows just disables sending the keys to other apps while user is presented with UAC dialog.

Knowing MS I'd be inclined to expect it's trivial to break that, seeing as how every other security measure they've instituted has crumbled under attack.

But what about when you're running a terminal screen on your X desktop in Linux and sudo to root. Linux kernel nor sudo can't disable the equivalent api's because X, terminal window and several other hooks need to be able to get them. That is a problem with a system build from blocks.

You clearly don't have a good understanding of how these systems work. For one thing any app (even a software keylogger) has to have the proper permissions to run in *nix. It's not like windows, where every file in the system is executable. :) So in a *nix system, the only real vectors of attack are social engineering (trojans) and cracking. As most distros already have just about every kind of software needed in a secure repository, trojans are not common because there's little to no need to download software from a 3rd party. So while a trojan *could* be written for linux, it would have to be tailored to each distro and it would be so rarely downloaded that there'd be no real reward in it. As for cracking, that's a real danger in any OS.

It's true there are only secure users, no secure OSs, but it's also true some OSs (ms) are extremely difficult to secure properly. It may be easy to browse the web and get your email with pre-installed windows, but it's far easier to secure a *nix system. Anyone who says otherwise likely just isn't sufficiently experienced.

Re:Not really

[shutdown+-p+now]

No that's the role of the "tyranny of the majority" government. Not the liberal-democratic government.

"Tyranny of the majority" and "democracy" aren't incompatible. And I'm not sure where you've got the "liberal" part from, since it wasn't in my OP.

Re:Not really

[dave562]

That does seem to be the case. Most of the in the wild exploits these days are targeting applications like Acrobat and Flash because the underlying OS has been hardened to the point that remote exploits are becoming harder to come by.

Re:Not really

[ojintoad]

1. Don't you think it is up to the people of the nation in question who set up said policy to decide if it is the role of their government or not?
(If you are a citizen of Germany then there is nothing inconsistent about your 1 point.)
2. What if as a solution to the Malware problem they offer advice like "Have you tried Linux?"

Re:Not really

[DarkOx]

The best way would be to just make the user responsible. Require a license to use the internet. Make it 1Euro (since this is Germany) and no renewals no exams nothing; just like buying fishing license in the USA. Once you apply you have it. The license entitles you to have a personal computer system attached to public internet. You should still be free to use the internet at friends house library etc with no internet license.

I am not proposing any elaborate tracking scheme here either. All this would be is you have to show a provider a valid license before they can sell you service. Now for the hooks; providers caught selling services to people without licenses should be shutdown. Individuals caught with machines participating in botnets, sending spam etc should have their license suspended, and the internet service subscriptions canceled. Make like E50 to get your license out of suspended status.

That way everyone has motivation to learn enough to operate safely or hire someone else to do it for them.

Re:Not really

[sopssa]

But how would that be different on any other OS? If the application has a vulnerability that lets the attacker execute code on user base, it doesn't matter what the OS is. Unless it's locked down OS like iPhone.

Re:Not really

[joocemann]

1. This isn't the role of government.

I'd normally be the first to agree, but isn't a large portion of malware used for criminal activity? Identity theft, botnets that engage in DDoS extortion attempts, spam relays, phishing, etc, etc. It seems to me that law enforcement (i.e: government) has a legitimate interest in reducing the number of malware infections that are out there.

Of course, a call center filled with follow the script support drones probably isn't the best way to go about doing that.......

I would support the (what is likely not very costly in respect to other programs) spending of money on this kind of service to my countrymen. Rather I would prefer this kind of spending over other extremely tax-parasitic spending programs aimed at 'defending' us that cost us trillions here in the US.

Yeah, a 200 billion dollar bill to design a new fighter jet (on slashdot a few months ago), is a little excessive when 1) Our current jets and weapons are frikkin amazing and 2) people are all in a hissy about 700bn in an 'economic revival' spending plan.

Umm.... 200/700 = nearly 29%. I think the people here in the US would have been excited to know that a large chunk of the economic revival plan could be fixed by simply cutting one defense spending program. One.

Our KDR is now >>> 1:100. I think we're pretty badass, and as a vet, I *know* we are badass already.

Re:Not really

[Thinboy00]

or one thing any app (even a software keylogger) has to have the proper permissions to run in *nix.

Setting the execute bit is not difficult... if someone emails someone else a binary the execute bit will probably already be set. Or are you talking about some weird thing that I've never heard of?

Re:Not really

[Stormwatch]

The role of a democratic government is precisely what the voting citizens define it to be. No more, and no less.

The full extent of that reasoning: if 51% of the people say the other 49% should be enslaved, the ballot makes it right.

Hell no, that can't be right. The purpose of the government is to uphold every citizen's inalienable rights; and it must be as small as it can be while remaining capable of fulfilling that purpose. No more, no less -- with emphasis on the "no more" bit.

Re:Not really

[noidentity]

Conceded.

Re:Not really

[Shakrai]

No disrespect but that's the dumbest fucking idea I've ever heard.

Re:Not really

[BlackSnake112]

If the largest number of machines was Apple, or Linux, or operating system abcdefg that operating system would have simular issues with malware.

The most used OS == biggest target. That being said, will the person at microsoft who decided that the first or default account is an administrator please stand up. You need to be beaten.

Re:Not really

[poetmatt]

This would also kill anonymity as we know it. Thus, no, this doesn't work.

Re:Not really

[Foredecker]

What deep design flaws are you referring to? This isnt a rhetorical question. Id like to know what you mean.

I suspect things you are considering a design flaw:

1. Were true for XP and is not true of Win7 (and probably vista).
2. Are not windows specific things but general OS things.
3. Are much more subjectively a design flaw than objectively one.

Note, I completely agree that that in absolute terms, Windows systems are the most infected.

But, that doesnt mean there is proof in the pudding. I assert that OSX and Linux are not any more secure, or less secure than Windows7. Two things play first order roles with respect to security

1. The behavior of the user. If the user does stupid things, bad things happen.
2. The surface are of the OS footprint. Windows has a HUGE foot print: many hundreds of millions of actively running systems.

Malware developers are going to focus on exploiting large numbers of users who behave foolishly, on the largest install base of systems.

Now, I completely agree that Windows can improve with respect to. security (and other areas of course). But in the grand scheme of things, its really very secure.

I argue that if Linux became as popular as windows that it would face security problems at a similar scale.

What is happening with the iPhone and malware is anecdotal evidence of this.

Re:Not really

[AvitarX]

as a frequent hotel guest who is not an idiot I am sympathetic to many of those.

How hard is it to get my damned name right so I can then get onto the internet? apparently way too hard for most hotels (and yes room number + name must match to get online often.

And most hotels have internet on the TV, without a laptop. And paying for the cord would piss me off too (though I would take that if it meant I didn't need to share the wireless bandwidth from the hours of 7pm-1am).

See previous, the internet often does not work. I have stayed at hotels with over 1 second ping times in those hours.

Re:Not really

Linux kernel nor sudo can't

But you can. In XTerm, Ctrl+Leftclick, "Secure Keyboard" at least locks out other X11 applications.

Re:Not really

[poetmatt]

you don't even need UAC to bypass in windows because 99% of the time, space programs use windows XP not vista. Nice try. Oh, and the fact that you can make linux a hell of a lot more secure than windows? yeah, fail.

Re:Not really

[shutdown+-p+now]

The full extent of that reasoning: if 51% of the people say the other 49% should be enslaved, the ballot makes it right.

Not really; note that I said "citizens", not "majority of citizens".

In any case, show me a democratic government in which, if N% of people say that other 100-N% should be enslaved, they can't make it happen by legal means, for any value of N (keeping in mind such things as referendums, constitutional amendments, etc). U.S. is definitely not in that list, as its Constitution can be arbitrarily amended, given a supermajority - you could get slavery back tomorrow, or install absolute monarchy, if there was sufficient public support for it.

The only western country I can think of in which the ballot does not ultimately rule supreme is Germany with its "immutable" Constitutional provisions (that guarantee the "fundamental democratic character" of the system of government and certain basic human rights). It's fairly obvious, however, that with sufficient support, Constitution is just a piece of paper - it won't help you against a revolution by an armed mob, and then whatever laws they establish will become the law of the land. So in the end, pragmatically, it's always tyranny of the majority - it may be just more or less veiled.

The purpose of the government is to uphold every citizen's inalienable rights

Who determines what rights are inalienable? What if 51% and 49% disagree?

Re:Not really

[Hognoxious]

Don't worry, they'd allow you to retry it when you fail.

