Windows XP Support Deal Not Renewed By UK Government, Leaves PCs Open To Attack

← Back to Stories (view on slashdot.org)

Windows XP Support Deal Not Renewed By UK Government, Leaves PCs Open To Attack

Posted by samzenpus on Wednesday April 29, 2015 @09:34PM from the free-for-all dept.

girlmad writes: The government's one-year £5.5m Windows XP support deal with Microsoft has not been extended, sources have told V3, despite thousands of computers across Whitehall still running the ancient software, leaving them wide open to cyber attacks. It's still unclear when all government machines will be migrated to a newer OS.

137 comments

Min score:

Reason:

Sort:

The UK by Anonymous Coward · 2015-04-29 21:41 · Score: -1

Can I post FIRST?
Who Cares? What makes the UK special? Roundabouts?
1. Re:The UK by Anonymous Coward · 2015-04-29 21:48 · Score: -1
  
  Whatever makes "special people" special.
2. Re: The UK by Anonymous Coward · 2015-04-29 22:48 · Score: -1
  
  Only the SJW libtards who claim retards and cripples are just as capable as normal people.
3. Re: The UK by Anonymous Coward · 2015-04-30 02:02 · Score: 0
  
  Spectrum of potential abilities:
  least |---321--------------| most
  321 represents the space occupied by every single human, from least to most capable. This segment is so fucking tiny that it takes a small-minded, insecure retard to worry about where they are placed on it.
  tl;dr ironyyyyy
4. Re: The UK by Anonymous Coward · 2015-04-30 02:50 · Score: 0
  
  Just like dick size. Yet most men are worried about how they size up.
5. Re: The UK by Anonymous Coward · 2015-04-30 04:34 · Score: 0
  
  I'm not worried... maybe you are?
Tora! Tora! Tora! by Anonymous Coward · 2015-04-29 21:43 · Score: -1

Tora! Tora! Tora!
Tor's New Search Provider Built By Ex-NSA/Google.. by Anonymous Coward · 2015-04-29 21:47 · Score: -1

Tor's New Search Provider Built By Ex-Google And Ex-NSA Engineers
$$$
https://blog.torproject.org/bl...
^ https://blog.torproject.org/#S...
"New Search Provider[1]
Our default search provider has also been changed to Disconnect. Disconnect provides private Google search results to Tor users without Captchas or bans."
[1] https://search.disconnect.me/
$$$
"Disconnect Search, Built By Ex-Google And Ex-NSA Engineers, Lets You Use Google, Bing And Yahoo Without Tracking"
http://techcrunch.com/2013/10/...
FTA:
"notes Patrick Jackson, the ex-NSA engineer who is now CTO of Disconnect"
Yeah.. sounds like a good choice for a default TBB Search Engine... NOT!
$$$
-- On April 28th, 2015 Anonymous said:
"What prompted the change in search engine? Are we now getting paid to include disconnect as the default search engine?"
-- On April 28th, 2015 gk said:
"We don't get paid for that as it currently stands. But Startpage was not happy with our traffic and showed sometimes CAPTCHAs. Disconnect on the other hand approached us with respect to search engine traffic and donated some money."
Donated some money? Hahahahahhaaha. I wonder WHY they approached Torproject? You don't get paid for that CURRENTLY? Nice wording! But there was a DONATION, rrrriiiiight? I can't wait for future news! Please do let us know if and when you start collecting further $$ from the source.
I am insulted. I will continue to use Startpage's free web proxy service in TBB, and DuckDuckGo's .onion hidden service free search engine:
http://3g2upl4pq6kufc4m.onion/
So what's next, Torproject? Keystroke logging for Amazon or another company? Partnering with Recorded Future or something like it? Is this what the project has come to now? But that "Disconnect" Search Engine site is so pretty. So nice and clean, WOW! It sort of reminds me of the polished DoD sites I have wandered through.
$$$
Read Their Privacy Policy:
https://disconnect.me/privacy
Disgusting.
"I love how they "never collect your Personal Info, except when they do" and "never share your Personal Info (the one they didn't collect, remember?), except when they do""
$$$
With this new "Search Engine", I feel like a rug is being pulled out from underneath me and damn it "that rug really tied the room together."
Maybe they will move to court instead? by Z00L00K · 2015-04-29 21:52 · Score: 1

Maybe the UK consider to take Microsoft to court in case something happens and sue them under product responsibility laws or something.

--
If builders built buildings the way programmers wrote programs, then the first woodpecker would destroy civilization.
1. Re:Maybe they will move to court instead? by Anonymous Coward · 2015-04-29 22:00 · Score: 2, Insightful
  
  Maybe the UK consider to take Microsoft to court in case something happens and sue them under product responsibility laws or something.
  Take them to court over what? It's not like Microsoft hasn't been perfectly open about support ending last April.
2. Re:Maybe they will move to court instead? by alex67500 · 2015-04-29 22:02 · Score: 2
  
  It's Whitehall. They'll pass a law through Parliament to make sure they have grounds for the suit ;-)
3. Re:Maybe they will move to court instead? by oodaloop · 2015-04-29 22:04 · Score: 2, Insightful
  
  XP is 14 years old, and they gave plenty of warning when support would end. MS is under no obligation to support anything indefinitely. Seriously, why is your first response to sue? Is personal responsibility that hard?
  
  --
  Tic-Tac-Toe, Global Thermonuclear War, and relationships all have the same winning move.
4. Re:Maybe they will move to court instead? by Anonymous Coward · 2015-04-29 22:08 · Score: -1
  
  I almost came when I see the phrase '14 years old', but then I realized you were not talking about teenage girls.
5. Re:Maybe they will move to court instead? by Zocalo · 2015-04-29 22:12 · Score: 5, Informative
  
  No need. What the summary doesn't cover (it's in the the actual article) is that that this was always the plan. The UK Cabinet Office arranged a blanket agreement for the extended support coverage that applied to all departments that needed it for a lower overall cost, making it quite clear right from the start that this contract would not be renewed, and it hasn't been. It's now up to the individual departments to decide whether or not they wish to expend some of their own budget on further extending their specific support with Microsoft on a per-department basis. If there's a story here, it's the number of PCs still running XP that are now outside support and which departments those PCs are in, but that's something the article doesn't cover.
  
  --
  UNIX? They're not even circumcised! Savages!
6. Re:Maybe they will move to court instead? by tlambert · 2015-04-29 22:13 · Score: -1, Flamebait
  
  Take them to court over what? It's not like Microsoft hasn't been perfectly open about support ending last April.
  At a guess... not building a secure product not requiring updating in the first place?
7. Re:Maybe they will move to court instead? by Anonymous Coward · 2015-04-29 22:32 · Score: 2, Informative
  
  XP is 14 years old, and they gave plenty of warning when support would end. MS is under no obligation to support anything indefinitely. Seriously, why is your first response to sue? Is personal responsibility that hard?
  Because it should be the case. Those government agencies had contracts with Microsoft since 2002 where they paid 50 dollars a year extra per computer to Microsoft after Windows XP was released in exchange for a safe/free upgrade path to the next version of Windows. Microsoft's part in the contract was to provide them a new version of Windows by 2003 or free XP support till the hardware dies. But that did not happen. Instead, Microsoft screwed them over and kept releasing service packs for XP instead. They never got a free upgrade to a new OS. Why should they pay for upgrades when Microsoft broke the contract?
  As much as "teh internet" hates to hear this, Microsoft should be legally forced to abide by the contacts they signed and keep supporting Windows XP till the last contracted government agency replaced their hardware even if till 2030.
8. Re:Maybe they will move to court instead? by Anonymous Coward · 2015-04-29 22:39 · Score: 0
  
  In other words, Microsoft signed contracts in 2002 with governments, universities, foundations, and medical institutions promising support for XP till either 1) hardware dies 2) a new version of windows that can be supported on the same hardware is released and the upgrade would be free.
  Just so you know, Microsoft did a lot of shitty deals back then and screwed over a lot of people.
  Besides, are you going to pay extra taxes so your government can upgrade their hardware?
9. Re:Maybe they will move to court instead? by Anonymous Coward · 2015-04-29 22:44 · Score: 1
  
