Microsoft Disrupts Nitol Botnet

hypnosec writes "Having procured permission from the U.S. District Court for the Eastern District of Virginia, Microsoft's Digital Crimes Unit managed to disrupt more than 500 different strains of malware in a bid to slow down the threats posed by the Nitol botnet. Microsoft, through an operation codenamed b70 (PDF), discovered Chinese retailers were involved in selling computers with a pirated version of Windows loaded with malware. Microsoft believes the malware could have entered the supply chain at any point, for the simple reason that a computer travels among companies that transport and resell the computer. The Windows 8 maker carried out a study focused on the Nitol botnet, through which it found nearly 20 percent of all the PCs that were purchased through insecure Chinese supply chains were infected with malware."

Who?

[ISoldat53]

I couldn't find in the article who was importing, selling or reselling the affected machines. They mention one individual but not his company.

Re:Who?

[Hazel+Bergeron]

In brief, Microsoft wanted to demonstrate that puppies die when you buy an unauthorised copy of Windows.

It doesn't matter who was doing it - what matters is that the US government needed to help this downtrodden altruist get its cut.

Re:Who?

[Hazel+Bergeron]

Why is it troll? This is obviously a marketing piece. Even the summary arbitrarily slips in "The Windows 8 maker"!

Re:Who?

[jhoegl]

Yeah, I noticed that too. Seems more like an MS slashvertisment of "look at us, we are proactive even when we jump through the hurdles of the law!"

Re:Who?

Why is it troll? This is obviously a marketing piece. Even the summary arbitrarily slips in "The Windows 8 maker"!

No shit. Hey, why doesn't Microsoft just disrupt ALL the botnets by hardening the security of Windows? Wouldn't that be easier than chasing down botnet after botnet while more botnets spring up?

They can start by admitting that an anti-virus program is no substitute for good security. Maybe they can also clearly tell their users that they need to learn a few basics to avoid being at-risk. Is all of that really so unrealistic?

Re:Who?

[jason.sweet]

According to the article and summary, someone is installing the malware before selling the computer. How can an OS defend against that? Is that Clippy supposed to pop up and ask "You look like a bad guy! Are you sure you want to install this software?"

Re:Who?

> Maybe they can also clearly tell their users that they need to learn a few basics to avoid being at-risk. Is all of that really so unrealistic?

Someone clearly never had to train end-users here. I've had people you couldn't train how to switch between two windows on their desktop, even with a person next to them showing how things work they simply couldn't comprehend you could be running two programs at one. And you think a software vendor can magically teach end-users somehow not to download and install anything that pops up and ask them to install.

Re:Who?

[Stan92057]

Thats all you got out of the article?? "The Windows 8 maker" Your fanboyism is showing.

Re:Who?

Whining about moderation just gets you modded down more. Every once in a while a pearl of wisdon of mine gets modded down. I don't bitch, I just go on to the next story. Who gives a rats ass about one or two people's opinions of you? Get over it, and get on with your life.

Re:Who?

[thexile]

I find your idea intriguing and hope to send to sign up for your newsletter.

Can you imagine...

[gavron]

If only back in 1998 when Microsoft knew that Windows 95 was open to all malware,
if they'd modified their thinking.

Instead of "let's make it so Win3.1 software can run on all our machines" and "Let's
make it so Win95 can run on all our machines" and propagating that so EVEN THE
Win2K (NT) kernel was vulnerable... ...they could have used a real security model, locked down the system, and there
would be no malware, no virus, no antivirus, no UEFI, no nothing today.

If there is one company that MADE A CONSCIOUS DECISION to let malware live
so that old software [you know, like your restaurant's point-of-sale system] run on
W95,W98, WME, W2K, Vista, 8, etc., and because of that decision the world is
overrun with malware, malware writers, mafias of malware writers, bitcoin thieves,
credit card thieves, wire-transfer thieves... that one company COULD HAVE made
a difference.

But they chose not to.

So today they "disrupted" (nonsense word) a botnet? That's good. Even if they
ELIMINATED the ENTIRE botnet, it's just one of many.

Useless. Microsoft.

E

Re:Can you imagine...

[Hazel+Bergeron]

used a real security model, locked down the system, and there would be no malware, no virus, no antivirus, no UEFI, no nothing today.

And a pony in perpetual motion. Never forget that.

Re:Can you imagine...

[ZiakII]

they could have used a real security model, locked down the system, and there would be no malware, no virus, no antivirus, no UEFI, no nothing today.

o boy..... what did I just read? I don't know whether to laugh or actually sigh that you somehow actually somehow believe that drivel that you posted.

Re:Can you imagine...

[KingMotley]

Totally. And only if the auto industry had implemented perpetual motion devices in cars today, then we'd no longer have to buy oil from the middle east.

Re:Can you imagine...

used a real security model, locked down the system, and there would be no malware, no virus, no antivirus, no UEFI, no nothing today.

And a pony in perpetual motion. Never forget that.

I was Handicapper General, you know what I would do? Chimes. Chimes on Thursdays... FOREVER!

Re:Can you imagine...

Totally. And only if the auto industry had implemented perpetual motion devices in cars today, then we'd no longer have to buy oil from the middle east.

I have a plan so we will never ever need to import oil ever again.

if we can make liposuction procedures cheap and affordable then we can extract the excess fat from all the overweight, obese and morbidly obese Americans. from there it would be easy to convert the extracted lard to biodiesel. then just drive cars with TDI style engines and viola! - cheap, EXTREMELY ABUNDANT energy with no dependence on the middle east.

of course there is one flaw in the plan. the overweight always have excuses why it's not their fault that they eat more calories than they burn. they might get more creative and start coming up with excuses for why they couldn't be bothered to undergo liposuction. perhaps it could be made mandatory? or maybe tax credits could incentivize it? i am open to ideas of course.

Re:Can you imagine...

[geekoid]

They are slipping the virus into the OS instillation disk, how exactly would a "locked down system" stop that? No system can stop that.