Re:Not really

i hate to say it but hes probablly right. but than having a OS that requires the user to think is part of its security. Even in my circles the Lusers who are saddled with windows tend to check their brains at the door.
"I Dream of a free world. One without Windows and Gates"

Re:Not really

[Hognoxious]

The purpose of the government is to uphold every citizen's inalienable rights

In theory, yes.

But in practice, the majority define what "inalienable" means.

Re:Not really

[Hognoxious]

The problem isn't "deep design flaws in Windows"

Windows evolved from DOS, which was designed around the assumption that a machine was used by a single user. It's a hotel with no locks on the rooms. When they added the locks later they were on the wrong side of the doors, or the doors weren't even there, or the maid couldn't get in so she taped over the latch. Other operating systems - unix, MVS - are designed on quite the opposite basis.

Don't want to fart in your chair Mr Ballmer, but to a certain extent it is like he said.

Re:Not really

I finally figured out. You people are going to think I'm slow but I finally figured out how to have a pleasant read on slashdot. I'm not one to tinker around with profile settings but the pro MS shilling has just gotten out of control lately. The parent poster is a notorious MS shill/troll despite his protestations to the contrary. So, I just took a moment to click the little "Alter Relationship" link beside his username, made him a foe and voila! No more sopssa.

I can't believe it, it's like a breath of fresh air. I can't wait to go through all of the old Linux and Google stories and tag all the shills troll. I can think of a few off the top of my head... Goodbye, Blakeyrat, Westlake, and so on and so forth. I had almost given up on this site and I don't know how much you people are getting paid but, I hope you end up in the worst part of purgatory along with the telemarketers and telecom company shills.

Re:Not really

[plopez]

Bullshit. It's due to crappy insecure software. As long as they get a free ride they have no reason to fix it.

Re:Not really

[plopez]

If some some one sells you a car with defective locks, aren't they somewhat liable? WHy should you have to call someone who saya "change the locks at *your* expense." You've already paid for the car, why pay more?

Re:Not really

It's all about the size of the user base. Car analogy...

I have a car that comes with the best security system. My car is also very popular. It gets broken into more than the unpopular car where thieves may not have spent the time honing their skills to break into it.

Re:Not really

The NT line was more of a parallel evolution to the DOS-based line. Eventually it converged and usurped Win32, and that's where the back-compat problems come in, but the only real security legacy from DOS is the 3rd-party presumption of admin privileges. DOS just isn't a part of the NT line, including XP, Vista, and 7.

Re:Not really

[Rick+Zeman]

LOL, your comment reminded me of this old Apple commercial (needs Quicktime): http://pulsar.esm.psu.edu/Faculty/Gray/graphics/movies/fullsupport.mov

Re:Not really

[pod]

The thing is, as we don't care so much about how to properly feed, exercise and clean ponies, normal people don't care so much about computer security.

Oh, what a cop out!

Most of us don't care about the care and feeding of ponies because.... most of us don't have ponies to care for and feed.

On the other hand, most of us do have computers.

Most of us also have cars, and even though most of us do not have mechanical engineering degrees, we know the basics of maintaining them, either ourselves or having someone else do it, because we know negligence can be very expensive. Using public resources to bail out computer user mistakes due to ignorance and negligence will clearly not solve the problem. Like any handholding or subsidizing, it only makes the problem worse in the long run.

Re:Not really

[RobertM1968]

I have to disagree with that. Malware problem is usually because of user stupidity.

I have to disagree with you.

The term "malware" can be used to denote various types of harmful software; viruses, spyware, adware, etc... including the spate of .NET exploits and related things I have been cleaning off systems for quite some time, that required no user interaction other than visiting a website.

Heck, I am still uninstalling that idiotic plugin from Firefox on 90% of every system that comes in the door to my shop with a virus or other malware issue. Most of the infected customers swear they installed nothing... quite a few of those admit to going to "pr0n sites" - of which, guess what I found on said sites? And please dont tell me that choosing to view porn online is thus the proof of your claim of "user stupidity"

By definition, the German Govt is considering handling all of those types of issues (viruses, spyware, adware, trojans, etc) and make no differentiation as to the attack or infection vector.

Re:Not really

One problem with your pony analogy, the person that owns the pony IS worried about the care and feeding. This is trying to shift the care and feeding of the pony onto the government's dime, when it should be paid for by the owner.

Why would the owner be responsible for paying for the upkeep of everything else they own, except for their computer?

Re:Not really

[Runaway1956]

"1. This isn't the role of government."

I don't know. I used to think government should just bugger off, and leave people alone. But, they insist on meddling in every facet of citizen's lives anyway. Hell, government spends 25 to 30% of my paycheck before I ever get to see how much I've earned!! If government is so intimately involved in all our lives anyway, government might as well slap around those people who ARE running a spambot from their machine. Knowingly, or not. Ain't no malware on MY machines, why should I tolerate the slowdown of the internet because 6 of my neighbors are infected with every malware known to man and martian?

Re:Not really

[westlake]

Hell no, that can't be right.
  The purpose of the government is to uphold every citizen's inalienable rights; and it must be as small as it can be while remaining capable of fulfilling that purpose. No more, no less

There are no restrictions on amendments to the American Constitution. No greater formal barrier to repealing the 1st Amendment than the 18th, Prohibition.

We the People of the United States, in Order to form a more perfect Union, establish Justice, insure domestic Tranquility, provide for the common defense, promote the general Welfare, and secure the Blessings of Liberty to ourselves and our Posterity, do ordain and establish this Constitution for the United States of America.

This is surely not - on its face - an argument for small, limited, government.

"Inalienable Rights" are abstractions drawn from a theory of natural law. It makes for the best in revolutionary rhetoric.

But, on deeper reflection, Americans have always preferred to "get it in writing."

Re:Not really

Quite the contrary, you're too damn young if 3 years seems like a long time.

He would be, but for the fact that he's not saying that 3 yrs seems like a long time. Quite the contrary.

Re:Not really

[Capsaicin]

And I'm not sure where you've got the "liberal" part from, since it wasn't in my OP.

Well the 'liberal' part usually goes with liberal-democratic, so as to distinguish it from "democratic" as it is used in the sense the "German Democratic Republic" or the "Peoples Democratic Republic of Korea," 'liberal,' in this context referring to the support of private property rights and markets.

That being said, I agree with you almost completely when you write:The role of a democratic government is precisely what the voting citizens define it to be. Though I would stress that limitations are imposed by whatever the terms of the "social contract" under which that government obtains its legitimacy may be. Practically this usually means it is subject to constitutional limitations as to legislative power.

Where I strongly agree is that the "role of a (liberal)-democratic government" is not what some particular citizen (or even some foreign "thinker") defines the role of government to be in their personal philosophy in opposition to the right of the majority to determine that role. A society must be free to chose a way to organise itself even at the expense of offending a particular citizen's ideological purity.

Re:Not really

[FlyingBishop]

Well UAC is built-in to the system.

Yes, but it's almost completely ineffectual

Re:Not really

[bloodhawk]

The current Windows (NT based) did not evolve from DOS at all, it has its roots firmly with OS/2 and was a multi user platform from the start. The windows 3.1/95/98/ME evolved from dos, those are long since dead.

Re:Not really

dude you don't have a clue about what your talking about. Windows NT line did not evolve from DOS and has had security built in from the start, some of it not very well (that is besides the point), NT was ALWAYS designed and implemented as a multi user system with fine grained security permissions and multi sub systems, in many ways it is not much different than unix and in some ways it is better. before posting learn a little bit about the technologies of which you speak.

Re:Not really

[Xtifr]

Setting the execute bit is not difficult...

Yes, but it has to be done. Which means you have to persuade someone to do it.

if someone emails someone else a binary the execute bit will probably already be set.

Set where? The mime type doesn't define "executable bit" anywhere. And even if it did (which it wouldn't because it's not tied to a particular family of OSes), any unixish mail user agent which honored that instruction and set the executable bit would be blasted out of the sky by thousands, if not millions, of irate users who know what a security risk it is, and the program would never be allowed in the repositories of any reputable distribution.

And even if that weren't true, and commonly used unix MUAs did generously set the executable bit for you (which, I reiterate, they don't), that still wouldn't help, because, unlike with MSDOS or its horrid descendents, the current directory is not in the executable PATH! And no MUA will save to anywhere where a program could normally be executed, so you'd either have to persuade the user to modify their path or specify a path designation when they try to execute your malware, so we're back to social engineering, even in our contrafactual universe.

Apparently, the "weird thing" you've never heard of is UNIX (or Linux or BSD). :)

Re:Not really

[jipn4]

I have to disagree with that. Malware problem is usually because of user stupidity. Like any other OS, you can run Windows securely if you don't do stupid things.