  XP is 14 years old, and they gave plenty of warning when support would end. MS is under no obligation to support anything indefinitely. Seriously, why is your first response to sue? Is personal responsibility that hard?
  Because it should be the case. Those government agencies had contracts with Microsoft since 2002 where they paid 50 dollars a year extra per computer to Microsoft after Windows XP was released in exchange for a safe/free upgrade path to the next version of Windows. Microsoft's part in the contract was to provide them a new version of Windows by 2003 or free XP support till the hardware dies. But that did not happen. Instead, Microsoft screwed them over and kept releasing service packs for XP instead. They never got a free upgrade to a new OS. Why should they pay for upgrades when Microsoft broke the contract? As much as "teh internet" hates to hear this, Microsoft should be legally forced to abide by the contacts they signed and keep supporting Windows XP till the last contracted government agency replaced their hardware even if till 2030.
  This sounds like a very strange contract clause if formulated this way -- any citations on this?
10. Re:Maybe they will move to court instead? by Anonymous Coward · 2015-04-29 22:56 · Score: 0
  
  Well the UK gov has source code.
  They can compare a with B and mix n match modules - if they were smart, or even write new patches.
  But for some reason, no one is blabbing what to mix and match to make a Frankenstein system
  But Win 7 Enterprise comes with an XP compatibility mode, and it you install whatever using same it - mostly always works.
11. Re:Maybe they will move to court instead? by johnw · 2015-04-29 23:08 · Score: 4, Informative
  
  Microsoft hasn't been perfectly open about support ending last April.
  Well, not quite open. They have consistently portrayed the situation as being one of support ending last April. The truth is, support for XP did not end last April, and was never planned to. What actually happened is that support went from being free (or at least included in the price of the product) to being a very expensive add-on.
12. Re:Maybe they will move to court instead? by Anonymous Coward · 2015-04-29 23:20 · Score: 0
  
  XP is 14 years old, and they gave plenty of warning when support would end. MS is under no obligation to support anything indefinitely. Seriously, why is your first response to sue? Is personal responsibility that hard?
  Because it should be the case. Those government agencies had contracts with Microsoft since 2002 where they paid 50 dollars a year extra per computer to Microsoft after Windows XP was released in exchange for a safe/free upgrade path to the next version of Windows. Microsoft's part in the contract was to provide them a new version of Windows by 2003 or free XP support till the hardware dies. But that did not happen. Instead, Microsoft screwed them over and kept releasing service packs for XP instead. They never got a free upgrade to a new OS. Why should they pay for upgrades when Microsoft broke the contract?
  As much as "teh internet" hates to hear this, Microsoft should be legally forced to abide by the contacts they signed and keep supporting Windows XP till the last contracted government agency replaced their hardware even if till 2030.
  This sounds like a very strange contract clause if formulated this way -- any citations on this?
  Yes, me. I signed such a deal. Also ask any university or medical institution in your area.
  I worked in one agency with 4000 PCs in two cities. That was a common contact back then.
  Really, Microsoft are not angels. You have absolutely no idea what hell they put us through.
13. Re:Maybe they will move to court instead? by Anonymous Coward · 2015-04-29 23:22 · Score: 0
  
  Congratulations, you have won this semantics war.
  Shame on GP for not using the exact same words as used by Microsoft, even though any reasonable person understood perfectly well what he meant.
14. Re:Maybe they will move to court instead? by Xest · 2015-04-29 23:45 · Score: 2, Interesting
  
  Probably more worrying is the fact that much of our military are still using IE6.
15. Re: Maybe they will move to court instead? by bill_mcgonigle · 2015-04-29 23:53 · Score: 1
  
  Just so you know, Microsoft did a lot of shitty deals back then and screwed over a lot of people.
  Why wasn't the contact enforced when Vista or 7 came out? One party is a nuclear-armed sovereign - don't tell me Microsoft refused... the courts would surely order cooperation if that were the case.
  
  --
  My God, it's Full of Source!
  OUTSIDE_IP=$(dig +short my.ip @outsideip.net)
16. Re:Maybe they will move to court instead? by Anonymous Coward · 2015-04-30 00:09 · Score: 0
  
  considering there is no such product in existence created by anyone I would think they would be laughed out of court.
17. Re:Maybe they will move to court instead? by Anonymous Coward · 2015-04-30 00:11 · Score: 0
  
  If Whitehall were compitant enought to pass a law to have grounds for a suit, then they would have been compitant enough not to get into this mess in the first place.
18. Re:Maybe they will move to court instead? by Anonymous Coward · 2015-04-30 00:15 · Score: 0
  
  you are full of shit. Firstly Microsoft don't directly sell licenses or contracts, not even to the big companies. secondly they have ALWAYS had support lifecycles listed, even way back in the win 95 days. So you are lieing or simply not understanding what you read. I have never seen any contract by them that provides support till hardware dies, especially ludicrous since they don't sell hardware. What you probably saw was an OEM making such a commitment.
19. Re:Maybe they will move to court instead? by duke_cheetah2003 · 2015-04-30 00:15 · Score: 1
  
  Maybe the UK consider to take Microsoft to court in case something happens and sue them under product responsibility laws or something.
  Uhhh.. no one is forcing them to continue to use ancient software. They're quite welcomed and encouraged to upgrade to something newer and better. Certainly not Microsoft's problem. Microsoft and most of the rest of the world have long since moved on.
20. Re: Maybe they will move to court instead? by Billly+Gates · 2015-04-30 00:19 · Score: 1
  
  There is. It is called Windows 7 and by the way even that is over half a decade old!
  Why is it Microsofts fault that they bought software with IE 6 specific rendering probably purchased 6 or 7 years after IE 6 came out! Poor us we are the victims yada yada.
  No sympathy and someone or somebodies need to be fired. Talk about bad management.
  
  --
  http://saveie6.com/
21. Re:Maybe they will move to court instead? by Anonymous Coward · 2015-04-30 00:22 · Score: 1
  
  Hardly just semantics, and you seem to have missed the point of what I said - indeed, you've made up your own quite different message.
  I didn't say anything about the GP not being comprehensible, or what he said differing from Microsoft's line. In fact, he simply repeated Microsoft's line.
  My point is that Microsoft have not been open about what is actually happening. Support for XP is not ending, it just costs a lot now where previously it didn't.
22. Re:Maybe they will move to court instead? by Spamalope · 2015-04-30 00:26 · Score: 1
  
  No viable replacement was offered until mid 2009 (Win7). New PCs with XP were deployed (certainly in business) until then. That isn't 14 years.
23. Re:Maybe they will move to court instead? by Lumpy · 2015-04-30 00:31 · Score: 1
  
  The Surface to Air missiles are programmed via a web interface using Active X controls written in Visual Basic 6.
  
  --
  Do not look at laser with remaining good eye.
24. Re:Maybe they will move to court instead? by Anonymous Coward · 2015-04-30 01:00 · Score: 1
  
  A prison built especially for all the computer programmers in the world... Hey, at least no jocks will be allowed inside to bully us :) But we'll still have a large population of idiots.
25. Re:Maybe they will move to court instead? by Xest · 2015-04-30 01:14 · Score: 0
  
  Based on launch trajectories calculated via a macro in an Excel 95 spreadsheet that is sent from personal Hotmail addresses?
26. Re: Maybe they will move to court instead? by jmac_the_man · 2015-04-30 01:24 · Score: 1
  
  Microsoft's part in the contract was to provide them a new version of Windows by 2003 or free XP support till the hardware dies. But that did not happen. Instead, Microsoft screwed them over and kept releasing service packs for XP instead. They never got a free upgrade to a new OS.
  