"So today they "disrupted" (nonsense word) a botnet? "
what? disrupted isn't a nonsense word, in fact in this case, it's appropriate.

You might want to study the botnet ecology.

Re:Can you imagine...

[mcgrew]

If only back in 1998 when Microsoft knew that Windows 95 was open to all malware, if they'd modified their thinking.

Instead of "let's make it so Win3.1 software can run on all our machines" and "Let's make it so Win95 can run on all our machines" and ropagating that so EVEN THE Win2K (NT) kernel was vulnerable... ...they could have used a real security model, locked down the system, and there
would be no malware, no virus, no antivirus, no UEFI, no nothing today.

Locking down the system means no new software. The problem wasn't backwards compatibility, it was lack of anyone there knowing anything about security. In 1995 nobody envisioned computers being in everyone's home and connected to the internet. Back then, a PC was a single-user device on its own or a local network.

The problem was their laziness and short-sighted stinginess; the OSes were so bug-ridden you could get infected simply by visiting the wrong web page. Any computer can be trojaned, but only MS has made an OS that can get infected by visiting a web site or opening an email. It was simply sloppy programming. Happily, W7 seems stable and reasonably secure; of course you can get a trojan; any OS can, and there's no way of eliminating trojans short of making a computer completely locked down so the user can't install or upgrade anything, or educating users. MS' biggest mistakes were releasing buggy code and not educating users.

Re:Can you imagine...

[Dogtanian]

In 1995 nobody envisioned computers being in everyone's home and connected to the internet. Back then, a PC was a single-user device on its own or a local network.

Wrong- the Internet was already starting to break into the public consciousness by 1994, with a mainstream-oriented news/analysis programme about it on British TV by the middle of the year, and mainstream magazines such as this one coming out shortly afterwards.

Windows 95 came out in late 1995, by which time the Internet was becoming quite well-known about; the man on the street had probably heard about it, even if most non-geeks didn't have net access yet. MS hoped they could corral users into using their proprietary MSN service instead, and didn't even include a browser (i.e. IE!) with the first release of W95, nor even include TCP/IP in the default networking setup. Whether this was an intentional move to divert attention away from the Internet and into their own walled garden service (and the belief that this could be done), a genuine underestimation of the Internet or simply an afterthought, they were still clearly thinking about online services when W95 launched, even if that service wasn't the Internet.

Re:Can you imagine...

[Urza9814]

of course there is one flaw in the plan. the overweight always have excuses why it's not their fault that they eat more calories than they burn. they might get more creative and start coming up with excuses for why they couldn't be bothered to undergo liposuction. perhaps it could be made mandatory? or maybe tax credits could incentivize it? i am open to ideas of course.

REALLY? THAT's the problem you see with this plan??? Seriously???

Obviously the companies that are then selling this extracted fat will provide a free tub of ice cream for every 20 pounds "donated". Or a bag of Doritos.

20% vs. 100%

[NikeHerc]

The Windows 8 maker carried out a study which was focused on the Nitol botnet through which it found that nearly 20 percent of the all the PCs that were purchased through unsecure Chinese supply chain were infected with malware.

And 100% of microsoft's products are infected with poor design, bloat, BSODs, and other maladies.

Re:20% vs. 100%

Mister, you are walking the fine line between flame bait and accurate and informative information. I am so conflicted.

Re:20% vs. 100%

I would have to disagree. It sounds like you have a perfectly fine OS but you happened to install some Adobe products.

Re:20% vs. 100%

[Krojack]

Knock on wood, I haven't seen a BSOD on any of my Win7 installs yet and I've been running it for about 2.5 years. Also what bloat? Honestly there isn't any on a good install. Unless you're installing a Server version with every service possible on what will be used as a workstation, there isn't any bloat with a fresh install. Now on the other hand, if you install any Symantec products such as Nortan Antivirus, yeah you're screwed then with bloat.

Maybe you have some hardware problems? Buying those cheap Chinese computer parts maybe?

Re:20% vs. 100%

[Bigbutt]

Pretty regularly, almost daily in fact. But it's the crappy AMD drivers, not Windows that's the culprit.

[John]

Re:20% vs. 100%

I would have to disagree. It sounds like you have a perfectly fine OS but you happened to install some Adobe products.

... that an OS with proper security would be able to deal with...

if chrooting and capabilities were commonplace on windows and microsoft provided default restrictive configs for things like adobe products, most of this wouldn't be such a problem.

and companies with such poor quality, constantly exploited code as adobe should face legal liability. it should be considered a form of negligence especially since they market to non-technical users. don't sue every company for every bug, just those with a security history egregiously worse than the average.

Re:20% vs. 100%

[mcgrew]

Also what bloat?

Ah, the inexperience of youth. I haven't seen a program or OS in twenty years that wasn't bloated. There was bloat even back in the DOS days -- I had a program I wrote and ran on a 16k computer. I rewrote it in Clipper, and the 16k program, after it compiled, was over 400k. That is bloat!

I wrote a battle tanks game on a 4k Sinclair computer (in hand-assembled machine code since there was no assembler) that took maybe 500 bytes. There is a Windows version that is nearly identical in gameplay and features to the one I wrote, except it's in color (the Sinclair had no color) and it's 4 megs -- a thousand times as big as the one I wrote. If that's not bloat, I don't know what is.

However, ALL of today's OSes and apps are bloated. Even damned web pages are bloated! It isn't just MS, it's the times themselves.

trivial to counter the domain takedown

Just use a server MS doesn't control, and isn't in the US.

Re:trivial to counter the domain takedown

[Trilkin]

Oh yeah?

You think location matters if people with enough money on the line care enough? Please.

slashvertisment?

[korgitser]

The Windows 8 maker
This is actually quite a clever marketing slogan, it works in so many ways. Considering their new logos and stuff, it seems to me that they are distancing themselves from the Microsoft brand and trying to start clean with the Windows brand in a brave new post-pc era of whatever.
And i can feel the marketing do it's work - the brave new era of lightness, sleek, simple and bright, just blossoming into a beautiful flower, once freed from the faint and distant, almost forgotten Mordor of Microsoft.
Too bad it is still the same Microsoft.