You're exhibiting typical programmer stupidity. Hard as it may be to believe, most people in this world don't give a damn about software, they just want to get their work done. They don't want to be pestered by annoying dialogs, and they certainly don't want to understand security just in order to browse the web or use their PC without virus infestations. If Windows can't support that kind of usage (and it can't), then that's a problem with Windows, not with the users.

But any (good) Linux sysadmin knows there been worms in Linux too and remote hacks are commonplace if the system isn't properly secured (and casual users just wont do that).

It's a lot harder for a casual Linux user to make a Linux system insecure by accident than for a casual Windows user to make a Windows system insecure. Windows really is badly designed from a security point of view.

Re:Not really

[jipn4]

The role of a democratic government is precisely what the voting citizens define it to be. No more, and no less.

Not quite. If the citizens make decisions that make government undemocratic, then their decision is logically not part of the democratic process anymore (since the democratic process has ceased at that point).

Re:Not really

[bhtooefr]

To be fair, I said it was resistant to dancing bunnies, not any other attack vector.

Dancing bunnies is an attack vector used by trojans to get the user to disable their security on their own, no software or hardware vulnerabilities needed.

Re:Not really

[symbolset]

I think that you know that I disagree. Linux does not have any form of autorun. Most distributions lack open ports. That's a lot of attack surface missing right there relative to Windows on a per system basis. After all, if your computer isn't listening over the network, it can't be compromised over the network by a remote initiator; if it isn't running a file on the root of a mounted share, CD or pendrive then it can't be automatically compromised by software placed in those locations (or mailed or dropped in the parking lot or in the Men's room at the clubs where your high-value targets hang out) without further user interaction. Then there are the thousands of object formats like images, spreadsheets and wordart that Microsoft seems to think should be embedded in every application. That's how you wind up with a buffer overflow in font rendering that gets system privileges. Even without these things the embedding of Turing Complete scripting languages in every application with hidden execution renders the Windows platform's security horrendous.

Both can be rendered more secure of course. Here, for example, are some NSA recommendations for Windows. With good system administration by a skilled staff it's possible to build an image and policies for either that can carry most users through a year without being compromised despite heavy online research and heavy communications on the part of the end user. I think we can both agree that this is not what's actually happening in the field.

I argue that if Linux became as popular as windows that it would face security problems at a similar scale.

This argument is beaten to death. Linux runs the Internet. There is no higher value target than the server that stores the files and databases for thousands of users or processes their credit cards and here market share is more evenly matched. And yet... where is the Linux equivalent of the SQL_slammer worm that compromised 90% of all the vulnerable servers in the world in under an hour? Nowhere. The "When Linux is popular it will have problems too" story is just getting silly. There are more than enough Linux users both for commercial software vendors and malware vendors and they're both avoiding it like the plague. Kudos to your marketing team for making the former happen. I have to think the latter made that decision on their own, but perhaps the marketing does help, so thanks for that.

Did you know that the Windows Malware ecosystem is in dollars actually far larger than the Windows market? I thought it odd too, but if you count time and money lost, development and marketing and sales on both sides (attack and defense), hardware and services, it's not even close. Maybe you're on the wrong side of the business.

I'm going to summarize with a truism you should engrave on your desk: "Anything a program can do, another program can do."

Re:Not really

the fact is that Windows has the most infections. The proof is in the pudding! Yes, user stupidity contributes to that... but it ignores deep design flaws in Windows itself!

Um, I'm not one to just blindly buy Windows products, but maybe you should put a little bit more REASON into your posts.

You offer absolutely zero evidence for your claims, and to quote an overused slashdot meme, correlation does not prove causation.

Because "Windows has the most infections" (ignoring the differences in user bases and thus profit involved in developing an infection), it therefore has the most flaws?

Windows probably has more users click on "Free Xbox 360" banner adds every DAY than there are Linux boxes in the world.

Re:Not really

[Alpha830RulZ]

If some some one sells you a car with defective locks, aren't they somewhat liable?

Car door locks are pretty weak, easily bypassed in most cars with appropriate tools. In many not so old cars, all that is needed is a screwdriver. They also don't prevent the car from being stolen by being towed, or broken into by breaking the glass. All of these are recognized and dealt with as criminal acts, and are insured against as an inevitable occurrence in a world that has the occasional nasty person in it. We don't hold the car manufacturer liable for the existence of car thieves, why is Microsoft liable for the existence of bot-herders?

Microsoft has a continual stream of security updates, an easy to use automated update system, that it supplies for free to literally hundreds of millions of people. They create fixes, on their nickel, and proactively push those to the machine. You have to actively resist the updates (or not be connected to the network, in which case the point is moot) in order to not have them applied.

I realize Microsoft is easy to hate, but if there were any reasonable case for liability on Microsoft's part, don't you think some lawyer would have found a way to sue them already?

Re:Not really

[Alpha830RulZ]

The protections won't get set by the sender - they're set by the user settings, or by what the mail program causes them to be set as it saves the file to disk. These are usually managed through the umask settings.

It's possibly to get a key logger to run on a *nix system, but getting the logger onto the system is quite a bit less convenient for the bad guy, IMO. That said, if a user who would hit 'OK' to any random UAC popup is running on Linux, there is probably a way to social engineer them into doing something similar on the linux box.

Re:Not really

[Alpha830RulZ]

That being said, will the person at microsoft who decided that the first or default account is an administrator please stand up. You need to be beaten.

Yeah, I agree. That would be as bad as, say, having the admin user be the first user you set up on a linux box, or giving it a UID of 1. Wait...

Re:Not really

[Mongoose+Disciple]

I think that you know that I disagree. Linux does not have any form of autorun.

This does go back to what the grandparent poster was saying about flaws in XP that no longer exist in Windows 7.

At least, my Vista machine doesn't autorun (as in from the CD drive) anything, so I assume Win7 won't either. Probably I could still change the config in some way so it would, but that isn't really what you're getting at, I don't think.

Re:Not really

[drsmithy]

No matter how much the apologists bray, the fact is that Windows has the most infections.

As they say so commonly on Slashdot, Correlation != Causation.

but it ignores deep design flaws in Windows itself!

For example ?

Re:Not really

[drsmithy]

If some some one sells you a car with defective locks, aren't they somewhat liable? WHy should you have to call someone who saya "change the locks at *your* expense." You've already paid for the car, why pay more?

How about when the locks are fine, you just don't use them properly (or at all) ?

Re:Not really

[symbolset]

Thanks for joining the discussion friend. Now go back and review what he and I have shared on the subject to get some context on what I said. You may have to subscribe to slashdot to get the good bits.

Windows still has autorun even in W7. They've limited it, but it's still there.

Re:Not really

[drsmithy]

Yes, but it has to be done. Which means you have to persuade someone to do it.

Users have demonstrated a willingness to extract files from password-protected zip files and run them. How hard do you think it's going to be ?

Set where?

Putting them inside a tarfile is the most obvious method.

Re:Not really

[drsmithy]

The current Windows (NT based) did not evolve from DOS at all, it has its roots firmly with OS/2 [...]

Windows NT did not evolve from OS/2. It was designed and built independently to _replace_ it.

Re:Not really

[drsmithy]

This argument is beaten to death. Linux runs the Internet. There is no higher value target than the server that stores the files and databases for thousands of users or processes their credit cards and here market share is more evenly matched.

Sure there is. Millions of systems that aren't constantly monitored and maintained by professionals.

Which cars do you think get stolen more ? The ones in guarded, restricted-entry garages full of video cameras, or the ones parked in dark alleys ?

Your argument is specious.

Re:Not really

[symbolset]

I'm having a disconnect between what I said and your rebuttal. Could you spell it out for me?

Re:Not really

[drsmithy]

A million systems that probably won't ever be repaired, are a "more valuable target" than a single system that will be repaired in a matter of hours, if not minutes.

Re:Not really

[dave87656]

Malware problem is usually because of user stupidity.

Well, I have to disagree with that. I use Windows Vista using and I have virus protection and I surf using a non-privileged account. I only use the admin account to admin the machine. I also have a linux box from which I do most of my work and internet surfing. The Windows Laptop is used when I'm on the road. Still, despite doing all the "right" things and not downloading EXE files or Office documents from people I don't know, Vista still got infected with a keystroke tracker which the AV software didn't pick up.

My Linux box, from which I do the majority of my work and surfing, has remained uninfected, despite the fact that it has non AV software. We also have 50+ Linux boxes at the company which have remained uninfected since 2002.