  You're shifting goalposts here. In lieu of a new OS in 2003, MS provided XP support (including service packs, which were free) long past the service life of the 2001-era hardware we're talking about. Sounds like they complied with the second part of the contract, which I bolded above.
27. Re:Maybe they will move to court instead? by Luckyo · 2015-04-30 02:13 · Score: 1
  
  Retroactive legislation like this would be likely contested up to the constitutional courts and then if necessary ICJ and declared illegal.
28. Re:Maybe they will move to court instead? by gbjbaanb · 2015-04-30 02:14 · Score: 1
  
  or maybe they've taken the time during extended support to replace all vulnerable PCs with Win7 and unplug the rest from the internet.
29. Re: Maybe they will move to court instead? by Luckyo · 2015-04-30 02:18 · Score: 1
  
  That's one of the reasons that many of these contractual obligations are now litigated on EU level. A single European sovereign country is often too weak to counteract pressure from international corporation on the scale of microsoft/google/apple. See the support debacles with apple all over Europe where apple is straight up breaking the law and national courts lack the ability to impose large enough penalties for them to matter.
  Sovereign power has been severely weakened on this front during last couple of decades. In part through natural evolution of economic means of rule over military and nationalistic ones, and in part through systemic infiltration and corruption of power structures of said sovereign states by interests of said economic forces.
30. Re: Maybe they will move to court instead? by Immerman · 2015-04-30 02:25 · Score: 1
  
  Is the hardware dead/retired? Is the support still free? If you answered no to either question, then they *aren't* honoring the deal. Unless the contract specifically said "service life" AND gave a definite maximum duration for that term, then the life of the hardware is until its owners decide to retire it. Running 15 year old hardware that still gets the job done is hardly an unusual scenario.
  
  --
  --- Most topics have many sides worth arguing, allow me to take one opposite you.
31. Re: Maybe they will move to court instead? by Immerman · 2015-04-30 02:36 · Score: 1
  
  Sorry, that should be "if you answered no to both questions"
  Perhaps Microsoft was counting on Moore's Law rendering the hardware unable to "get the job done" by now rather than performance improvements pretty much stalling out for the last decade, but that's their problem. If you want to bet on unstated "gotchas" crippling a contract in your favor, you've got to also be willing to have that bet turn sour.
  
  --
  --- Most topics have many sides worth arguing, allow me to take one opposite you.
32. Re:Maybe they will move to court instead? by BradMajors · 2015-04-30 02:52 · Score: 1
  
  Many computers running Windows XP can not be upgraded to Windows 7 because Windows 7 has additional hardware requirements. I own one of these type of computers. There is no way for me to upgrade my Windows XP computer.
33. Re:Maybe they will move to court instead? by Anonymous Coward · 2015-04-30 03:01 · Score: 0
  
  Kinda like OP should be laughed out of slashdot.
34. Re:Maybe they will move to court instead? by VGPowerlord · 2015-04-30 03:22 · Score: 1
  
  Was the year 2003 specifically mentioned or did you just pull that out of your a... hat?
  Last I checked, there have been 3 new versions of Windows since 2001: Vista, 7, and 8. If you choose not to use them, that's not Microsoft breaking the contract...
  
  --
  GLaDOS for President 2016! "Well here we are again. It's always such a pleasure." -- GLaDOS, 2011
35. Re:Maybe they will move to court instead? by Anonymous Coward · 2015-04-30 03:33 · Score: 0
  
  Yes there is, I am sure it will run Linux quite happily.
36. Re:Maybe they will move to court instead? by Anonymous Coward · 2015-04-30 03:35 · Score: 0
  
  Try installing any of them on low-end hardware for XP. None of them will run.
37. Re:Maybe they will move to court instead? by hairyfeet · 2015-04-30 04:24 · Score: 1, Interesting
  
  You want to know what is sad? When I'm sitting there bored at the shop I have installed Windows 7 on some pretty ancient pieces of crap I end up with on trade ins and ya know what? As long as its got a GB of RAM it'll run just fine, 10 minutes turning off any services they do not need and it'd run better than XP. I seriously doubt we are talking last PIIIs and first gen P4s in the British government, if my own local government (who had all theirs switched by cutoff, ended up with a mountain I needed to refurb) are any indication what you'd be seeing is a ton of first gen Core 2 Duos, Athlon X2s, maybe if they were really cheap (like our streets dept) some Pentium Ds.....all of which will run Windows 7, hell Windows 10 just fine.
  As some here know just to see if Windows 10 was gonna be a Vista piggie or a "7 sweetie" I grabbed the absolute weakest portable I have, a 2011 AMD Bobcat netbook I use for service calls. For those that don't know what an AMD Bobcat is its a chip that was designed to compete with Intel Atom when the netbook hype was in full swing (and ironically ended up being the APU for the XB1 and PS4 with its successor Jaguar) and has performance roughly equal to a last generation Atom+Nvidia ION setup so we are talking a REALLY weak chip. How does the newest Windows 10 builds run on such a weak chip? It runs just fine,takes less time to boot than Win 7 and once I'm on the desktop its all smooth sailing.
  So there really is no excuse for paying something like $15 million bucks just to extend Windows XP (which lets be honest folks it was NEVER that great an OS and wasn't even halfway decent until SP2, I would argue both Win2K and XP X64 AKA 2K3 Workstation 64 were better OSes) when I bet a good 90% of the hardware they have running would take both Windows 7 AND Windows 10 without requiring new hardware and with Windows 7 able to be upgraded to Windows 10 while keeping your programs and settings via WU? Its really a no brainer, they could run Win 7 now and once IT has checked all their mission critical stuff runs fine on Windows 10 just push out the upgrade. Hell Win 7 has XP Mode so they can't even use application compatibility as an excuse,so its sad and shameful all their citizens info is gonna be at risk just because they couldn't get off their butts even with nearly a half a decade of warning what was coming!
  
  --
  ACs don't waste your time replying, your posts are never seen by me.
38. Re:Maybe they will move to court instead? by Addicted+To+FM · 2015-04-30 04:46 · Score: 1
  
  I installed Windows 10 build 10061 x86 on an almost 12 year old computer. Athlon 64 3200+ Gigabyte KA-K8N Pro motherboard 1 Â½ GB of DDR1 RAM (333 MHz) Sapphire Radeon 9600 Pro graphics card It boots up incredibly fast and uses... about 1% - 4% CPU at idle and 18ish % RAM at idle. I'm very impressed .:D
39. Re:Maybe they will move to court instead? by Anonymous Coward · 2015-04-30 05:47 · Score: 0
  
  Sounds like a good opportunity for a gang of unemployed OS-heads to make some money: "We'll fix your XP problems cheaper than soft will."
  We've still got a lot of XP machines in our lab (networked; but isolated from "the internet of terrorists") and they've been bulletproof. They're (maybe 30 machines, 6 printers) connected together for data capture & analysis (a lot of Labview here), central storage (simple folder sharing), printing, HTTP (instruction manuals and forms), email, and SNTP, and the XP's have nowhere near the problems of any "newer OS machines" we've had on the network.
40. Re:Maybe they will move to court instead? by Anonymous Coward · 2015-04-30 07:05 · Score: 0
  
  XP is 14 years old, and they gave plenty of warning when support would end. MS is under no obligation to support anything indefinitely. Seriously, why is your first response to sue? Is personal responsibility that hard?
  Because it should be the case. Those government agencies had contracts with Microsoft since 2002 where they paid 50 dollars a year extra per computer to Microsoft after Windows XP was released in exchange for a safe/free upgrade path to the next version of Windows. Microsoft's part in the contract was to provide them a new version of Windows by 2003 or free XP support till the hardware dies. But that did not happen. Instead, Microsoft screwed them over and kept releasing service packs for XP instead. They never got a free upgrade to a new OS. Why should they pay for upgrades when Microsoft broke the contract?
  As much as "teh internet" hates to hear this, Microsoft should be legally forced to abide by the contacts they signed and keep supporting Windows XP till the last contracted government agency replaced their hardware even if till 2030.
  12 year old hardware is essentially dead contract or not.
41. Re:Maybe they will move to court instead? by yuhong · 2015-04-30 12:41 · Score: 1
  
  This reminds me that the reason Server 2003 got an extra year of support is that they waited until after Vista SP1 to release Server 2008, and Vista RTM had many well-known problems.
42. Re:Maybe they will move to court instead? by david_thornley · 2015-05-01 04:00 · Score: 1
  
  Vista was released 8 years ago, and it was crap. Windows 7 was 6 years ago, and IIRC you could get XP on new netbooks through 2011, although a quick look didn't find any verification. In other words, any 8-year-old hardware probably came with XP, and XP remained the best Microsoft OS up to 6 years ago. Six years old isn't essentially dead.
  