Re:slashvertisment?

Correct analysis. I thought the same thing when I read that. Sneaky devils, aren't they?

"The Windows 8 maker"

[Zibodiz]

The Windows 8 maker

...did they really need to point that out? It has no bearing on the story whatsoever.

Re:"The Windows 8 maker"

Just incase you forgot, or wanted to all discuss Windows 8 and flame Microsoft. How else do you get everyone on /. to use the site!?

Re:"The Windows 8 maker"

I agree totally which is while I'll get modded Offtopic also.

Ubuntu, the company that continues to hemorage Shuttleworth's money, announced today the release of Ubuntu Butt Rape. Lead software engineer Blake Lovetoy, the software engineer with the golden locks and dreamy mouth, spoke of the new features, "Yes, we included a giant 18" dildo with this release and we're very excited about it. You'll enjoy raping your butt while trying to install this in an enterprise environment. While you're trying to make it work for one of your salespeople you'll notice them carrying around an iPad and accomplishing in 10 seconds what you've spent 18 months trying to make work and slide a few more inches in. Take it bitch, you're a leader in the Linux Revolution!"

Linux is the Windows 8 maker, ironic hug?

Small correction

"only 20 percent of the all the PCs that were purchased through unsecure Chinese supply chain were infected with malware."

Fixed that for you! Everyone knows that more than 50 percent of Windows PCs are infected with malware, so its actually an improvement! Not that it matters, as I still don't want one.

Re:Small correction

[Krojack]

Not 20% of all windows PCs. 20% of all the PCs that were purchased through unsecure Chinese supply chain. Read the entire line you quoted next time.

Re:Small correction

Pause the Startrek and re-read the post. Read it again until you see your error.

Re:Small correction

Pause the Startrek

I understand the individual words, but put together in this manner they have a meaning I don't understand.

Agreed - he's a "Pro-*NIX" moron... apk

See subject-line: I truly *hope* he intends to "debate" your statement vs. that which you quoted from him... since if YOU don't give him an "a$$-whooping", I will!

* Funniest part is, I do NOT "hate" (or even dislike) Linux, especially KUbuntu distros - so, don't get my subject-line wrong people... what I dislike, is utter "FUD" being spread by the "penguins" around here!

APK

P.S.=> I truly *think* it will surprise him when I show how much of what's been in Windows NT-based OS for AGES was stolen & incorporated into Linux, for example... especially via SeLinux MAC, on the security-front!

(Vs. ACL's already LONG present in Windows NT-based OS using NTFS as only a SINGLE EXAMPLE THEREOF, along with granular group & user permissions etc./et al (via AD also))...

... apk

Re:Agreed - he's a "Pro-*NIX" moron... apk

[Hazel+Bergeron]

apk, I have the "utmost respect" for people regardless of their "background", as such...

but I have a question => as follows:

Could you please tell me why your posts: * are written like this *

HB

With lots of paragraphs comprising long sentences & punctuation! and the occasional bit of emphasis? ... it reminds me of a friend I had who was "recovering" from a drug addiction and he would go off on these long and somewhat incoherent rambles ...

He wasn't "stupid" <= by any stretch of the imagination but you could tell that he was having trouble sorting out thoughts (or at least expressing them (etc.))!

Anyway, it is a simple question: why do you write with this style?

It gives me this feeling like when I sit next to the guy on the bus who clearly can't cope very well and you know he's harmless but you wonder exactly what made him like this and you want to ask him but you are worried he might get attached and * well you know * next thing you'll be inviting him to your house and it's hard to be a good HOST (if you know what I mean)..

... hb

Re:Agreed - he's a "Pro-*NIX" moron... apk

I think I just died laughing. You sir, are a hilarious troll.

Re:Agreed - he's a "Pro-*NIX" moron... apk

He always struck me as the guy on the bus too. You gotta at least give him credit for not mentioning the hosts file this time around.

Re:Agreed - he's a "Pro-*NIX" moron... apk

Hilarious & successful.

Re:Agreed - he's a "Pro-*NIX" moron... apk

I love you.

Re:Agreed - he's a "Pro-*NIX" moron... apk

APK will not answer your question because the answer is simply because he's (very) boring, (very) self-important and has serious mental issues (and he is also an anti-Linux troll, but that's not particularly remarkable).
I have seen APK post exactly the same lengthy, annoyingly punctuated post nine times in the same thread. That should tell you something.
Best thing is to ignore (yes, I know I'm breaking the rule).
The stupid formating of APK posts is quite useful in this respect; I've now got to the point where my eyes just slide right off them; I only noticed this one because you drew attention to it.
Note to APK: I know you read replies to your AC posts; I don't read replies to mine, so don't bother.

Re:Agreed - he's a "Pro-*NIX" moron... apk

Didn't VMS have ACL's before NT existed?

David Cutler went to Microsoft from DEC and many VMS design features found their way into the NT kernel. The use of 32 priority levels is often cited as an example.

Re:Agreed - he's a "Pro-*NIX" moron... apk

[mcgrew]

Anyway, it is a simple question: why do you write with this style?

I don't know, but can only hypothesize that he's a teenager trying to look "kewl". He doesn't realise how ignorant and foolish it makes him look.

Re:Agreed - he's a "Pro-*NIX" moron... apk

Well > / Hazel . & when the L S &^D kicks in = it tends>>>> B - to make one write #### this way...l think & ] the effect :: Bm lasts about 24 [ ,.,> hours ] hopefully not >>>> BV longer as it WOULD be "great" to read a "straightforward &J% coherent messag/e.

#/#/#/ gh/gh/ take care&

Re:Agreed - he's a "Pro-*NIX" moron... apk

http://yro.slashdot.org/comments.pl?sid=3115271&cid=41326561

Stole a domain?