The moral of the story is that Malware is very well due to MS's poor security framework.

Re:Not really

[Foredecker]

Hi Symbolset. Good to hear from you. Please see this: http://wp.me/pJ1OK-1A

Best Regards
Foredecker

Re:Not really

[dave87656]

I know one guy who reinstalls Windows every year because his PC gets infected and become unusable, despite AV software. Yet, being an MS apologist, he simply believes the company line that poor MS is only so virus-ridden because everyone picks on it because it's so successful. One year, he called me up, because, after spending a day trying to get everything reinstalled, he couldn't get his network card to work and he needed the driver for that to connect to the internet to get the other drivers. I used my Linux box to download the Windows drivers for him. In a short weekend, he was able surf the internet again with an uninfected PC. Oh wait, actually he called me back to say he was still having problems. His PC was infected again in the course of the first day!

Re:Not really

[Krneki]

http://online.wsj.com/public/article_print/SB118480608500871051.html

"In May, a virus in a banner ad on tomshardware.com automatically switched visitors to a Web site that downloaded "malware" -- malicious software designed to attack a computer -- onto the visitor's computer. ScanSafe Inc., one of the first security firms to discover the virus, estimates the banner ad was on the site for at least 24 hours and infected 50,000 to 100,000 computers before Tom's Hardware removed it."

So explain me, how going to tomshardware.com and getting infected is user stupidity?

Windows is insecure by design.

Re:Not really

I didn't even know ponies could talk to strangers. If I did, I'd have been more careful when I told my pony all my secrets.

Guess I'm screwed. I wonder if there's a government support line for people whose pony has blabbed.

Re:Not really

"Like any other OS, you can run Windows securely if you don't do stupid things."

False, if I can't see/change the code myself, I can't be sure of what is in there, anything could be in there, if [i]that[/i] is your idea of security, how much more ignorant can one get?

I'll fix that for you:

If you don't do stupid things like run Windows...

Re:Not really

To replace it and also support/displace, the design team were some of the same people just through differences of opinion the teams diverged. hence orginally all your os/2 apps ran on NT quite happily as there was an os/2 sub system.

Re:Not really

[N1AK]

If some some one sells you a car with defective locks, aren't they somewhat liable?

By defective do you mean impossible to bypass? Or just hard to bypass? I don't know anyone who succesfully sued their car manufacturer because their car was broken into, and I've never heard of Ford paying for the replacement of things that were in the car when stolen.

As it is the car manufacturer's (not the governments) job to stop people breaking into your car, should the police now refuse to deal with this? Is the same true of houses?

Re:Not really

Cue new multi-purpose punishment:
Doing anything the govt. doesn't like which in any way involves the internet - penalty, suspension/removal of license.

Brilliant idea.

Re:Not really

[indifferent+children]

We don't hold the car manufacturer liable for the existence of car thieves, why is Microsoft liable for the existence of bot-herders?

If Ford touted the security of their cars, but tapping "shave and a haircut" on the driver's window of any Ford unlocked the car, started the engine, and disabled any installed LoJacks, I could see a lawsuit.

Re:Not really

[drsquare]

Hell no, that can't be right. The purpose of the government is to uphold every citizen's inalienable rights; and it must be as small as it can be while remaining capable of fulfilling that purpose. No more, no less -- with emphasis on the "no more" bit.

1. Who decides what an inalienable right is?
2. Who decides the size or purpose of government if not the 51%?
3. A government being as small as possible is just your opinion. Who made you dictator?

Re:Not really

Most people who drive cars don't want to learn about gear boxes and the clutch, or how the engine works so they can learn the most efficient and safe ways to drive - but that doesn't mean we should dumb down all cars to the point of being automatics and expect the manufacturers to account for ever-increasing amounts of willful ignorance.

It's a lot harder for the casual linux user to make the system insecure because Linux tends not to pander to people that don't understand what the hell they're doing. Linux will always benefit from the intelligence of the majority of its users - OSX will suffer greatly when it becomes a major target for malware, precisely because it's users are mostly unable to solve their own problems and will have to reply on constant and prompt action from their all-powerful overlords (Apple in case you were wondering).

Re:Not really

[LWATCDR]

If it is a Trojan than yes it is the user fault. If you run an executable attached to email it is your fault.
Now if exploit happens because of a buffer overflow in a GIF file in an HTML email then you can blame the application or even the OS if the OS is providing the service to open the GIF file. Attachments are not a terrible thing at all. I use them all the time and it beats using uuencode.
HTML Email on the other hand I feel is a huge mistake. ActiveX was also a huge mistake.
Making it easy to use is not a mistake. Just stop click on attachments of nude tennis starts and you will be just fine.

Re:Not really

[MobyDisk]

show me a democratic government in which, if N% of people say that other 100-N% should be enslaved,

One where the 100%-N are armed.

P.S. If they aren't armed, then it isn't democratic. In modern day, people assume that elections == democracy, and that isn't true. There are types of democracy that don't rely on elections. And election results can only be enforced if the people are willing.

Re:Not really

[rtfa-troll]

If it is a Trojan than yes it is the user fault. If you run an executable attached to email it is your fault.

No. You cannot assume that the user knows about computers. Even if you now are a security guru you were once a two year old child and knew nothing. To get from one stage to another you had to go through a stage where you could do some stuff but didn't understand it.

If the O/S makes it possible for you to do something seriously insecure without demonstrating clear understanding of what you are doing, that is a user interface vulnerability just as bad as any buffer overflow.

What is the alternative? All attachments / html etc. should run in sandboxes where data has to be explicitly provided to the sandbox by the user. The interface should always require the user to do an affirmative action like dragging a file into the sandbox icon in order to allow access. It should never ask questions like "allow sandbox to access xyz.doc? Yes/No?" because such questions are easy to answer without understanding.

On ActiveX I agree. HTML email as it was defined yes, but a limited dialect of HTML would probably be as good as anything. However the nude tennis thing is just not true. You can click on a "rescue" application just the same as tennis. You can't tell what is from support and what is from a hacker. That is a problem.

Re:Not really

[jipn4]

I'd normally be the first to agree, but isn't a large portion of malware used for criminal activity? Identity theft, botnets that engage in DDoS extortion attempts, spam relays, phishing, etc, etc. It seems to me that law enforcement (i.e: government) has a legitimate interest in reducing the number of malware infections that are out there.

So they should go to the source of the malware infections: Microsoft. Microsoft needs to be held responsible for selling software that is so susceptible to malware. They should not be allowed to disclaim responsibility in their contracts, and they certainly should not get financial support from the government.

If Microsoft were held responsible for the damage they are causing with sloppy and badly thought out security, market forces would already have taken care of the problem: either they would have been sued into non-existence, or they would fix their software.

Re:Not really

[Saint+Fnordius]

Don't forget the chance to [a]bort if you don't have the patience to [r]etry after you [f]ail...

Re:Not really

[LWATCDR]

Every email program I have seen asks if you want to run the attachment. At this point you are trading usability for security.
The email server at my office blocks .exe files. It is a real pain to email an update install.exe from my PC to our tester because of that. We just rename it .xex and it goes through.
Could email be made even safer than it is now? Well yes but you would loose functionality.
You could just exclude all attachments. Yea that would help so much.
There gets to be a limit to just how far you can go to keep people safe from themselves.
Hey every increase in real security is a plus and if you can keep people from shooting themselves in the foot that is also a plus but it isn't a responsibility of the software vendor. To not install malware is the responsibility of the user.
Microsoft really should make it MUCH harder to modify system files and runs services. It should also make it a lot easier to uninstall crap completely. That I will give you. But unless you want to remove the ability to include attachments you can not stop people running malware.

Dumbfounded

[Jaysyn]

This is one of the dumbest things I've ever heard. Is this just a government make work project or something?

Re:Dumbfounded

[MichaelSmith]

This is one of the dumbest things I've ever heard. Is this just a government make work project or something?

My income is based on government make work projects you insensitive clod!

Re:Dumbfounded

[Cyrus20]

and my income is based on "that is one of the dumbest things I've ever heard." yep I work in a call center

Re:Dumbfounded

[Shakrai]

Is this just a government make work project or something?

One could argue that will save the government work in the long run, given that many malware installations are used for criminal activity ranging from identity theft to extortion.

Of course that doesn't mean it isn't a make work project or that this is the best way to go about combating the malware threat.

Re:Dumbfounded

[Shakrai]

My income is based on government make work projects you insensitive clod!

So do you work for DOT and vote Democrat or for a defense contractor and vote Republican? ;)

Re:Dumbfounded

[nametaken]

I'm independently lazy, you insensitive clod!