  --
  "When you have eliminated the unacceptable, whatever is left, however improbable, must be the truthiness" - Holmes
43. Re:Maybe they will move to court instead? by Anonymous Coward · 2015-05-01 11:03 · Score: 0
  
  This is all about creating an incentive to upgrade. As it should be.
  Microsoft announced the end of support. XP had the longest official lifespan of any Microsoft OS, ever. For customers who are unable to upgrade (usually due to galactic-scale footdragging, incompetence or laziness), they could buy extra cost post-life support. Which the Brits did for one year. Now Whitehall has decided to create some internal pressure to get off the pot and upgrade. As it should be.
  Really, what's next for the excuses about not upgrading? "Oh, is Christmas on December 25th again this year? How come we weren't informed?"
Its not like Microsoft "secure" XP anyway? by Anonymous Coward · 2015-04-29 21:52 · Score: 3, Insightful

The Brits aren't dumb. They figured out that whether they throw 5.5M at MS or not, XP will run on regardless. Surely MS don't supply the anti-virus / firewall software? That must be 3rd party, and I'll bet, works out a heck less than 5.5M quid. The posting suggests that the second XP "support" vanishes, billions of malwares will converge on those computers. No. Unless MS pays someone to do it...
1. Re:Its not like Microsoft "secure" XP anyway? by Luckyo · 2015-04-30 02:25 · Score: 5, Informative
  
  Pretty much this. Most likely someone with a clue finally realised that as long as you have a working firewall and anti-virus that will block outside executables, your XP machine is quite safe from "omg internet viruses". Especially if like most computers in major organisation, it's also sitting behind a NAT.
2. Re:Its not like Microsoft "secure" XP anyway? by Anonymous Coward · 2015-04-30 05:33 · Score: 0
  
  Go to Wicar and tell me how many of those your AV warns you about. My guess is that at least one page loads just fine. It also doesn't cover random non-executable files that can own you, like the many WMF bugs or the thumbnail engine, etc, which an AV may not be set up to scan.
3. Re:Its not like Microsoft "secure" XP anyway? by Anonymous Coward · 2015-04-30 07:43 · Score: 0
  
  Exactly, now get ready for the "Pros" and Salesmen telling you otherwise....
  I have to support almost everything under the sun and miss XP...but I have to support what my Clients run.....
  This is the part where we get to remind them that nothing is bullet proof, 8.1 and 10 will be just as vulnerable as 11......
  Thank the heaven the Cloud is ALSO rock Solid...but I digress.
  The Only Secured PC is one not connected to ANYTHING in a Faraday cage,
4. Re:Its not like Microsoft "secure" XP anyway? by Luckyo · 2015-04-30 11:54 · Score: 1
  
  You appear to be talking about security holes in third party software. How is microsoft responsible for it?
5. Re:Its not like Microsoft "secure" XP anyway? by pacman+on+prozac · 2015-04-30 20:27 · Score: 1
  
  Problem is they also need to be very careful about any files with scripts, like office docs, PDFs, etc. Then anything that uses built in OS libraries, such as image files, SSL connections, etc.
  That gets hard, anti-virus is severely limited unless it does proper heuristics which seems to be rare, there are whiteboxing technologies but they are expensive and not foolproof. At some point you need to either isolate those legacy systems from the rest of the world or upgrade them.
6. Re:Its not like Microsoft "secure" XP anyway? by TechnoJoe · 2015-05-01 04:51 · Score: 0
  
  And the trophy for naivety goes to Luckyo! If you were talking about home installations that 1) used a non-administrator account, 2) up-to-date anti-virus, and 3) a stateful packet inspection firewall router (as opposed to software on the computer), then you might get away with continuing to use XP.
  But these are GOVERNMENT computers! They are highly likely to be targeted for attack, especially by other governments which have both the motive and means to break past consumer-grade security. Governments can find new zero-day flaws and write their own viruses. Layered defences are essential in this environment, and lack of manufacturer support is a catastrophic loss.
  See Stuxnet
7. Re:Its not like Microsoft "secure" XP anyway? by Luckyo · 2015-05-01 08:01 · Score: 1
  
  Have you ever realised that government actually does things that aren't top secret?
  As in low level bureaucracy, crunching numbers needed to generate statistics, writing largely pointless reports that are necessary for archiving in case they are needed at a later date and so on?
  I see those computers all the time. They're usually workstations sitting in places like watch booths of grassroot sports fields and such. They're rarely used, very old and completely irrelevant as they contain no data interesting for anyone. They're mostly there are browsing machines and something from which people involved can write daily report email and browse web for things like work shift schedules.
  These computers are highly uninteresting for those behind zero day/targeted threats, as they would cost more to take over than any potential revenue you could secure from them for such an attacker.
8. Re:Its not like Microsoft "secure" XP anyway? by TechnoJoe · 2015-05-01 11:18 · Score: 0
  
  I've seen them too. They have such uninteresting things like social security / pension information, income tax numbers, and veterans health care. Other governments don't have to be the only ones targeting government computers. Organized crime would like to see that not-top-secret info.
  Look at Target. The hackers broke in though the computers running the AIR CONDITIONING. "Oh, air conditioning is boring and uninteresting. There's no need to secure that. Even if someone hacked it, what would they do, freeze us to death?"
9. Re:Its not like Microsoft "secure" XP anyway? by Luckyo · 2015-05-03 04:21 · Score: 1
  
  So your argument is that poor protection on OTHER machines is the problem?
  Okay. Make a thread on the subject and stop shifting goalposts to jury-rig the argument to fit your "you must update or else you get raped, no really" agenda.
I just don't understand by Anonymous Coward · 2015-04-29 21:54 · Score: -1

Why won't a nubile girl let me fuck her in the ass?
1. Re:I just don't understand by Anonymous Coward · 2015-04-29 23:15 · Score: 0
  
  Because you are a fat, smelly letch?
"wide open to cyber attacks"? by Anonymous Coward · 2015-04-29 22:01 · Score: 0

Slightly hyperbolic there....
And conveniently ignoring all the other security infrastructure that may or may not be around these boxes, for example firewalls, IDS/IPS, proxies, anti-malware systems, etc.
And didn't Microsoft say that the support costs would increase year-on-year for XP?
So prospective cost would be (completely random guesstimate) 7-10 million, maybe more.
So basic risk analysis - what's our exposure/what's the cost of a breach? Is it more than £7-10 million?
So what will they switch to? by Anonymous Coward · 2015-04-29 22:02 · Score: 0

Nothing. They're just gonna keep running a 15 year old OS because they are a bunch of punters.
God save the queen (once she gets the goatse virus someone better save her!)
good - waste of money. by Anonymous Coward · 2015-04-29 22:06 · Score: 1

Simple answer is just too remove all the pc's from the internet. Do they need it to work out taxes, etc? Of course not.
I can answer that for you... by Anonymous Coward · 2015-04-29 22:23 · Score: 0

It's a country where Segways are illegal to use outside of private property (so unless you live on a big estate, virtually nowhere), so in answer to the question, no.
Why? BECAUSE NEW TECHNOLOGY IS SCARY!
Wide open to attack? by Anonymous Coward · 2015-04-29 22:23 · Score: 1

Hyperbole much? Systems don't suddenly develop security holes the day a support agreement is ended. If it was fine the day before support ended, it's fine the day after. Of course, the moment a new issue _is_ discovered, it's game over.
1. Re:Wide open to attack? by Anonymous Coward · 2015-04-29 22:48 · Score: -1
  
  Hyperbole much? Systems don't suddenly develop security holes the day a support agreement is ended. If it was fine the day before support ended, it's fine the day after. Of course, the moment a new issue _is_ discovered, it's game over.
  Windows XP is ancient, it was released in 2001. At the time Apple was still delivering Mac's with OS 9 installed. Even with support contract and fixes it is a security nightmare.
2. Re:Wide open to attack? by Luckyo · 2015-04-30 02:26 · Score: 1
  
  XP SP2 changed so much, it was effectively a new OS by the time it came out if you want to go down that road. Especially by Apple PC OS standards.
No sympathy at all for them by Anonymous Coward · 2015-04-29 22:28 · Score: 0