If I'm reading it right, they took down the botnet by having a US court take it's domain, was that a Chinese owned (.org) domain? I'm all for shutting down botnets, but to me it looks like they said to a US court that XYZ in that other country did something I didn't like, can I take control of their foreign website? I'd hate to see this be used against legitimate foriegn sites.

this FP fOr GNAA

Twould be a bad

You're off-topic ("writing style troll")

"Anyway, it is a simple question: why do you write with this style?" - by Hazel Bergeron (2015538) on Thursday September 13, @11:42AM (#41324565)

First of all: See subject-line above... ok?

Secondly: Does it matter HOW I write?? No, not really, as long as the message gets across properly/correctly, as to what I intended it to mean... & before you imply again my writing style is "wrong"??

I can produce HUNDREDS of upward mods that prove otherwise in the eyes of others... which would EASILY NULLIFY your "mere opinion" quite easily to the tune of roughly a 220++:1 ratio as to the orders-of-magnitude difference in opinion as to HOW I write...

---

"It gives me this feeling like when I sit next to the guy on the bus who clearly can't cope very well and you know he's harmless but you wonder exactly what made him like this and you want to ask him but you are worried he might get attached and * well you know * next thing you'll be inviting him to your house" - by Hazel Bergeron (2015538) on Thursday September 13, @11:42AM (#41324565)

Ahem: Well - Your BLATANT off-topic TROLLING post here I am quoting from gives me the feeling, and more than that since I have seen it here & on other forums boards SO MANY TIMES, it's not even funny, that YOU, are nothing more than a troll with multiple registered 'luser' accounts here...

---

"apk, I have the "utmost respect" for people regardless of their "background", as such..." - by Hazel Bergeron (2015538) on Thursday September 13, @11:42AM (#41324565)

Again - Considering you have a "brand NEW 7 digit registered 'luser'" account here (that's probably GEARED to trolling & one of many alternate ones you no doubt use here as well alongside it to mod down your opponents & yourself up with also?)?

Well... that "all said & aside":

* In fact, lastly - The ONLY thing I respect about YOUR reply? Your handle/nickname/registered username... since I am aware of the tale it comes from.

APK

P.S.=> In closing - there's LITTLE QUESTION your post is off-topic, so I can ask YOU a question of "Why do you insist on being an off-topic troll?" in YOUR posts...

... apk

Re:You're off-topic ("writing style troll")

The thing is, whatever message you might have does NOT get across, because people aren't going to read a post that looks like a flyer from a mentally-ill person.

I'm sure having your shortcomings pointed out hurts your feelings, but if you are on drugs, rather than suffering from some kind of brain disorder, you need to get clean.

Does the word "preinstalled" mean anything to you?

Hate to feed a troll but if ever there was a case where you can't blame MS, it's this. The malware was PREINSTALLED. You could do this with any operating system. Any system could be hacked so the process won't be displayed. You'd have to keep an eye out for suspicious network traffic to figure it out.

You're outnumbered 200++:1, troll... apk

"He always struck me as the guy on the bus too." - by Anonymous Coward on Thursday September 13, @11:55AM (#41324733)

There's LITTLE QUESTION that you're an off-topic troll, nothing more... and, per my subject-line above?

A 200++:1 ratio of Your peers on /.'s opinions of my posts via upward moderations (vs. your b.s. & that of Hazel Bergeron's off-topic post), and YOUR rather WEAK failed illogical ad hominem attack attempt on myself, rather than points-of-fact I brought up:

(Roughly 200++ of them & I post as AC (hard to get even +1, as /. hides our posts & we "AC"'s start @ ZERO/0 points, unlike registered "lusers", lol!)):

---

+5 'modded up' posts by "yours truly" (6):

HOSTS & BGP:2010 -> http://tech.slashdot.org/comments.pl?sid=1901826&cid=34490450
FIREFOX IN DANGER: 2011 -> http://news.slashdot.org/comments.pl?sid=2559120&cid=38268580
TESLA:2010 -> http://science.slashdot.org/comments.pl?sid=1872982&cid=34264190
TESLA:2010 -> http://tech.slashdot.org/comments.pl?sid=1806946&cid=33777976
NVIDIA 2d:2006 -> http://hardware.slashdot.org/comments.pl?sid=175774&cid=14610147
COMPUTER ASSOCIATES BUSTED FOR ACCOUNTING FRAUD:2010 -> http://news.slashdot.org/comments.pl?sid=1884922&cid=34350102

----

+4 'modded up' posts by "yours truly" (5):

APK SECURITY GUIDE:2005 -> http://developers.slashdot.org/comments.pl?sid=167071&cid=13931198
INFO. SYSTEMS WORK:2005 -> http://slashdot.org/comments.pl?sid=161862&cid=13531817
WINDOWS @ NASDAQ 7++ YRS. NOW:2009 -> http://tech.slashdot.org/comments.pl?sid=1290967&cid=28571315
CARMACK'S ARMADILLO AEROSPACE:2005 -> http://science.slashdot.org/comments.pl?sid=158310&cid=13263898
What I admire about Theo DeRaadt of BSD fame: 2012 -> http://linux.slashdot.org/comments.pl?sid=3007641&cid=40785151

----

+3 'modded up' posts by "yours truly" (6):

APK MICROSOFT INTERVIEW:2005 -> http://developers.slashdot.org/comments.pl?sid=155172&cid=13007974
APK MS SYMBOLIC DIRECTORY LINKS:2005 -> http://it.slashdot.org/comments.pl?sid=166850&cid=13914137
APK FOOLS IE7 INSTALL IN BETA HOW TO:2006 -> http://slashdot.org/comments.pl?sid=175857&cid=14615222
PROOFS ON OPERA SPEED & SECURITY:2007 -> http://slashdot.org/comments.pl?sid=273931&cid=20291847
HBGary POST in Fake Names On Social Networks, a Fake Problem:2011 -> http://tech.slashdot.org/comments.pl?sid=2375110&cid=37056304
APK RC STOP ROOKIT TECHNIQUES:2008 -> http://it.slashdot.org

Re:You're outnumbered 200++:1, troll... apk

What are you keeping a spreadsheet tracking all your anon posts including moderation scores just so you can whip it out for occasions like this?