Weak

This has got to be one of the weakest arguments posted on Slashdot in recent memory. Thanks for the laugh

What I heard

Is that Microsoft is introducing a new system, called Das Boot, which will allow you machine to boot up even if you drop it in the tub.

Re:What I heard

If you actually RTFA (not the blog one, which is from the submitter himself), it never mentions Microsoft anywhere. Nor do the german press releases.

Re:What I heard

If you actually had any knowledge of movies or books, and a sense of humor, you would know that this was a joke about the german movie Das Boot, about a WWII submarine.

wrong funding strategy

[RichMan]

It should be funded by the ISPs. The ISPs should be free to charge end users rates based on the OS the end user is doing.

Like insurance rates for different drivers of different cars as end users present threats to the net based on their OS and experience the rates charged to support a malware elimination office should depend on what is being connected.

Re:wrong funding strategy

So in other words the ISP is going to charge me based on the operating system found on my router?

Re:wrong funding strategy

And my half a dozen linux machines and two windows ones would be charged...?

Would my Windows machines be charged extra, even though they've NEVER had malware? Ever? (And yes, unlike so many who claim such, I DO have a virus scanner, even though it's so far been unnecessary).

Re:wrong funding strategy

[LikwidCirkel]

Yes very much so! Since this is publicly funded, there should be a different system. Imagine if users accumulated "demerit" points for bad computer practise and getting their computers infected, resulting in ISPs charging them more. This might actually help to encourage people to educate themselves better too. Of course, like with driving, it could be lessened with good behaviour over time, or using antivirus.

Re:wrong funding strategy

[earlymon]

The ISPs should be free to charge end users rates based on the OS the end user is doing.

Are you completely insane? (And I'm asking that in the friendliest voice.)

Do you have any idea just how quickly that would turn into unprovable organized crime?

Because after all, this scenario could happen very quickly: OS Company A goes to the ISP X, and cites incentives, rebates or outright kickbacks for lower rates for OS A - while OS B and OS C are surcharged. An especially effective scenario if OS Company A just happens to be the one with the most trouble - and the most cash to throw around to shore up market share.

And OS Company A even helps the ISP with metrics to show that they're product is better / safer - whether it is or not. Example - 80% of all of one ISP's malware troubles come from OS A. (In the pretend-reality of my example, it could be coming from a handful of lost souls). But - OS A has a 90% market share - so it's mal-rate of 80% being less than the market penetration of 90% makes it .... better.

And how would OS B or C make up for the other 20% of hits? OS A would simply have to put a purposefully-infected - heavily infected - OS B or OS C machine on that ISP's net - and the lie with statistics is complete.

Like insurance rates for different drivers of different cars as end users present threats to the net based on their OS and experience the rates charged to support a malware elimination office should depend on what is being connected.

You get much better insurance than I do. In the USA, they tell us that that's what the rates are based on - but in reality, nothing I drive never ends up with an insurance reduction.

They take you for every nickel that they can imagine ways to justify and get from you.

Re:wrong funding strategy

[sopssa]

All of the problems with multiple computers and OS's behind a single internet line beside, they would never do it that complicated but just charge the extra fees from all users equally.

Re:wrong funding strategy

[bakawolf]

"We don't support linux."

Re:wrong funding strategy

as long as you can keep microsoft from coercing isp's to charge more to people using non MS operating systems.

Re:wrong funding strategy

[omfglearntoplay]

I would just like to say that in no way is it possible for 40 people to put a dent in the amount of malware problems an entire country would have unless everyone that calls actually takes notes and learns what not to do. In other words, not gonna happen. But I have to say, it's a noble effort. God knows malware drives sales of new computers like nothing else, and it's basically just money lost for the poor average soul. Not that I have tons of sympathy for users that don't want to learn anything, but a lot of people out there have real lives with families and simply don't have a good resource to even get started off on the right foot.

Re:wrong funding strategy

[dave562]

You get much better insurance than I do. In the USA, they tell us that that's what the rates are based on - but in reality, nothing I drive never ends up with an insurance reduction.

They take you for every nickel that they can imagine ways to justify and get from you.

I think it's time for you to change insurance companies then. In fifteen years I've driven close to ten different vehicles. Over the course of fifteen years I've had everything from a perfect driving record almost all the way to the other extreme of being on probation and being one ticket away from having my license revoked. My insurance costs have fluctuated accordingly to reflect the vehicles that I drive, the coverage that I have on them, and my driving habits at the time and my age. The only time I've seen my insurance go up is when I drove a newer car, or when I went from liability to comprehensive.

I'm willing to bet that you keep changing up to newer cars and therefore your rates never go down.

Re:wrong funding strategy

[earlymon]

No, I've been driving for close to 40 years - and have usually maintained zero points (had at most whatever a stop sign in a residential zone got me) and very few new cars (2). And I'm not a total idiot at buying insurance. Maybe with your record and less experience over time, you've saved money when backing away from probation and so forth.

If you're a lifelong safe driver, the rates do not steadily decrease to reward your great driving - despite the commercials.

Oh no - you work for a living - let's check that odometer - more miles to more work=higher risk=higher premiums. More experience with any trouble=you're overdue and you're high risk, especially _given_ that your reaction time _will simply lower_ as you get past 40 years old.

They get you coming and going.

Re:wrong funding strategy

[earlymon]

Actually, that was supposed to say that reaction time will increase. See? I just proved their case. :-P

Re:wrong funding strategy

[dave562]

I agree that if you're a consistently good driver and keep the same vehicle, the only time you are going to see rate reductions is when you pass those age gateways. For most people I know they saw a reduction when they turned 25. If you're getting dinged for mileage then your broker isn't treating you very well. I've been with State Farm except for a brief period when my driving record was so bad that I had to go with a special AllState program for terrible drivers. I've always had a 15,000 mile a year policy and never gotten any grief for it.

My only real beef with insurance companies is how quickly they will total a car, and how low their compensation rates are when they do it. I've gotten around that by going with a declared value policy. Now I know that if I lose my car, I know exactly how much I will be getting for it. It costs a little bit more per month, but I never have to worry about being given thousands of dollars less than market value for my vehicle. I have never once had an insurance company give me enough money to actually replace my vehicle with one of equal value in the same condition as the one they totaled out.

Re:wrong funding strategy

[earlymon]

I turned 25 after the introduction of no-fault insurance - that actually did lower my rates - in one state. I moved to a fault state - rates went up - then they adopted "no fault" - had no similarity whatsoever to the true no-fault goodness I'd gotten elsewhere - and they upped rates again. That was between 19 and 25 for me.

It varies by generation and state as well, I suppose. When I was 25, I was promised reductions when I turned 40. When I turned 40, the "new" data came out - bye bye reduction.

Someone translate to German...

[NecroPuppy]

Step 1: Back up your data.
Step 2: Install SUSE Linux.
Step 3: Profit?
Step 4: Laugh at Microsoft. [schadenfreude here]

Re:Someone translate to German...

[d34dluk3]

Step 1: Back up your data. Step 2: Install SUSE Linux. Step 3: Profit? Step 4: Laugh at Microsoft. [schadenfreude here]

schadenfreude

I got this part:

schadenfreude

Re:Someone translate to German...

Schritt 1: Sichern Sie Ihre Daten.
Schritt 2: Installieren Sie Ubuntu Linux.
Schritt 3: Profit?
Schritt 4: Lachen Sie ueber Microsoft. (Germans are to proud to explicitly state this as Schadenfreude.)

"Hello, Malware center"..

[SuperKendall]

"Hi, I'm calling about malware on my PC"?

"Buy a Mac". <click>

Re:"Hello, Malware center"..

[Cwix]

I would think someone with a low UID wouldn't get into stupid practices like flame baiting... *sigh*

Re:"Hello, Malware center"..

[I_have_a_life]

"Hi, I'm calling about repeated attempts to steal my Ford Focus for spare parts."

"Buy a BMW".

Re:"Hello, Malware center"..

[shutdown+-p+now]

"Hi, I'm calling about malware on my PC"?

"Buy a Mac". *click*

Same caller a while later:

"Hi, I've bought a Mac and installed XP on it, but, ugh... it seems to be slow again..."

Re:"Hello, Malware center"..

[selven]

Smart call center:

"Hi, I'm calling about malware on my PC"

"Ok, install this weird Linux distro from the 1990s"

  (the next day) "Tried the Linux, but the internet isn't working"

"Good, that means your computer is secure now"

Re:"Hello, Malware center"..

"Hi, I'm calling about repeated attempts to steal my Ford Focus for spare parts."