Given the shear amount of warning Microsoft did about Windows XP. I have no sympathy for anyone still using XP and complaining about support. Even Google is going to drop support for Chrome on XP in the next few months. Not only that, I can't imagine any software the is useful is even being updated for XP at this time.
If Apple or Google had control of XP they would have stopped supporting it long ago and would have probably given no extensions for support paid or otherwise.
Supported != Secure by mangobrain · 2015-04-29 22:36 · Score: 4, Insightful

TFA and the summary make it sound as if it is the lack of support contract which makes these systems insecure. This is complete and utter nonsense - it is the fact that they are running Windows XP which makes them insecure. It's not as if malicious hackers around the world were sitting there rubbing there hands in glee, waiting for the day the support contract expired to plunder the systems, having previously been completely and utterly thwarted in their evil plans by the exchange of funds between the UK government and Microsoft.
But at least a support contract would get them fixes for any newly discovered vulnerabilities, right? Well, maybe. No software is perfect, but the world - and Microsoft's practices - have moved on, and realistically it would take a *lot* of money for MS to spend a meaningful fraction of their resources securing an OS past the end of its useful commercial life.
1. Re:Supported != Secure by DarkOx · 2015-04-30 00:32 · Score: 1
  
  True, but if you had a working exploit that was no patch to fix, and you knew that your target was about to go off support and loose the ability to submit issues and expect a fast fix turnaround, would you:
  A) Go for it the moment you have a working sploit grab all you can.
  B) Wait a little while before you take the big risk of using it widely and trying to ex-filtrate the loot to avoid discovery. Then after the support is up and you know the response will be hampered make your move. You know either it will likely take longer for your infiltration to be stopped or the victim will have to accept some self inflicted harm like off-lining production systems until they can find a fix (Which in the case of a government might mean a drone strike, but that is another issue).
  
  --
  Repeal the 17th Amendment TODAY! Also Please Read http://www.gnu.org/philosophy/right-to-read.html
2. Re:Supported != Secure by rhazz · 2015-04-30 01:48 · Score: 1
  
  Is there any alternative to Microsoft for getting XP support? If another company said, hey, we'll give you equivalent support at 1/10 the cost MS asks, would that be legal or would MS sue them into oblivion? My government agency is also paying these fees for some legacy systems running on 2003.
3. Re:Supported != Secure by drinkypoo · 2015-04-30 02:01 · Score: 1
  
  Is there any alternative to Microsoft for getting XP support? If another company said, hey, we'll give you equivalent support at 1/10 the cost MS asks, would that be legal or would MS sue them into oblivion?
  No, of course there isn't. Microsoft owns all the code, and they have never delivered all of it to any party. Further, even Microsoft doesn't really understand the code, which has bits and pieces from various legacy codebases grafted onto it, forced into it, et cetera. Some of that stuff went away in Vista, but XP is still crammed full of it.
  In order to support XP without making it worse you'd have to first a) secure licensing from Microsoft to permit you to do that and b) hire much of Microsoft to get the personnel with the knowledge to maintain the internals, then c) spend a lot of time and money getting your other hires up to speed. By which time all those machines would be migrated to something else (the year of Linux on the desktop! heh heh.)
  The same is true of any other Microsoft OS, to save you the trouble of asking
  
  --
  "You're right," Fisheye says. "I should have set it on 'whip' or 'chop.'"
4. Re:Supported != Secure by scsirob · 2015-04-30 02:34 · Score: 1
  
  Don't kid yourself. The personnel with knowledge to maintain the internals of XP are all axed years ago. There's only a few H1B workers applying band-aids if really necessary.
  
  --
  To Terminate, or not to Terminate, that's the question - SCSIROB
5. Re:Supported != Secure by fustakrakich · 2015-04-30 03:26 · Score: 1
  
  I don't know why they should be allowed to keep the patents and copyrights then.
  
  --
  “He’s not deformed, he’s just drunk!”
1 year may have been enough by bazorg · 2015-04-29 22:38 · Score: 1

Assuming that IT pros outside of Slashdot are about as smart as IT pros posting on Slashdot, it's quite likely that those PCs have been replaced, reconfigured (remove network card and USB ports, seal the PC case?) or placed in different areas in their networks to mitigate the risks of running XP. Adding extended support at that price needs to be part of the solution, not the only thing they've done. Hopefully they've used that time for deploying and testing new security measures.
1. Re:1 year may have been enough by CaptainOfSpray · 2015-04-29 23:18 · Score: 3, Informative
  
  Yes, but UK gov does not have any of those "smart as on Slashdot" IT pros. The UK gov outsourced all its IT to Big-Name-and-Big-Billing suppliers, and got rid of its own IT-literate employees. Now that the BNaBB suppliers have got UK gov over a barrel, the charges they invoice are extortionate. Remember the scandal over the lost CDs containing the entire Dept of Work and Pensions database (IIRC)? That was caused by the relevant dept being unable to write a simple SQL SELECT, and the supplier wanting £5000 for 20 minutes work.
  
  --
  "Cock Up Your Beaver" does not mean what you think. This sig is intended to clog filters and annoy do-gooders
2. Re:1 year may have been enough by goarilla · 2015-04-29 23:37 · Score: 1
  
  Does anyone have any insights into what that extended support actually provides. How many security patches
  have there been released since ? To me it sound as a very expensive extra insurrance for when the house burns down and
  people above you start to look for someone to blame.
3. Re:1 year may have been enough by Little_Professor · 2015-04-29 23:58 · Score: 2
  
  Umm, no. The computers at my workplace (UK govt) are the same as they have been for the last seven years. USB ports were disabled at the time of installation, but they are connected to the internal network as well as the internet. Still run several legacy applications that need IE (we're still on IE7). Even worse, even new applications that have been brought in within the last year are still IE-only. With no new updates to IE on XP platforms it's an insane risk
4. Re:1 year may have been enough by bazorg · 2015-04-30 00:25 · Score: 1
  
  The standard rules are set out here: https://support.microsoft.com/...
  A special customer like .gov.uk may have had a special contract.
5. Re:1 year may have been enough by bazorg · 2015-04-30 00:30 · Score: 1
  
  I forgot to add that yes, probably there is a strong element of CYA policy. My company is not as important as MS or .gov.uk and we still have "you must have the servers and workstations running supported versions" in exchange of our SLA for support.
6. Re:1 year may have been enough by operagost · 2015-04-30 01:49 · Score: 1
  
  I hear they switched IT providers to the "Permanent Assurance Company." AHOY!
  
  --
  
  Gamingmuseum.com: Give your 3D accelerator a rest.
Windows 10: UK Edition by Anonymous Coward · 2015-04-29 22:44 · Score: 0

A special edition of Windows! Just for us jolly Brits! :D
Special features:
Automatic porn filtering to protect from accidentally seeing something gross on the web
Automatic blocking of torrents to prevent us from accidentally pirating something
Automatic uses your webcam as a mini CCTV, for 24 hour protection
And more!
Not true by Anonymous Coward · 2015-04-29 22:45 · Score: 3, Funny

It's well understood that Windows is so flaky it needs constant patching and the minute you stop paying, it explodes into a fireball. The only thing keeping that POS software from chomping on your important data is a constant fee paid to Microsoft to tame it.
What you need is to cloudify the lot, you don't see clouds explode into fireballs do ya! That's the power of the cloud, I learned that at MBA school.
1. Re:Not true by danomac · 2015-04-30 03:59 · Score: 1
  
  Clouds don't explode into fireballs, but they do drift away, leaving them back at square one.
Go Linux! by MagickalMyst · 2015-04-29 23:21 · Score: 1

Linux would be a refreshing change. And updates are free!