Lol that's hilarious.

P.S. => You know, they have a *feature* called an "Account" that handles this *"type"* of thing for you.

In other news

- Armadillos question leper colony over recent outbreaks
- Rats riot in town over use of plague victims in warfare, demand protection for their fleas
- Man promoted to county Showers Inspector for realizing he was the one giving everyone foot fungus and seeming concerned

It's a rare case of literarily correct irony. Let's cherish it.

Linux ad

[ThatsNotPudding]

Newspapers landing on the front porch with headlines of this story.

Voice-over: "This is why you should have a right to buy a computer without an OS."

"Eat your words", troll (you FAIL)... apk

"APK will not answer your question" - by Anonymous Coward on Thursday September 13, @12:47PM (#41325265)

WRONG: You FAIL again, troll - especially since I more than answered HazelBergeron's "question" with contrary facts that utterly toss his "opinion" into the shitter, easily -> http://yro.slashdot.org/comments.pl?sid=3115271&cid=41325115

That, in addition to the fact I noted things about the original poster's technical blunders here:

http://yro.slashdot.org/comments.pl?sid=3115271&cid=41324457

Regarding security features Windows NT-based OS had FAR before Linux did (ACL's which MAC is basically an analog of, in non-DACL, since it's MANDATORY), as well as the fact NT-based OS achieved C-2 security ratings per the Orange Book, before Linux!

---

There's also MORE that Linux "stole" (imitated) from the Windows NT-based OS as well... such as completion ports for process scheduling (and more to be certified as an "enterprise class" SMP-ready OS as well).

---

* So, so much for your further ADMITTED trolling, because it's FAR from successful despite your further trolling commentary here -> http://yro.slashdot.org/comments.pl?sid=3115271&cid=41324809 ...

Especially considering I produced CONTRARY DATA to it, in a 200++:1 ratio vs. your "opinions", trolls... lol, & all you have is off-topic illogical weak failing attempts @ ad hominem attacks directed at my person (rather than points I stated...).

APK

P.S.=> Now, you just KNOW I've just GOTTA say it, as-is-per-my-usual "inimitable style":

THIS? This was just "too, Too, TOO EASY - just '2ez'", especially here -> http://yro.slashdot.org/comments.pl?sid=3115271&cid=41325115 & it always IS, vs. off-topic weak failing illogical ad hominem attack attempting TROLLS that use "writing style nazi" b.s., because of the data I posted which is, clearly, undeniable & verifiable... vs. your off-topic clearly trolling mere b.s.!

... apk

Re:"Eat your words", troll (you FAIL)... apk

[Hazel+Bergeron]

ACL's which MAC is basically an analog of

P.S. => ++ACL is an anagram of MAC.

You FAIL again ac troll (eat your words)... apk

"The thing is, whatever message you might have does NOT get across" - by Anonymous Coward on Thursday September 13, @01:26PM (#41325649)

See subject-line above, & this from your /. peers in upmods of my posts:

---

Roughly 220++ of them & I post as AC (hard to get even +1, as /. hides our posts & we "AC"'s start @ ZERO/0 points, unlike registered "lusers", lol!):

+5 'modded up' posts by "yours truly" (6):

HOSTS & BGP:2010 -> http://tech.slashdot.org/comments.pl?sid=1901826&cid=34490450
FIREFOX IN DANGER: 2011 -> http://news.slashdot.org/comments.pl?sid=2559120&cid=38268580
TESLA:2010 -> http://science.slashdot.org/comments.pl?sid=1872982&cid=34264190
TESLA:2010 -> http://tech.slashdot.org/comments.pl?sid=1806946&cid=33777976
NVIDIA 2d:2006 -> http://hardware.slashdot.org/comments.pl?sid=175774&cid=14610147
COMPUTER ASSOCIATES BUSTED FOR ACCOUNTING FRAUD:2010 -> http://news.slashdot.org/comments.pl?sid=1884922&cid=34350102

----

+4 'modded up' posts by "yours truly" (5):

APK SECURITY GUIDE:2005 -> http://developers.slashdot.org/comments.pl?sid=167071&cid=13931198
INFO. SYSTEMS WORK:2005 -> http://slashdot.org/comments.pl?sid=161862&cid=13531817
WINDOWS @ NASDAQ 7++ YRS. NOW:2009 -> http://tech.slashdot.org/comments.pl?sid=1290967&cid=28571315
CARMACK'S ARMADILLO AEROSPACE:2005 -> http://science.slashdot.org/comments.pl?sid=158310&cid=13263898
What I admire about Theo DeRaadt of BSD fame: 2012 -> http://linux.slashdot.org/comments.pl?sid=3007641&cid=40785151

----

+3 'modded up' posts by "yours truly" (6):

APK MICROSOFT INTERVIEW:2005 -> http://developers.slashdot.org/comments.pl?sid=155172&cid=13007974
APK MS SYMBOLIC DIRECTORY LINKS:2005 -> http://it.slashdot.org/comments.pl?sid=166850&cid=13914137
APK FOOLS IE7 INSTALL IN BETA HOW TO:2006 -> http://slashdot.org/comments.pl?sid=175857&cid=14615222
PROOFS ON OPERA SPEED & SECURITY:2007 -> http://slashdot.org/comments.pl?sid=273931&cid=20291847
HBGary POST in Fake Names On Social Networks, a Fake Problem:2011 -> http://tech.slashdot.org/comments.pl?sid=2375110&cid=37056304
APK RC STOP ROOKIT TECHNIQUES:2008 -> http://it.slashdot.org/comments.pl?sid=1021873&cid=25681261

----

+2 'modded up' posts by "yours truly" (19):

CODING FOR DEFCON (my compressed/packed exe + sizecheck @ startup technique): 2005 -> h

Kill Festi next, please

The backscatter from that botnet is most annoying!
http://riskman.typepad.com/perilocity/2012/08/festi-botnet-infesting-the-world-july-2012.html

APK shot you down troll (rotflmao)

"Read 'em and weep", eating your words http://yro.slashdot.org/comments.pl?sid=3115271&cid=41325115

Hilariously unsuccessful, trolls (lmao)... apk

http://yro.slashdot.org/comments.pl?sid=3115271&cid=41325115

* LMAO - It TRULY "makes my day", making off-topic ac illogical failing ad hominem attack attempting trolls "eat their words"... lol!

