Slashdot Mirror

← Back to Stories (view on slashdot.org)

Microsoft 'Patch' Blocks Linux Installs On Locked-Down Windows RT Computers (fossbytes.com)

Posted by EditorDavid on from the scratching-the-Surface dept.

An anonymous Slashdot reader quotes a report from fossBytes: Microsoft has released a security update that has patched a backdoor in Windows RT operating system [that] allowed users to install non-Redmond approved operating systems like Linux and Android on Windows RT tablets. This vulnerability in ARM-powered, locked-down Windows devices was left by Redmond programmers during the development process. Exploiting this flaw, one was able to boot operating systems of his/her choice, including Android or GNU/Linux.
The Register points out that since Windows RT is "a dead-end operating system" which Microsoft has announced they'll stop developing, "mainstream support for Surface RT tablets runs out in 2017 and Windows RT 8.1 in 2018. This is why a means to bypass its boot mechanisms is highly sought."

15 of 141 comments (clear)

  1. Re:Confused by Anonymous Coward · · Score: 3, Insightful

    I think it's because people like to re-purpose things. Reasonable hardware found in the bargain bin as companies dump unsupported tablets might be enticing to some. The real question is why MS would close off the bootloader when the hardware is EOL in a year or so? That's just cunty.

  2. Re:This is like blocking software from rooting pho by Anonymous Coward · · Score: 3, Insightful

    It's this kind of infantile misunderstanding of security that will eventually be the undoing of technology. Purchasing of hardware is independent of security - if I own a device I have every right to do with it what I choose, even if that means installing DOS. The manufacturer is not obliged to PROVIDE that support, but every block they put in my WAY should be CRIMINAL. If you purchase a house, you have every right to remove whatever locks and security measures are placed there "for your security", and your physical devices should be no different.

    Don't be so quick to give up your rights before you understand what it means, AC.

  3. Yes... by SeattleLawGuy · · Score: 5, Insightful

    An exploit was being used for the install. They patched the exploit. If this is annoying to you, don't buy a system that you need to crack in order to install your chosen O/S.

    --
    Real lawyers write in C++
    1. Re:Yes... by Desler · · Score: 1, Insightful

      Because the same people would be howling about how Microsoft was keeping users unprotected by not patching a known security exploit.

    2. Re:Yes... by bloodhawk · · Score: 1, Insightful

      Not every user wants to put Linux on it. I would actually be rather pissed if they left security vulnerabilities just so the minority can put Linux on it. Yes I know the Surface RT devices are pretty shitty, but they have long battery life and are perfect for watching videos and playing music, so adequate for what I use em for and no need to replace yet.

    3. Re:Yes... by gweihir · · Score: 3, Insightful

      Indeed. The first check when I do when I buy computing hardware something is whether I can install an OS of my choosing on it. For example, I will not even look at a phone that is hard or impossible to root, or a tablet or mainboard that does not allow me to switch "secure" boot off. When I buy it, it is _mine_ afterwards and a vendor that does not understand this is not going to make a sale to me, ever.

      --
      Most ACs are not even worth the keystrokes to insult them. Be generically insulted by this and ignored otherwise.
    4. Re:Yes... by Anonymous Coward · · Score: 3, Insightful

      And *that* is a problem of their own making, since they, and apparently you, equate being able to install _anything_ other than the approved version of Windows as a "security-hole". Says more about you, Microsoft and whose "protection" you're concerned with, than the "risks" involved.

    5. Re:Yes... by Anonymous Coward · · Score: 0, Insightful

      It is a security hole. By itself it's not remotely exploitable, but combined with a remote exploit it becomes a vector for root kits. That's the entire point of SecureBoot. A defense against root kits. I'm sorry that reality clashes with your paranoid worldview. Microsoft is not taking a feature away from you; they never offered it to begin with. If you don't like that, fine. Don't be one of the 7 people who bought one of these shitty devices. While you're at it, avoid all iOS devices and many other phones or tablets in general. Or the entire console market.

  4. Re:Confused by DMFNR · · Score: 3, Insightful

    Because a security hole a benevolent Linux hacker can exploit to allow you to install an operating system of your choice could also serve as an attack vector for those with not-so-good intentions. How big of a security risk that poses to the user? I have no clue, but it's the reason I wouldn't trust any hacked version of a locked down device over a proper general purpose device.

  5. It's just Microsoft being Microsoft by JustAnotherOldGuy · · Score: 5, Insightful

    It's just Microsoft being Microsoft, doing a typical dick move for no genuinely good reason.

    "Oh dear, someone might be able to do something cool or useful with a product we're killing off? Fuck them."

    Microsoft just can't help being dicks about stuff, no matter what it is.

    Imagine the goodwill they could generate by just not being dicks at every goddamn opportunity, but nooooooo, we can't have that.

    --
    Just cruising through this digital world at 33 1/3 rpm...
    1. Re:It's just Microsoft being Microsoft by Desler · · Score: 4, Insightful

      Patching an exploit vector is now a bad thing?

  6. Just like sony... by Anonymous Coward · · Score: 2, Insightful

    ... with their "boot other" retroactively removed. Only, redmond never promised they'd offer. On the other hand, removing a way to blow new life into dead-end hardware still seems like kicking the customer when he's fallen and trying to get up. Next you know the same thing'll happen to peecees.

    Tin foil hat time: Now we know why you can run "ubuntu apps" on windows. Once peecees are locked down the only way to run your fave linux software is if it's an "ubuntu app" and hey, you can run those under windows, right? No need to install anything else, see? Or something to that slimy tune.

    Don't buy locked-down anything, people. On principle. Tell your friends and family too.

  7. Re: Confused by SuricouRaven · · Score: 4, Insightful

    The Surface was an attempt to imitate the business success of the iPad. The OS may be different, but the business model is a clone: Don't just sell the hardware, run the ecosystem as well. That way every sale becomes a continuing revenue stream. It's something that Microsoft wants desperately, because their revenue has always been tied to the upgrade process and customers are getting increasingly fed up of replacing their OS every three years - just look how long killing off XP took!

  8. Re:This is like blocking software from rooting pho by gweihir · · Score: 5, Insightful

    That is bullshit which has long since been discredited. In the real world, the only thing a locked-down boot-loader like this accomplishes is to restrict what the user can do, it does not protect against malware as there are numerous other vectors.

    --
    Most ACs are not even worth the keystrokes to insult them. Be generically insulted by this and ignored otherwise.
  9. Re:Confused by Anonymous Coward · · Score: 5, Insightful

    Your entire starting point is wrong.

    "Secure boot" isn't about security at all, it's an anti-competitive measure. Saying that this exploit is a security hole is like saying that any computer that doesn't run a locked down Windows installation or old enough to not have this "feature" is "insecure".