--
Political correctness is really just herd psychology pushed by insecure people who desperately seek social conformity.
1. Re: Go Linux! by Anonymous Coward · 2015-04-29 23:48 · Score: -1
  
  With a 50% of breaking your system and forcing you to a command prompt to save it? No thanks.
2. Re:Go Linux! by Dr_Barnowl · 2015-04-30 00:06 · Score: 1
  
  Running things without support agreements brings managers out in hives, particularly an arena as risk-averse as a health service.
  Something you paid for fucks up? It's the supplier's fault.
  Something you didn't pay for fucks up? It's YOUR fault.
  Therefore there's no real advantage, from the POV of licensing costs.
  The real reason they've not migrated from WinXP has to be considered. The NHS is a mire of vast depth full of crufty software. They have so many pieces of old software it's not true. It's really diverse environment, with a high "institutional knowledge" factor where many systems just aren't adequately documented outside the heads of those who implement them.
  Ironically, some of the oldest stuff is the easiest to migrate - because it's got a VT-100 terminal interface and runs on an AS/400 in a broom cupboard. You could even say that Linux would be it's natural environment, because any standard terminal will work.
  But the next level...
  You have :-
  * 16-bit applications
  I know of at least one hospital pharmacy management system still in use in the UK that's a 16-bit application. You can run it on 32-bit Windows, but not 64-bit, because it doesn't come with the 32-to-16-bit thunking layer.
  * Old device drivers
  There are plenty of devices with no drivers for Windows 7 and up.
  * Badly written applications
  Lots of programs on Windows got away with really bad habits like writing files in their own install folder for a long time. Windows 7 is somewhat stricter about this. Of course, on Linux, applications have mostly been grown up about this for some time.
  And of course
  * What if it breaks?
  It's actually a very real risk. A lot of the software used in the NHS is of distinctly amateur quality and do things in eccentric and old-fashioned ways. I've seen software broken just because someone upgraded it's file server from NT to 2000 - it didn't play nice with some of the new optimizations on SMB (SMB optimizes single-user access to files by pre-emptively write-locking the file on the server. Which is not what you want when it's actually a multi-user data store.)
  It's gone this way for as long as it has because like everything else in the NHS, the budget has been cut to the bone. There just isn't enough slack to institute change - but change is essential for improvement to occur.
  It should be the poster-child for the advantages of FOSS though. Linux software tends to be more portable, and if you have the source, you've got more chance of porting it.
3. Re: Go Linux! by Anonymous Coward · 2015-04-30 01:08 · Score: 0
  
  As opposed to "format and reinstall", which is the alternative solution to those problems? Yeah, I can see how it's worse.
4. Re:Go Linux! by Anonymous Coward · 2015-04-30 01:19 · Score: 0
  
  Like switching from a sleeping bag to a bed of nails. Linux is painful and certainly not refreshing.
5. Re:Go Linux! by Gavagai80 · 2015-04-30 02:27 · Score: 1
  
  Even if you have the source, you need a team of people who are capable of updating it. If they were running linux, they might well still be on a 2.4 kernel because of a custom made third party app that requires it that nobody could make sense of.
  
  --
  This space intentionally left blank
6. Re:Go Linux! by jez9999 · 2015-04-30 04:19 · Score: 1
  
  It's gone this way for as long as it has because like everything else in the NHS, the budget has been cut to the bone.
  How is this when NHS funding has been ring-fenced and gets increased every year? Are UKIP right about vast waste in middle management?
  
  --
  == Jez ==
  Do you miss Firefox? Try Pale Moon.
7. Re:Go Linux! by Anonymous Coward · 2015-04-30 08:29 · Score: 0
  
  It's gone this way for as long as it has because like everything else in the NHS, the budget has been cut to the bone.
  How is this when NHS funding has been ring-fenced and gets increased every year?
  Health care taxes go up by n+x a year.
  Health care costs go up by n+2x a year.
  Time plus unequal increases = cuts.
  Also, movies were two for a nickel in my day! And you got to see news and a cartoon!
8. Re:Go Linux! by Dr_Barnowl · 2015-04-30 23:38 · Score: 1
  
  Firstly, the thing about NHS funding increasing every year is a lie, and our politicians have been told to stop lying about it repeatedly (that link is to the Telegraph which is usually considered to be a Tory paper, so extra truthiness points).
  Secondly, we have a rate of about 4% inflation for healthcare costs. Even if they are increasing funding, are they doing it 4% year on year? No.
  Thirdly, a lot of the money is going on the stupid PFI contracts which bleed money away from clinical services and go to debt repayment instead. They were transparently a massive con trick from the out - the NHS is the largest employer in Europe. They have a budget larger than small countries. They should be able to borrow money like a small country (ie - by issuing low interest bonds), not have to be sent cap-in-hand to a private company and directed to sign a sweetheart deal with 300% returns for the private company. The citizens of this country are justifiably proud of the NHS and would probably be more than happy to buy those bonds.
  Are UKIP right about waste in middle management? Probably. But that's because the middle management are being directed by targets, which are a blunt instrument. If the middle management were tasked with enabling the clinicians to do the most healthcare possible, instead of directing them to waste their time and effort meeting their numbers, it would be a different story. But the targets are there specifically to cut budgets, because they get paid based on the results of those numbers.
9. Re:Go Linux! by Dr_Barnowl · 2015-04-30 23:45 · Score: 1
  
  If you have the source, you have the option of hiring a team to update it. The NHS is large enough that they can afford to hire their own. Indeed, many hospital trusts do already have their own in-house teams of developers maintaining home-grown applications.
  OTOH I've seen in-use hospital systems where the source code has actually been lost and the last person who worked on it died some time ago. That should be illegal. On products I've worked on in the past, there have been source escrow agreements. These days I'd go one further and insist on escrow of a working development machine, in OVF format, complete with a full Git repository of the source code, refreshed on each release of the software. Don't mind if it's encrypted as long as the encryption key is lodged in escrow and released on the demise of the company concerned.
Support? by RobinH · 2015-04-29 23:22 · Score: 1

Exactly what kind of support are they getting? Just telephone type "my cup holder broke"? Seems like internal IT could handle most of that. Or are they actually fixing Windows XP bugs for them?

--
"I have never let my schooling interfere with my education." - Mark Twain
1. Re:Support? by oodaloop · 2015-04-30 00:21 · Score: 1
  
  Just telephone type "my cup holder broke"?
  
  Look, those things are really flimsy, and while they may have barely held the Super Big Gulp in 2001, cups today are more robust. I daren't put my Double Gulp in there anymore, as it's barely hanging on. Heck, even the X-Treme Gulp came out in 2001! Microsoft should replace all the cup holders with ones not only capable of holding the Team Gulp, but also those Gulps anticipated to come out in the next 5 years.
  
  --
  Tic-Tac-Toe, Global Thermonuclear War, and relationships all have the same winning move.
2. Re:Support? by painandgreed · 2015-04-30 07:20 · Score: 1
  
  Exactly what kind of support are they getting? Just telephone type "my cup holder broke"? Seems like internal IT could handle most of that. Or are they actually fixing Windows XP bugs for them?
  They were probably getting the same thing that my company is paying and getting which is security fixes. They are still being created and sent out to customers that pay. Windows update is not working, they'd have to be installed individually or via the domain management.
Good decision by goarilla · 2015-04-29 23:31 · Score: 1

Now take that 5.5 million and replace your old machines and software.
1. Re:Good decision by Dr_Barnowl · 2015-04-30 00:12 · Score: 1
  
  Hahahahaha.
  £5.5M won't even scratch the surface.
  We're talking an enterprise with around a million computers, running a vast swathe of different, obscure, an
2. Re:Good decision by Anonymous Coward · 2015-04-30 01:50 · Score: 0
  
  That wouldn't even cover the hardware costs for one of the smaller departments let alone hardware and software for all of them. Hell you could easily spend more replacing just a couple of pieces of the custom software. You need to add at least another zero to that number to even make a dint in the cost.
Seems like a good plan by Anonymous Coward · 2015-04-29 23:33 · Score: 0

Leave machines open to attack, wait until they're "attacked", then argue you need more surveillance.
In many situations, Windows XP is secure. by Futurepower(R) · 2015-04-29 23:34 · Score: -1

There is a conflict of interest. Microsoft makes more money if its software is considered insecure. Microsoft effectively has a monopoly, but it was somehow decided by the U.S. government that Microsoft's monopoly was not covered by U.S. laws against monopoly.

There are many situations in which Windows XP is secure. For example, XP is secure when run on a network that is solely internal, and every computer on that network is run as a limited user. Businesses doing the same work every day don't need new hardware or software if the equipment they have now is serving them well.

Software doesn't have a "lifespan". It works the same as it always did, with the same hardware.