(SO, please tell us: HOW DO YOUR WORDS TASTE, flavored with "the bitter taste of SELF-DEFEAT", lol, & your FOOT IN YOUR MOUTH, after the above? )

APK

P.S.=> Poor little off-topic failing weak ad hominem attack attempting trolls (that project their OWN issues onto others or attempt to), Man - you just don't GET IT, do you? Facts will always "NUKE" ac trolls like yourselves, every single time...

Thank-You for making ME look GOOD as per your usual, & yourselves... by way of comparison? LOL, "not so good", lol... apkMan - you just don't GET IT, do you? Facts will always "NUKE" ac trolls like yourselves, every single time

As foolish as YOU in particular, mcGrew?

Where I blew you away on Windows 8's "new feature" of self-terminating services AND on Linux "fine security" VERY recently too -> http://it.slashdot.org/comments.pl?sid=2872677&cid=40110995

* You, in particular? You're VERY EASY to outthink...

APK

P.S.=> As to Hazel Bergeron troll & her "critique" of my writing style?

Too bad upward modded posts of mine OUTNUMBER her off-topic TROLLING "opinion", in a 200++:1 ratio:

http://yro.slashdot.org/comments.pl?sid=3115271&cid=41325809

"Read 'em & WEEP" on BOTH accounts & link urls, mcgrew, since YOU TROLLS ALWAYS FAIL vs. myself, & facts I put out, period & every single time, lol...

Thanks for making ME, look GOOD, & yourselves by way of comparison? Well... "not so good"!

... apk

Corporation does law enforcement?

Am I the only person who is worried about a corporation taking over "cyber" issues as a law enforcement agency? I know there are loopholes that let MS act on behalf of the federal government (I saw an explanation of this once, but don't remember the details), but now MS is a world-wide law enforcement agency taking down anyone and everyone they want to? They've been convicted of a monopoly, funded the SCO legal actions, and are virulently anti-free software. And they've just released Windows 8, which takes computers a step away from general-purpose computing into a model where MS approves all apps and licenses software developers. On top of this, they get plenary multi-national legal powers? This doesn't pass the smell test.

Re:Corporation does law enforcement?

Yes, you're the only person that doesn't realize the point of the story is that the guy selling computers in the back alley isn't going to give you a virus-free system. Dude, way to self promote yourself by taking a little bit of information out of context. Want free software from M$ all you have to do is go to their download site. I'm sure you'd react better if someone was counterfeiting your OS, installing malware on it, and then you foot the bill for 200 million Chinese complaints about the performance of their system (which is spending all its time sending out Viagra spam).

Botnet article, PDF link

[symbolset]

Some things never change.

Correct (Same OS designer for both VMS & NT)

Yes, VMS did (albeit DACL's vs. MAC - & yes, there IS a "subtle" difference, that's NOT SO "SUBTLE" actually), and you're correct in citing that since the same man architected BOTH Digital Equipment corporation's VMS & Windows NT...

* Ever notice the "coincidence" that VMS is 1 letter LESS than "WNT" (Windows NT)?

(Odd that, eh?)

APK

P.S.=> Here's how it was explained to me, as to ACL's vs. MAC vs. DACLs, by a Mr. Henry Hertz Hobbitt of securemecca.org, in fact & it IS pretty accurate!

(While I argued that ACL existed on Windows NT prior to MAC on Linux via SeLinux which the NSA "bolted on" to Linux):

---

DACL:

Discretionay Access Control List. I am going to put a premium on that word "Discretionary".

That means you have a choice. Unfortunately, frequently upping DACL control comes at the cost of decreased usability (think of Windows 2003 server versus Windows XP). But in a way, AV is an add-on DACL that restricts what executable files you can run by signature or heuristics.

MAC:

Mandatory Access Control. I am goint to put a premium on that word "Mandatory". That means you do not have a choice. You get it whether you want it or not. Usually increased MAC security can be done with very little cost in the way of decreased usabiltiy.

---

IBM MVS, COS, RT-11 & DOS:

DACLs: NO
MAC: NO
Key: Use a lock on the door and other physical means.

---

IBM VM/CSE:

DACLs: Yes
MAC: Yes

Now how secure can IBM's VM/CSE OS be? IBM structured people to come to work at five minute intervals. Why so nit-picky? Your brief-case or back-pack had to be inspected going both in and out of the building. You get to your office and now you have to login. Forget the one password and as many login attempts as you need. Do NOT open your briefcase or backpack. Lean it against your chair and type your user name (and yes, they have file ownership flags) and then your THREE passwords (a DACL setting).

If you foul up on any of those three passwords pick up your briefcase or backpack and head toward the guard scanning station leading to the door out IMMEDIATELY. If you don't you will be escorted there for the search and then out of the building by armed guards. You cannot attempt to login again until the next day and any attempt to minimize the wait time or login again will be seen by the VM/CSE OS as an attack which could lock out that user for a week. Most IBM main-frames are not that tight but the ones used by banks and finance institutions aren't much looser.