"Buy a BMW".

"Get a tank for free".

Re:Yea

[bdrewery]

Mod parent up please.

Bad at following directions

[Faaln]

Unfortunately none of those calling in will be following the one step solution; stop going to German porn sites on a windows box.

Re:Bad at following directions

[couchslug]

"Unfortunately none of those calling in will be following the one step solution; stop going to German porn sites on a windows box." /me boots Windows in a VM and sets out to research the problem...

Too small a staff

[Scholasticus]

With a staff of 40, they'll be swamped. I don't even work in IT, and I get 5-10 calls a week from family members and "friends" who want me to help them remove viruses and spyware from their machines (some I help, some I don't). Nobody will be able to get through, even with an automated system to help those who know at least a little about what to do.

Re:Too small a staff

you must have some nasty, dirty friends if they're having that much trouble with evilware

Re:Too small a staff

[Faaln]

My main problem is that, if they're anything like the people I've had to work with, they won't call in until it's so bad they need a clean OS install anyway and then the call will probably turn into a long conversation about back up options for their documents and files(some of which are probably infected and will rape the new install soon enough).

Re:Too small a staff

40 people will be able to get through at any one time.

Re:Too small a staff

[natehoy]

This is not an open support desk, at least that's not what the article describes. This is a "referral of last resort" from an ISP to this support desk. In your case, you'd probably still field most of the calls, but your friends and family would say "my Internet people just called me and said I have worms or a cold or something, and that they'll stop my Internet unless I fix it. Help!"

Based on what I'm reading in the article, here's how a general fix would go:

1. ISP detects malware patterns coming from one of their users.
2. ISP contacts customer, says "you appear to have a virus that is doing bad things on the network. Please fix it." or pops a web page with the same message and probably a link to an antivirus solution.
3. (assuming user doesn't know how to install AV software) ISP refers customer to government call center.

If the customer refuses to fix the problem or turns out to be unable to do so even with help, then the German government needs to figure out what they want to do. Shut the user off? Attempt to have the ISP block the malware with port blocking? Some interesting and perhaps disturbing possibilities there.

Re:Too small a staff

[Corporate+Troll]

Sorry, but if you get 5-10 calls a week you are doing it wrong. The first thing I tell people I help is that they'll lose admin and they'll have to go through me for anything they want to install and that I'm not Santa Claus and will reject stuff. Those that accept, will run Limited User and I only hear from them when they do need new software. I will do that gladly and run the complimentary system check which never turns up anything wrong. The others who don't want to play by the rules, and -well, it was their choice- lost my support and won't call.

Manage family and friends like a small business. It's the only way.

Re:Too small a staff

[REggert]

ISP contacts customer, says "you appear to have a virus that is doing bad things on the network. Please fix it." or pops a web page with the same message and probably a link to an antivirus solution.

Popping up a web page would be an extraordinarily bad idea, given how many popup/banner ads, malicious web pages, and adware are already out there selling fake antivirus software.

Windows is vulnerable because that is profitable.

[Futurepower(R)]

"Malware problem is usually because of user stupidity."

Does that mean users of Apple computers are far smarter than users of Windows computers?

Anyhow, maybe when people call the call center number, they will hear, in German, "Dummy! Get Linux. Or, at least Apple."

That's a joke, but it could go in that direction. People at the call center could educate callers that the apparent reason Microsoft products have so many vulnerabilities is that Microsoft top managers don't allow Microsoft programmers to finish their work. Unfinished, vulnerable, buggy, limited software makes more money when a company has a virtual monopoly because then the company can sell "upgrades" and upgrades and upgrades and ....

Meh, no big deal

[straponego]

I mean, it's a drop in the bucket compared to the millions of lifetimes we as a species have already lost to Microsoft's pathetic security. The entire industry is about ten years behind where it would have been had we not had MS fighting virtually every innovation we now take for granted-- the Internet, multitasking, multiuser, open source, open standards, basic security (you don't try eating everything that looks like it'd fit in your mouth... why should you execute every piece of data you find on the internet, as Admin...).

We'd be much better off if we'd just sent them the same amount they profited without ever using their products. We'd have months of our lives back, and lower blood pressure.

If you subsidize stupidity...

...you get more of it.

It doesn't say "for Microsoft"

[Bert612]

The press release doesn't mention Microsoft. In fact it states that this new service is for all users with all operating systems. So while indeed 99% of all users run Microsoft, niche systems like Linux and Mac will be helped too. A good idea which will hopefully help improve internet safety for those users who just don't understand the technology they are using, but want to be on the net just like everybody else.

Re:It doesn't say "for Microsoft"

[earlymon]

In fact it states that this new service is for all users with all operating systems. So while indeed 99% of all users run Microsoft, niche systems like Linux and Mac will be helped too.

I like the way you think.

It's very different from the support centers that I call with hardware problems - like when an update bricked my router - that suggested I:

a) re-install Linux to fix the problem,
alternately, b) don't use a Mac, because they don't do REAL networking,
c) if I were only using Windows, I wouldn't be having this problem,

and my favorite -

d) I must be lying because no one has three operating systems in their house - and if I do, then maybe that's what bricked my router.

But - as I said, I like the way you think, and I wish them many good lucks with this endeavor.

Re:It doesn't say "for Microsoft"

[DangerFace]

This. This this this.

The number of times I've had to explain to my ISPs tech support that they just need to tell me what they want, as opposed to which button in XP to click, at one point got so bad that I feel I was justified in pirating Windows just so I could dual boot into it for those idiots. I had a friend once who was getting a slow connection speed from his router to the ISP, and they told him he'd have to get Windows before they could help him, because they don't support Linux.

Normally with these places the answer is that you just ask, 'What's your favourite distro?' as soon as they pick up, and if they say anything along the lines of, 'Umm...' or, 'What?' just hang up there and then - that's what the redial button is for. With a staff of 40, unless they're thinking of paying network-admin-level Euros, maybe two of these people is gonna have a frickin' clue how to troubleshoot malware on Linux, if the Germans are lucky.

I love the idea of a malware support line not being aimed at Windows users - I mean, come on. Seriously. We can debate why, we can debate how, we can debate many, many things, but we cannot possibly pretend that malware is a serious problem for every single user of Linux or Mac or whatever that hasn't spent hours upon hours setting up security buffers and manually hacking virtualized Windows so that they can save flashsites and then run them on the virtualized system-within-a-system; that's what you get with Windows. At least, that's what I get with Windows, and I have spent more of my life than I care to think about installing firewalls and AVs and giving them custom configs and then realizing too late that I have to do it again and I should have saved the config since I regularly (see: ~ once per year) have to reinstall Windows to get some speed back...

Re:Windows is vulnerable because that is profitabl

[schon]

Does that mean users of Apple computers are far smarter than users of Windows computers?

Well duh. They picked Apple, didn't they?

/me ducks

Lost in translation

[mseeger]

Hmmm..... Neither headline nor summary fits the news. Nothing in the quoted article mentions windows. The article itself is focussing on a small aspect of what is being discussed. Some parts of the discussion would be very negative for Windows users. E.g. it is being discussed to disconnect users from the Internet who don't fix their PCs when attacks originate from them. I don't agree with a lot of things discussed, but they didn't do anything to deserve a /. summary like this.

CU, Martin

Re:Lost in translation

[FlyingBishop]

So you think infected machines should be allowed to continue attacks and spying on their owners?

Re:Lost in translation

[mseeger]

Nope, the disagreement is about protocols and procedures.... Furthermore i would prefer ISPs to make IP spoofing impossible first.

Bailout for economy

[camcorder]

This is not a bailout for Microsoft, it's a bailout for German economy in order to decrease unemployment. Because exhausted call center employees will force government to hire more staff. If they aim to keep lines open for calls that would surely bring the unemployment in Germany to pre-recession levels.

Re:Bailout for economy

[couchslug]

"Because exhausted call center employees will force government to hire more staff."

Or put "Arbeit Macht Frei" over the gate to the call center.

Government provides product specific help for free

[SuperKendall]

I fail to see how government specific help around one specific product from one specific company, is not a bailout. They are reducing Microsoft support costs, pure and simple...

How would it fly if the government were spending money to pay for gas for one specific brand of car?

This must mean...

[AarghVark]

...they are too big to fail?

S.T.O.

...giving users little incentive to switch to more secure alternatives.

...giving users little incentive to switch to more obscure alternatives.

Fixed that for you.

Re:Government provides product specific help for f

they aren't really reducing Microsoft's support costs much, if at all, because Microsoft doesn't give free phone support. You do need to pay for it. I assume that the amount they have you pay covers the costs of said support.