See my article, Microsoft Windows XP "end of life": Conflict of interest.
1. Re:In many situations, Windows XP is secure. by ledow · 2015-04-30 01:21 · Score: 0
  
  Sorry, but what tosh.
  Microsoft is a convicted monopolist in the EU. Your problems in the US are your problems.
  And Windows XP is not "secure". It's like saying that a door you have laying in the shed is "secure" just because you're not using it so nobody would bother to break into it.
  You have to consider local, internal attacks (especially if you're dealing with government, NHS, police, etc.) as well as anything from the outside. And you can't isolate XP enough to be secure and work in a networked fashion.
  XP is dead. It's lifespan is over. Hardware support for it is dropping fast. I abandoned it in my last workplace because we had major difficulty getting drivers for things as simple as SATA controllers for it, not to mention wireless and network interfaces. Beyond that, 64-bit XP is niche and 32-bit XP prevents a lot of things working. Even for home use, a lot of games nowadays do not work on 32-bit-only systems. XP-64 also brings it's own share of driver problems as there are EVEN LESS XP-64 drivers than XP drivers.
  Sure, you can virtualise it, but then you're not running XP at all, really. And still the problem is "It's on your network" if you want to do anything vaguely useful with it. And that provides an attack vector both to and from that machine if it's unsupported and compromisable.
  Give it up. I held out until two years ago and that was FAR TOO LONG to hold out on XP for. The alternates really don't make users suffer at all after the initial acclimatisation.
  Move on. It's not Windows - it's like someone running Slackware 7 in the modern day, on a 2.2 kernel. Sure, you can do it, but you're setting yourself up for a lot of hurt and hassle just because of the age of the tools and hardware you need to use.
  If you have ANY significant number of XP machines, it's time to pay the pittance that an entirely new machine would cost (I'm getting business-class machines for GBP150 - $250? - with Windows 7/8 on them). If you have one or two machines, sure it's not particularly cost-effective but I guarantee you that it will hurt your wallet more when it goes wrong unexpectedly (virus, hardware replacement, data compromise, etc.).
  And Windows 10 is expected to be free, for the most part.
  If you have a "network", especially a business one, of any description, you are negligent in sticking on XP now. I would not want the most basic of business data processed on XP. I don't deal in multi-million dollar networks, I don't do high-end gear with clouds and servers coming out of my ears. I do small schools. But, for any business that includes a network or server of any size, I would be doing them a disservice to suggest that that DON'T move off XP. Not just failing to mention the possibility, but failing to actively DISCOURAGE further use of their network with XP clients.
  You can't secure XP. You can isolate it, but you can't secure it. And there's no real thing as a limited user in XP because it's basically a cinch to demonstrate privilege escalation using any number of pieces of bog-standard software on XP (that you CAN'T patch or upgrade because the XP releases of that software are no longer updated!).
  Give it up, really. And you don't even have to pay Microsoft a penny.
2. Re: In many situations, Windows XP is secure. by xaxa · 2015-04-30 10:17 · Score: 1
  
  The hardware cost is irrelevant. It's the cost and time to thoroughly test / migrate / rewrite lots of bespoke software, made to the lowest quality by some company like Accenture on a contract, for which the source code probably wasn't supplied and all the original developers have left. And if the system fails the Daily Mail will write about it. And the tories slashed the budget, so all that's left can just about cover the new thing the new regulation requires.
In other news... by RDW · 2015-04-29 23:45 · Score: 5, Funny

Support for the current Government reaches EOL next week and currently seems unlikely to be renewed. However, it looks like an upgrade supported by multiple vendors for five years may be in place shortly after:
http://www.telegraph.co.uk/new...
1. Re:In other news... by Anonymous Coward · 2015-05-02 04:33 · Score: 0
  
  Question : Isn't it about time that the UK Gov. switches to Linux ?? They already have accepted the Open Document system .
  Migration to Linux is often " labelled" as hard and costly . As a Linux user for the past 8 years I fail to understand and to accept that .
  Linux for any large organisation is obviously NOT free , but training and maintenance is less costly than those for MS$ products.
  But one has to resist the MS$ lobby-train and that is something Gov. officials and members of Parliament are clearly not prepared to do.
Point Of Sale by Anonymous Coward · 2015-04-29 23:55 · Score: 0

Maybe someone from the UK government have found out about the PosReady registry hack...
1. Re:Point Of Sale by Himmy32 · 2015-04-30 01:18 · Score: 1
  
  That'd be a quick way for them to get a lawsuit judgement worth far more than the support contract.
Think of the monies! by sys64764 · 2015-04-29 23:56 · Score: 1

Good tactic from the MS marketing guys to drop this in the news and get them to sign faster without negotiating too much!
Is XP More Secure Than 8? by kackle · 2015-04-30 00:35 · Score: 0

I'm not trolling, but is XP that bad? I'm asking whether there is any vulnerability right now that would likely affect the average user?

Further, is XP worse than they'll eventually find 8 or 10 to be, especially with all the "cloud" nonsense? To me this seems like the devil you know versus the devil you don't, arguably FUD. Since hackers strive to be "profitable" in their endeavors, wouldn't they focus on the more popular OSes anyway?
Windows 10 by ChunderDownunder · 2015-04-30 01:05 · Score: 1

At this late point in the game, no government department is going to waste time and money on migrating to Windows 7 - a 5 1/2 year old OS that hasn't received a service pack in 4 years, whose "mainstream support" already ended in January.
With that in mind, you better hope your IT department has at least been following the Windows 10 beta program, in terms of testing on a few machines. It'll be released by October in time for the Christmas gift period - leaving a slim window of opportunity to be deployed at your office by the end of March (the end of your fiscal year).
tl;dr - you're up shit creek... :(
1. Re:Windows 10 by Anonymous Coward · 2015-04-30 14:32 · Score: 0
  
  Indeed, its time to migrate their software to something with a little more longevity and a little more stability. That isn't Windows.
risk is low by SkunkPussy · 2015-04-30 01:45 · Score: 1, Funny

If these computers are within a secured network and particularly if they don't have access to the internet, then there isn't any great risk in continuing to use these XP machines.

--
SURELY NOT!!!!!
1. Re:risk is low by WoodburyMan · 2015-04-30 03:40 · Score: 1
  
  ..Until the day one person brings in a infected USB drive. I've seen my share of viruses on XP that copy themselves via Autorun.inf files. Microsoft disabled it via a patch at some point post SP3, but most systems I ran across never had it.
Seriously? by StrangeBrew · 2015-04-30 01:51 · Score: 0

Did you really just call XP 'ancient software'? Are you twelve? Calling an operating system that persists on a significant percentage of computers to this day 'ancient' is ridiculous, I don't think it even qualifies for the term 'legacy' yet.
1. Re:Seriously? by drinkypoo · 2015-04-30 02:05 · Score: 1
  
  Calling an operating system that persists on a significant percentage of computers to this day 'ancient' is ridiculous, I don't think it even qualifies for the term 'legacy' yet.
  There have been no less than three windows releases since, and a fourth is about to drop, it's safe to say that XP is 'legacy'. In Windows land, I like to use driver availability as my gauge. If you go into a store you're going to find that only a small subset of the available printers and scanners (and PSCs) even have XP drivers any more. Lots of new PC games now require Vista or later.
  In internet years, XP's release was in ancient times. We still use many ancient inventions.
  
  --
  "You're right," Fisheye says. "I should have set it on 'whip' or 'chop.'"
2. Re:Seriously? by Gavagai80 · 2015-04-30 02:35 · Score: 2
  
  Do you know anyone running Mac OS X 10.1, or Red Hat 6 with the 2.4.0 kernel? How about Solaris 8? Nope, they're ancient -- and the same age as XP.
  