---

Unix (inclues all BSD systems & Unicos):

DACLs: No (can add on RSBAC if desired)
MAC: Yes

It all started to play a game. Most DEC PDP systems ran RT-11. That is just a run time OS. I don't remember RT-11 as having either DACL or MAC. A key to the door would get you in. But the guys that invented Unix did have infrequent access to IBM main-frames. The MAC is in the kernel itself and is thus not user configurable. For example, you cannot just get rid of Other access if you want to. All you can do is set the world flags to zero, thus denying all access. Changing the mode of files may look like a DACL, but it isn't. It is just modifying the parameters of a MAC ojbect. They implememted the MAC system to the UGO one that I gave you and forgot about DACL because they felt it was not needed (Unix was originally a one user system):

http://securemecca.com/public/ChmodTable.txt

It worked fine until the mmodern age of SQL servers, webservers, and more secure SMTP servers. I had more problems with sendmail than anything else. I gladly welcomed both Bernstein's qmail and Wietse Venema's Postfix (was VMail).

Still, something like RSBAC (SE-Linux is really only for Linux) CAN provide a lot of security for web servers and SQL servers:

http

Hahaha you got shot down in flames by APK

AC troll downmods a loss to APK to try hide it here http://yro.slashdot.org/comments.pl?sid=3115271&cid=41325115

Hahaha APK made you eat your words

You downmod it to hide it on your part troll? Pitiful http://yro.slashdot.org/comments.pl?sid=3115271&cid=41325705 You fail as always vs. apk, you anonymous coward troll.

Funny how I "shot you down in flames", lol!

"Rinse, Lather, & Repeat", troll -> http://yro.slashdot.org/comments.pl?sid=3115271&cid=41325115

* In case you hadn't noticed it? YOU FAIL!

On a "side-note":

Ever see the film "LIMITLESS"?

If not?? Do:

http://www.youtube.com/watch?v=THE_hhk1Gzc

Especially since this quote from it applies here, excellently:

"No scenario? I see every scenario, I see 50 scenarios - that's what it DOES, Carl - it puts me 50 MOVES AHEAD OF YOU..."

(That's EXACTLY what happened, here... lol!)

It was just... well, you know - TOO easy!

APK

P.S.=> Before you open your pie hole & even TRY to mess with me? Prepare yourself to "bite it", just like you did above... rotflmao, since 200++ of your /. peers CLEARLY DISAGREE with your ADHD/ADD or Dyslexia addled illiterate "opinion", troll...

... apk

Ac troll fails and tries downmods to hide it

Hahahaha APK shot you down trolls http://yro.slashdot.org/comments.pl?sid=3115271&cid=41325115

You love a LOSER then

Since APK shot Hazel and AC troll down easily http://yro.slashdot.org/comments.pl?sid=3115271&cid=41325115

Too bad you both LOSE, lol... apk

Per the undeniable FACTS here, vs. Hazel's trolling b.s. -> http://yro.slashdot.org/comments.pl?sid=3115271&cid=41325809

* Yes... "shooting YOU down in flames"? Priceless...

(There is LITTLE QUESTION, that it's "Hazel Bergeron" replying as AC now... too bad, I actually respect the story that NAME is from, unlike you, troll!)

APK

P.S.=> ROTFLMAO - & of course, you just KNOW I've GOTTA say it, as-is-per-my-usual "inimitable style":

THIS? This was just "too, Too, TOO EASY - just '2ez'"...

... apk

Answer this question, troll... apk

What do your words taste like, flavored w/ the "bitter taste of SELF-DEFEAT" , lol, & YOUR FOOT IN YOUR MOUTH -> http://yro.slashdot.org/comments.pl?sid=3115271&cid=41325115

??

* ROTFLMAO, and, you KNOW it... lol!

APK

P.S.=> Let me tell you all 1 thing @ the end of this (since it's my last post): IT IS NOT EASY being "world-class" @ my end, in my sheer undeniable abilty to 'trash' trolls, but... I can't take credit unfortunately - since facts are doing the job, NOT myself... oh well! It ends up the same... lol!

That all "said & aside"? Well... I'll let the late (GREAT) Freddie Mercury talk for me, to part our ways:

http://www.youtube.com/watch?v=4ADh8Fs3YdU

Since these trolls, especially the "ac" ones? Are a mindless crime, but... the SHOW MUST GO ON, & I love it... except blowing away these trolls? TOO easy...

... apk

Re:Answer this question, troll... apk

Has Joe Monco weighed in on this? I can't help form an opinion without the help of Joe Monco.

Re:Answer this question, troll... apk

I was just trying to be helpful, you didn't have to go all => *"apk "* on me. I mentally snipped the spreadsheet of links (seriously who does that?) the first time through..

Do you not create an account simply so you can brag about being upmodded from 0?

Or does monitoring all your previous anon posts so you can track moderation give you something to do?

20% seems low

[Rincewind42]

Living in China I see that pirated versions of Microsoft Windows and Office, are the norm not the exception. It is actually difficult to buy the legit software. I remember hunting all over several cities looking for a real Windows 7 CD when it first came out to no avail. If you want the real software, there are only a few PC suppliers who ship with it pre installed. Small local dealers will use pirated software. But the problem is exacerbated because of peoples love for the familiar. Most people in China still like windows XP. I have seen new machines arrive with Windows 7 installed only to see the owner take it to a shop and have a pirated Windows XP installed instead.

The story also missed that while the pirated Windows comes pre-installed with malware, it also it comes pre installed with antivirus and firewalls that have been modified to ignore/allow the malware.

Re:20% seems low

Yes, it *sometimes* comes preinstalled with AV you mean. 360 (the AV you're referring to) failed to clean Nitol off the infected boxes even though it reported they were clean. Also, after 360 paching was run it left half a dozen vulnerabilities unpatched on these machines which allowed unauthenticated remote code execution.

360 is not the story here - so no, the story didn't miss anything and in the Nitol case it didn't matter whether it was there or not; it didn't clean it.

Re:20% seems low

Oh, also it was 20% infected not 20% were counterfeit.

"Go Johnny Go..."

http://www.youtube.com/watch?v=I9YlTBEBwIQ&feature=related

Especially @ position # 1:29 where the line is this:

---

"Old Engineers sittin' in the shade, astounded by the rhythm that the DRIVERS made..."