Hey...

[denzacar]

You can buy UIDs too.

Usually people go for those 3-digit UIDs but not everyone has the money for that.
Generally, if you have money to buy Apple products, you have a habit of solving your problems by shopping and you have money to spare.

Re:Hey...

[Cwix]

You can buy UIDs? no shit, guess my newb just showed huh?

I have to agree to a point.

> Malware problem is usually because of user stupidity. Like any other OS, you can run Windows securely if you don't do stupid things.

I kinda agree.

It's stupid to run Windows.

So, if someone uses Windows -- that's a stupid thing to do.

Using Windows and doing complicated rituals to keep secure is even more stupid -- also because it's futile.

So there. Good night.

better code

Malware is **not** badly written code. Badly written code is just bad code.

Malware is code written with explicit malevolent intent. And usually takes a hell of a lot more skill to write than a simple app, because it requires intimate
system knowledge and low level programming in order to avoid detection.

If malware == bad code, then all the coders in this world (except John Carmak) are guilty of writing malware at some point in out lives.

He who has not written bad code, throw the first stone.

Re:better code

Malware is **not** badly written code. Badly written code is just bad code.

But most Malware is badly written.

So AAA is a bailout for Ford Motors?

[meerling]

Sorry, but helping the clueless or unfortunate users from something that wasn't created, distributed, or sanctioned by Microsoft isn't a Microsoft Bailout even if the users are running MS Windows.

If Macs were the big dog in the OS world, would you then be calling it an Apple Bailout?

By the way, don't buy into the apple myths. They have malware and bugs aplenty, they just don't have enough population density to encourage easy transmittal, or even be a tempting target for malware creators. Those scum want to get as many machines as possible, so only niche diehards or those who want to prove a point bother to infect anything with less than a 40% market share. Guess what that means... yeah, that's right, they go after Windows. If you flip-flop the percentages, you'll see a total shift in what they target. And that's not guesswork or rhetoric.

Personally I know of many reasons to complain about Microsoft, and Apple, and the Linux community. None are perfect, and all have nuts, fanatics, and total wackjobs. Pick your poison and learn how to use it safely.

Re:So AAA is a bailout for Ford Motors?

[Penguinisto]

They (Macs) have malware and bugs aplenty,...

Please list all non-trojan malware for OSX. Even a small sampling will suffice. Hell, even one would suffice.

(Bugs? Certainly. Trojans? There have been roughly a handful of variants that require a user to find a shady pr0n website, download the trojan, then enter an admin password in spite of all warnings telling them that it might not be a good idea... one simply cannot fix stupid).

Anyrate - let me know what you find.

Re:So AAA is a bailout for Ford Motors?

[JStegmaier]

The security by obscurity bullshit constantly spewed as a counter argument whenever someone claims OSX or Linux is more secure is tiring. Security through obscurity doesn't work, and the argument falls flat on its face when you look at the rate of exploit of *NIX servers vs. Windows servers or Apache vs. IIS, the former being more widespread in both cases, but having fewer exploits compared to the latter.

Re:So AAA is a bailout for Ford Motors?

[supercrisp]

Yeah. I'd like a list too. My wife works in PC support for a large university (34,000 students). She works at the main repair and service center. When I go in, the shelves are lined up with Win laptops waiting for a wipe and reinstall of the OS to repair some virus (is that really necessary?), and there'll be a single Mac sitting there waiting for Office to be installed. Every new trojan or virus that comes out sees the Windows folks lined up, and Mac users only show up because the U uses a stupid website that forces you to install MacAfee to login to campus wireless, which means Mac people get confused (not seeing the little box that says "Dear Mac User go here," not that the Windows people would either). All that said, I'm seeing in my classrooms more and more little laptops running various Linux systems.

Re:So AAA is a bailout for Ford Motors?

ummm you might want to check your research, NIX/Apache servers are more exploited and have more known vulnerabilities, at least since MS got there act together with IIS6 back in 200/2003.

Re:So AAA is a bailout for Ford Motors?

Those scum want to get as many machines as possible, so only niche diehards or those who want to prove a point bother to infect anything with less than a 40% market share.

Agree, I've been running dual-boot Vista / Windows 7 with no security whatsoever with no problems - is there anybody else out there doing similar? ... Hello? Hello?

Re:So AAA is a bailout for Ford Motors?

*cough heard from the back of the room*

Re:So AAA is a bailout for Ford Motors?

[Spykk]

Can you produce the same list for Windows 7?

Re:So AAA is a bailout for Ford Motors?

I'll start:

iTunes

Re:So AAA is a bailout for Ford Motors?

Are you kidding, delusional, or just plain retarded?

The VAST majority of malware that runs on XP and Vista runs on 7, too. The only stuff that doesn't work fails for the same reasons legit programs fail. With a new code base to exploit, Vista now actually has MORE to worry about than XP... and 7 will soon overtake Vista if it hasn't already.

Re:So AAA is a bailout for Ford Motors?

[Penguinisto]

It'd be a long list... (Sophos is reporting that 8 of 10 bits of common Vista malware run just fine on Windows 7. Mind you they tested trojans as well, but there's enough non-trojans in the pile to make the cite valid).

Re:So AAA is a bailout for Ford Motors?

[toddestan]

How about those iPhone worms?

Re:So AAA is a bailout for Ford Motors?

[jipn4]

Sorry, but helping the clueless or unfortunate users from something that wasn't created, distributed, or sanctioned by Microsoft isn't a Microsoft Bailout even if the users are running MS Windows.

But it was created by Microsoft: Microsoft is selling software with inadequate security. And Microsoft is responsible even if the security problems are due to their users being "clueless": if they sell to clueless users, they have to create software that their users can use without getting into trouble. That's true for other products, and it should be true for Microsoft.

Humor

[SuperKendall]

That's quality humor son, not flamebait.

If you doubt my ID ownership read back as far as you like and I think you'll find a pleasing consistency of tone and thought.

Re:Humor

[Cwix]

I have no such desire, especially if your past posts are worded as to piss people off.

40 staffs? I suggest 0 instead.

[zill]

"Thank you for calling the malware eradication center. Please wait while we look up the address associated with the number you are calling from. Press # to manually enter an address."

...

"Your address has been located and your will receive your free ubuntu CD within 2 business days. Thank you and have a nice day."

What next

[Hognoxious]

Before you know it, they'll be making the trains run on time.

But oddly you can't buy intelligence

[SuperKendall]

You can buy UIDs too.

Indeed, but why would I do so since I am perfectly happy with this one?

Unless, SuperKendall is really like the Dread Pirate Roberts. Confidentially, you just lost your spot in line there.

Generally, if you have money to buy Apple products, you have a habit of solving your problems by shopping and you have money to spare.

Oddly, I value my time (and UNIX) far more than money which is why I have Mac products to begin with. But do feel free to fritter your time away on "cheaper" PC's (that you buy twice as often) so that you can afford to buy a lower ID than mine and "win"!

Re:But oddly you can't buy intelligence

[denzacar]

But do feel free to fritter your time away on "cheaper" PC's (that you buy twice as often) so that you can afford to buy a lower ID than mine and "win"!

Win what? There is a contest here? I thought we were making stupid "Yo mama.." jokes.
Only with references to OS(s)/hardware/UIDs instead of mothers.

you can afford to buy a lower ID

Why would I do that? My UID is beautiful.

Malware

[dnaumov]

Malware is not the same thing as viruses. No amount of security in the operating system will save the user from getting a malware infection if he clicks "Yes" to anything. Unless the OS is locked down to the point of not being able to install anything.

Will it actually work?

[dave562]

I've been cleaning up other people's infected Windows machines for longer than I have wanted to. It seems like nine times out of ten, the only way to ensure that the computer is clean after it gets infected is to do a complete pave and rebuild of the OS. That level of complexity isn't something that a tech support person can walk an average user through over the phone. Forget about backing up the data beforehand, or re-installing the applications after the fact.

I like the idea. The way that the article is worded is complete flamebait though. I think we can all agree that steps need to be taken to reduce the number of malware infected Windows boxes on the internet. Doing so makes the internet a better place for everyone. It just seems to me like the Germans are taking on an impossible task. Once a Windows box is owned, it stays owned.