  --
  This space intentionally left blank
3. Re:Seriously? by Anonymous Coward · 2015-04-30 02:52 · Score: 0
  
  Actually Windows XP and even XP_64 are still very usable with many programs that are non-games. Games should not be a measure of how relevant and OS to the users, and neither is RedHat kernels or Linux in general which is has a completely different audience and its own niche in computing!
4. Re:Seriously? by StrangeBrew · 2015-04-30 02:54 · Score: 1
  
  In my world, a sun dial is ancient, clocks are old. A litter is ancient, a Model-T is legacy, a 88 Honda Civic is old. When using ancient to describe objections, to me it means no longer in use and no longer relevant. Legacy means, it still is functional and has use, but is far from current and is costly to keep running or maintain. Old means just that... not new. In the world of many younger people it's 'Oh crap, they released a new iPhone, the one in my hand is now ancient.'.
5. Re:Seriously? by WoodburyMan · 2015-04-30 03:43 · Score: 1
  
  It's Legacy. For me, it turned legacy as soon as .Net 4.5 wasn't supported. Our in house software started using 4.5 features and will no longer run on XP. The literally two systems with XP we have left, for Legacy reasons to run specialized manufacturing software made for Windows 95, have to remote into a terminal server to run our in house software.
6. Re:Seriously? by ledow · 2015-04-30 04:31 · Score: 1
  
  If he was twelve, XP was released before he was born.
  In IT terms "before you were born" is old. Very old. Ancient. Dead. Buried. Gone.
  I touched my last XP install two years ago when I migrated a school using it from XP to 8 (and all their servers a similar jump).
  The prime argument? It was a school, and the OS they were using to teach ICT to the kids was OLDER than the kids. All of them. And, as such, they did not know how to operate it because they were all used to Vista, 7 and 8 at home. We were teaching them BACKWARDS skills to do things on OLDER software than the ICT skills they already had when they entered the school.
  What percentage it's on is neither here nor there. Still WinZIP is on millions of computers. But it's old. And versions of WinZIP from the XP era are ancient. I bet I could find a ton of computers with Quicktime and Realplayer on them still. They're old. They're ancient.
  And, like XP, they are obsolete.
7. Re:Seriously? by painandgreed · 2015-04-30 07:28 · Score: 1
  
  Do you know anyone running Mac OS X 10.1,...
  Mac OS 10.1? No. Especially since it was just a free bug fix for 10.0. and improved upon by later dot updates. I've still seen 10.4 in the wild and have my own 10.6 computer for older hardware or Rosetta support. Go out to some still running F5 firewalls, and people would probably be scarred as to what version of Linux is being run.
8. Re:Seriously? by Anonymous Coward · 2015-04-30 08:37 · Score: 0
  
  In my world, a sun dial is ancient, clocks are old.
  A litter is ancient, a Model-T is legacy, a 88 Honda Civic is old.
  When using ancient to describe objections, to me it means no longer in use and no longer relevant. Legacy means, it still is functional and has use, but is far from current and is costly to keep running or maintain. Old means just that... not new.
  In the world of many younger people it's 'Oh crap, they released a new iPhone, the one in my hand is now ancient.'.
  And in my world, our moon is new, our sun is old, and the universe is ancient. Your sun dial, litter and Hybrid Civic are all new. Shall we split hairs further?
  An operating system that has been surpassed in terms of going from 32 bit to 64 bit and had multiple major revisions/releases in between is, relatively and contextually speaking, old. XP _is_ ancient in the implied context. XP predates the iPhone, so your strawman of "new iPhone" is more honestly "Wow, Apple alone has put out 6 generations of smart phones, this Motorola StarTac in my hand is ancient"
9. Re:Seriously? by StrangeBrew · 2015-05-01 01:45 · Score: 1
  
  So you try to discredit my scale by substituting in an arbitrary scale of your own? You are also trying to imply that old = ancient, suggesting that you have a penchant for hyperbole. As I stated, XP is still very much alive and kicking, with phase out being forced by Microsoft through a cutoff of support more than it becoming obsolete in the business world. Contrast that with DOS, Windows 3.1, NT and 95. Those I would say are potentially ancient, and only persist to run legacy software with no modern alternative (common in laboratories with older gas chromatographs for example).
10. Re:Seriously? by imac.usr · 2015-05-01 08:06 · Score: 1
  
  I work at a company whose IVR system is still dependent on a pair of Solaris 8 systems. :(
  
  --
  I use Macs for work, Linux for education, and Windows for cardplaying.
11. Re:Seriously? by Anonymous Coward · 2015-05-04 05:54 · Score: 0
  
  So you try to discredit my scale by substituting in an arbitrary scale of your own?
  You are also trying to imply that old = ancient, suggesting that you have a penchant for hyperbole. As I stated, XP is still very much alive and kicking, with phase out being forced by Microsoft through a cutoff of support more than it becoming obsolete in the business world. Contrast that with DOS, Windows 3.1, NT and 95. Those I would say are potentially ancient, and only persist to run legacy software with no modern alternative (common in laboratories with older gas chromatographs for example).
  No you are inconsistent in methodologies.
  You discredited your scale by applying an arbitrary set of your own in the first place, mixing sundials, Model T's and computers. I merely reflected it back at you.
  You now say XP (~2002) isn't ancient, that it is "alive and kicking", but that an OS only 7 years older (Win95) is ancient. You have an internally inconsistent set of perceptions, so of course you will be wrong. You need consistency in order to correct yourself when wrong. Vista is legacy, Win7 is old, Win8(.1) is current and older versions are contextually ancient in any discussion of MS windows operating systems.
Ever heard of LInux? by Anonymous Coward · 2015-04-30 02:48 · Score: 1

They could retrofit all of these XP machines with Linux and open source software that would meet 99% of their needs, at a cost of some re-training, and development / porting of custom software. Naturally, MS would fight this tooth-and-nail. Who said that bribery won't get you anywhere?
The copyrights are still valuable by Anonymous Coward · 2015-04-30 04:01 · Score: 0

Therefore the product is still supposedly viable, according to Microsoft,who will INSIST that they get to keep the copyrights and nobody else is allowed to use it.
Why should it be allowed to die off because you don't WANT to sell it, when you also don't want ANYONE ELSE to?
Why should MS be allowed to claim it is worth a huge stack of money yet insist that it's not worth keeping going?
14 years is a blink of time compared to the term of copyright on it. According to the rights they insist for it, the product is still practically shrink-wrapped new.
Nayan by Anonymous Coward · 2015-04-30 06:35 · Score: 0

really XP OS is a best Operating system. it is very easy for everybody. alhera
Nope. by rs79 · 2015-04-30 07:26 · Score: 1

All XP gets regular updates. They have to or the net would break.

--
Need Mercedes parts ?
Limited user privilege escalation? Tell me how. by Futurepower(R) · 2015-04-30 16:32 · Score: 1

"You have to consider local, internal attacks..."

If you know of an attack that works against a Windows XP limited user, please mention it. It is likely it could be fixed without Microsoft's support.

"XP is dead. It's lifespan is over."

Software doesn't die. Are you saying that, after literally thousands of bug fixes, Microsoft had still not fixed all the vulnerabilities in Windows XP? That's certainly possible; Microsoft makes more money if there are vulnerabilities, since people pay full price for the next version of the operating sytstem.

"we had major difficulty getting drivers for things as simple as SATA controllers for it"

SATA add-on cards.

"If you have ANY significant number of XP machines, it's time to pay the pittance that an entirely new machine would cost"

That's not the problem. The real cost is in all the configuration and teaching people to use new computers. There are programs, lots of them, that don't run on Windows 7.

"And Windows 10 is expected to be free..."

I'm guessing that Windows 10 will be "free" because it will force a lock-in to Microsoft's methods.

"If you have a "network", especially a business one, of any description, you are negligent in sticking on XP now."

What is particularly vulnerable about XP on a network? We use a software firewall on each computer, Windows 7 or XP, and everyone operates as a limited user.

"You can't secure XP. ... there's no real thing as a limited user in XP because it's basically a cinch to demonstrate privilege escalation using any number of pieces of bog-standard software on XP..."

Look at this video of a "privilege escalation": Windows XP local privilege escalation. It's total nonsense. One of the comments: "When you try this without administrator rights you get an error: Access is denied."
Anyone running XP at this point... by Methadras · 2015-05-01 09:04 · Score: 1

deserves the attacks they get. I do not see a reason why anyone should be running XP anymore.
Go to Munich by vandamme · 2015-05-03 14:57 · Score: 1

....and learn from their mistakes. It now takes me 20 minutes to load Linux Mint on an ex-XP machine, then back to work.