---

*Translation to TROLLSPEAK = "Old *NIX heads blown away by APK once again..." (lol).

(I think that about "says it all"... with position 4:08... lol!)

APK

P.S.=> To "unhide" the bogus downmod, nobody can do it better than Mr. Halford, per my subject-line, PLUS, My utterly "DUSTING" Hazel Bergeron -> http://yro.slashdot.org/comments.pl?sid=3115271&cid=41325115 - lol, now, if THAT doesn't piss off this troll? LMAO, nothing can or will...

... apk

Gave me the ability to make Hazel Bergeron

Have to "eat his words"... to wit, per YOUR line of questioning now:

"Or does monitoring all your previous anon posts so you can track moderation give you something to do?" - by Anonymous Coward on Thursday September 13, @08:35PM (#41330299)

It gave me something to do HERE alright: Like blow away trolls like Hazel Bergeron -> http://yro.slashdot.org/comments.pl?sid=3115271&cid=41325809

* So, Yes - I suppose you could SAY what you did, but the result is what I did, which was to make Hazel Bergeron "EAT HIS WORDS"...

(After "Hazel" stated this verbatim, along with other not so nice things directed my way):

"Could you please tell me why your posts: * are written like this *" - by Hazel Bergeron (2015538) on Thursday September 13, @11:42AM (#41324565) Journal

FROM -> http://yro.slashdot.org/comments.pl?sid=3115271&cid=41324565

So, to that?

I just put up a TON of upward moderated posts others rated me as, to shut him up easily, with FACTS that drown his trolling b.s. - and, by MANY orders of magnitude, in a 200++:1 ratio of his /. peers of a CONTRARY OPINION to his...!

APK

P.S.=> It's always SIMPLE to use FACTS to burn a douchebag troll, like ole' Hazel Bergeron... lol!

... apk

In my day

[anilg]

16K? Luxury!

The Babbage machine was the only true computer without bloat.

Re:In my day

[mcgrew]

16K? Luxury!

Compared to the Altair, yes it was. IINM that one had 256 bytes total memory.

Hazel Bergeron's busy "eating his words"

Here -> http://yro.slashdot.org/comments.pl?sid=3115271&cid=41325809

* ROTFLMAO!

APK

P.S.=> One thing I absolutely LOVE, is making a "writing style troll" like Hazel Bergeron do? That's making THEM "eat their words" & showing them 100's of my upward modded posts that utterly TRASH their "critiques" with ease, and yes, FACTS!

... apk

Hazel Bergeron keeps eating his words!

Hazel, do us a favor: Keep eating your words -> http://yro.slashdot.org/comments.pl?sid=3115271&cid=41325809

* ROTFLMAO!

(Since you certainly HAD to... lol!)

---

"P.S. => ++ACL is an anagram of MAC." - by Hazel Bergeron (2015538) on Thursday September 13, @03:18PM (#41326719)

Anagram? It's Analogous - you FAIL again... lmao!

APK

P.S.=> One thing I absolutely LOVE, is making a "writing style troll" like Hazel Bergeron do? That's making THEM "eat their words" & showing them 100's of my upward modded posts that utterly TRASH their "critiques" with ease, and yes, FACTS!

... apk

Is Hazel Bergeron done "eating his words"?

See here (he's a BIT BUSY, lol, eating them) -> http://yro.slashdot.org/comments.pl?sid=3115271&cid=41325809

APK

P.S.=> Hazel Bergeron the "writing style critic" troll was OUTNUMBERED by MANY orders of magnitude (200++:1 was the ratio in fact) as to what folks think of my writing style (in hundreds of upmods I've gotten on my posts) - so, so much for Hazel Bergeron, eh? "Argue with the numbers" as the saying goes!

... apk

Correct (reposting due to bogus downmods)

http://yro.slashdot.org/comments.pl?sid=3115271&cid=41327417

APK

P.S.=> Enjoy - it's a GOOD SOLID READ on what ACL is vs. MAC, as well as DACL vs. ACL + what OS it exists on OR not, etc./et al (& pretty accurate too)... rajnging from mainframe OS', to midrange OS', into Client-Server + PC Desktop/workstation OS' designs...

That material came about after I had a discussion with the host of securemecca.org (Henry Hertz Hobbitt) which was VERY much like this one was....

I.E.-> Regarding how ACL existed on Windows NT-based OS far, Far, FAR before the NSA "bolted on" SeLinux MAC onto Linux (as well as how Linux copied that, AND, completion ports + other things needed for Orange Book C2 certification which Windows NT-based OS had 1st over Linux also, along with other things Linux needed for SMP to be "enterprise-class" ready)...

... apk

"Aw Gee": You had to "EAT YOUR WORDS" (lol)

Here -> http://yro.slashdot.org/comments.pl?sid=3115271&cid=41325809

* ROTFLMAO!

(QUESTION - How do your words taste now that you must eat them, flavored with the "bitter taste of SELF-DEFEAT" & spiced with your FOOT IN YOUR MOUTH?)

APK

P.S.=> One thing I absolutely LOVE is making a "writing style troll" like Hazel Bergeron "eat his words" by using literally 100's of my upward modded posts that utterly TRASH their "critiques" with ease, and yes, FACTS!

... apk

Correct, reposting (bogus downmods)

Tons of accurate data on that account (discussed it before) -> http://yro.slashdot.org/comments.pl?sid=3115271&cid=41327417

Bogus downmods can't hide your FAIL, Hazel

Here -> http://yro.slashdot.org/comments.pl?sid=3115271&cid=41325809

* ROTFLMAO!

(QUESTION - How do your words taste now that you must eat them, flavored with the "bitter taste of SELF-DEFEAT" & spiced with your FOOT IN YOUR MOUTH?)

APK

P.S.=> One thing I absolutely LOVE is making a "writing style troll" like Hazel Bergeron "eat his words" by using literally 100's of my upward modded posts that utterly TRASH their "critiques" with ease, and yes, FACTS!

... apk