On a related tangent, I think things could be better if ISPs institute the equivalent of a "good driver discount". Give the owners of clean computers a discount on their monthly service fee. I'm not an economist, but it seems like it would need to be enough of a discount to cover the cost of having a "professional" setup the computer right in the first place. I see advertisements where I live that claim to clean malware infected computers for $30-50. So a discount of $5 a month seems about right. On the other hand, if the discount isn't high enough, then the incentive won't be strong enough to encourage people to keep their computers clean. At that point maybe the ISPs need a stick, instead of a carrot. Perhaps throttling the connection, or re-directing to a subset of URLs for how to deal with malware infections.

discouraging them from writing better code?

[hAckz0r]

On the contrary, its 'the people' just saying that the vendors are not doing enough! If you think for a minute that people are stupid, well you may be partially right, but they won't be that way forever. Once they realize it doesn't have to be that way (by talking to others that already know the truth) they will demand more before they spend their next dime. Talking to a person not a party to the software itself will certainly educate them. In this day and age the vendors need to make their products a lot better before the masses will just fork over all their money.

Not that I feel particular affected

[32771]

Maybe it should be set up in Munich they should have some clue about installing Linux.

Now I remember that I just recently had to cleanup somebody's computer and didn't install Linux. Damn, I have become so complacent.

Mod Parent Up

First sensible thing said in this discussion.

perhaps they will suggest Linux?

Best solution for Windows malware extraction is to install Linux. Simple to install, setup, and use. Safe and secure for the masses. :)

Re:perhaps they will suggest Linux?

[Razzious]

Sure, because the same ignorant people who log in to Windows with an admin account, will definatly not log into Linus with a root account exposing them to the same issues on Linux.

This is a stupid user bailout NOT M$ bailout.

Re:perhaps they will suggest Linux?

Of course they won't. Root is only allowed to log in on tty1-6, not through X, right? RIGHT?

Re:perhaps they will suggest Linux?

Sure, because the same ignorant people who log in to Windows with an admin account, will definatly not log into Linus with a root account exposing them to the same issues on Linux.

Ubuntu is the most popular newbie Linux. It comes with the root account disabled, and most people use sudo for admin purposes or (for newbies, who are often afraid of the CLI) get prompted via the gui for escalation, again giving them admin *only for that specific program*. On the Ubuntu forums, disclosing how to enable the root account is banned and all examples etc. use sudo. This doesn't stop newbies enabling the root account, but it's quite clear from the forums that most of them don't. And as per the other post, even if they enable root it still defaults to no remote logins and no gui logins.
If they even know that they want to get round that lot, then they're probably not a newbie anymore.

sucking off the government teat

[plopez]

how long are we going to put up with this corporate welfare? Bank bailout,subsidies for oil and gas companies, subsides for agribusiness etc. I need money, why can't I get it? I pay more in taxes than any of those scum bags.

Still can't moderate stories after posted

If we could, this idiotic rant would have been rightfully buried.

Only the Rugged May Read

[SuperKendall]

I have no such desire, especially if your past posts are worded as to piss people off.

Actually, they are designed to be funny - you see, I have "sense of humor" that allows me to laugh even if jokes were, say, targeting something I liked very much. So they are very much build in the spirit of being fun.

I have no desire to tailor posts to humorless starched-shirts such as yourself, so I'm pretty sure you would find my body of work to overload your delicate sensibilities and thus I would in fact avoid reading them, or frankly the internet altogether.

Re:Only the Rugged May Read

[Cwix]

Hmm I did read some of your past postings.. Your obviously a mac fan boi who has had too much of the kool aid, and is pissed off cause the newb called you out on your immature behavior.

Only a staff of 40???

That's barely enough service 20 windows machines!

Okay then...

[AlgorithMan]

Okay then - I'll start selling cars (car analogy FTW!)... I don't know anything about cars, but OTOH Microsoft doesn't know shit about Operating Systems, so aparently that's okay... I'll just sell cardboard cutouts and my government will pay for the fixes...

PROFIT!

The Call Center is Apply Named

[LifesABeach]

"BSI"

I can't help but wonder if this might be a way for folks to be directed to Knoppix?

Make the criminals pay

[Stan92057]

Why cant ISPS,FBI,CIA,Local law enforcement look for signatures the criminals use top send instructions to the bot nets. If its so easy to spy on our buying habits on line by advertisers i cant see why they don't use that same technology to catch criminals. Make the criminals pay for the cleanup,sell everything they own to finance it.

My own bailout

[hansamurai]

I'll provide my own bailout to the world and seed ubuntu-9.10-desktop-amd64.iso.torrent a bit longer.

Re:Government provides product specific help for f

[Mongoose+Disciple]

fail to see how government specific help around one specific product from one specific company, is not a bailout.

However, that's not what the actual article (not the summary) discusses.

Re:Windows is vulnerable because that is profitabl

[drsmithy]

People at the call center could educate callers that the apparent reason Microsoft products have so many vulnerabilities is that Microsoft top managers don't allow Microsoft programmers to finish their work. Unfinished, vulnerable, buggy, limited software makes more money when a company has a virtual monopoly because then the company can sell "upgrades" and upgrades and upgrades and ....

What non-trivial software packages are you thinking of that *aren't* patched, upgraded and replaced over time ?

An alternative mission for government

[jonaskoelker]

The purpose of the government is to uphold every citizen's inalienable rights; and it must be as small as it can be while remaining capable of fulfilling that purpose. No more, no less

I propose a different mission for government: in economist-lingo, to maximize social welfare (that is, the sum of how happy the population is).

And of course, the population should value freedom of {speech,assembly,press,etc.} very highly.

But---pregnant pause---there is such a thing as a market failure, and I think it makes good sense for the government to step in and make regulations that makes the market more competitive.

Observe that the societal material benefit of a free market comes about not because the market is free but because it's competitive.

If you're free to enter a market where you'll most certainly be crushed by the incumbent monopoly, what does that freedom really buy the society? But if the monopoly is prevented from using its monopoly status to crush you and has to compete reasonably fairly with you, you might have a shot at getting your better/cheaper product out to consumers.

If you're an American, you'll laugh at "I'm from the government, and I'm here to help you." I don't. I know there's something shady going on, in particular with travel funds for the EU which the MEPs aren't held much accountable for [long story, but the point is if you-an-MEP travel not-extremely-extravagantly, you can pocket a large wad of my tax money at the end of the year. Some politicians do.]. But I also believe politicians (from time to time) genuinely want to do good for the people and the nation.

Re:An alternative mission for government

[MobyDisk]

I think it makes good sense for the government to step in and make regulations that makes the market more competitive.

For some reason, this statement is controversial because people mistakenly think that capitalism does not require regulation. in the US, regulation is characterized as either totally evil, or the savior of humanity.

The theory of capitalism is that the perfect consumer will pick the product that maximizes utility. Thus, they select the best producers. The problem is that consumers are not perfect, and even if they are, they need perfect knowledge to make good decisions.

To facilitate perfect knowledge requires accurate labeling, truth in advertising, etc. Suppose you have one product that is super tasty, but poisonous and another one that is mildly tasty but nutritious. The second one maximizes utility, but the consumer may not know that without proper labeling. If the first one is advertised as being totally health then the whole system falls apart.

In summary, regulation is necessary in Capitalism.

NOW it's time to get a job there!

[Hurricane78]

Preferably as a managing director!

Because the first thing you will do, is tell every single calling user, how to remove the worst of all malware from his computer:
1. Download Linux CD/DVD.
2. Burn to disc. (Do not take the disk out).
3. Reboot.
4. Click OK or press Enter, until you see a desktop again.

I’m seriously considering to send them my job application for that very reason. Don’t care, even if I’m fired again. Been there, lived trough it, got on my legs again. Pfft. ^^
Besides, it would be a hell of a lot of fun.
Especially, if they’d decide to fire me anyway. Then I’d come barefoot, not showered or shaved all week, in trash clothes, at 10 am. And piss in the corner on the last day. ^^
I’m no approval junkie. And you can’t punish someone who got nothing to lose because it’s not worth anyting for him anyway.

Are you saying monopolies are a BAD thing?

[Benfea]

The Bush administration nobly stood up to the "anti trust" nonsense from the extreme left and allowed many smaller financial companies to merge into a small number of large financial companies that were too big to fail.

Thanks to saint Bush's great wisdom, the companies on Wall Street were too big to fail when the financial markets ran into trouble. If the far left had prevented all those mergers, then those companies would not have been too big to fail, and so they would have failed during the financial troubles that were caused by over-regulation of Wall Street by the communists in the Democrat party.

Thank god we had someone as smart as Bush in the White House back then.

[/strawman]

Windows XP and Windows Vista, for example.

[Futurepower(R)]

Windows XP had MAJOR problems during the first 3 years, before service pack 2. Vista had MAJOR problems; it was so bad most big companies refused to buy it.