Stories
Slash Boxes
Comments
Search

News for nerds, stuff that matters

Slashdot Log In

Log In

Create Account  |  Retrieve Password

Former MS Security Strategist Joins Mozilla

Posted by ScuttleMonkey on Wed Sep 06, 2006 06:21 PM
from the jumping-the-fence dept.
Mozilla The Internet Security
Handset writes "Former Microsoft security strategist Window Snyder is joining Mozilla to lead the company's effort to protect its range of desktop applications from malicious hacker attacks. eweek.com reports that Snyder, who was responsible for security sign-off for Microsoft's Windows XP Service Pack 2 and Windows Server 2003, will spearhead Mozilla's security strategy and improve its communications with external hackers and bug finders."
+ -
story
This discussion has been archived. No new comments can be posted.
The Fine Print: The following comments are owned by whoever posted them. We are not responsible for them in any way.

Former MS Security Strategist Joins Mozilla 50 Comments More /

 Full
 Abbreviated
 Hidden
More
Loading... please wait.

  • MS Trojan (Score:5, Funny)

    by wardk (3037) on Wednesday September 06 2006, @06:22PM (#16056150) Journal
    a human trojan has been inserted into Mozilla?

    glad Safari uses the khtml engine...
    • a human trojan has been inserted into Mozilla?
      Since it's called 'Window' Snyder, i guess it's not even human.
    • Snyder translated from English to Danish:
        snyder (100%) (Dansk-Engelsk)
      cheat; cheater; fraudster.

      • Re: (Score:3, Insightful)

        by krell (896769)
        "Mozilla security practices are rubbish"

        Someday you might realize that you don't define a great security system by how much you have to patch gaping holes in it.

      • Re: (Score:3, Informative)

        by Kymermosst (33885)
        A few points:

        (1) Shit happens, including regressions. Yeah, it sucks. Yeah, it should have been caught. Nonetheless, shit happens.
        (2) It's none of your business who was responsible. Are you some kind of stalker?
        (3) The Mozilla team can handle their own internal affairs just fine, I imagine.
        (4) You can always not use Mozilla products.
        (5) I'm pretty sure I've been trolled, but what the hell, I haven't responded to a troll for a while. Then again, I haven't trolled for a while, either:
        (6) Does having Snyd

  • I can't wait to see this thread... (Score:5, Insightful)

    by pookemon (909195) on Wednesday September 06 2006, @06:24PM (#16056163) Homepage
    Will the Mozilla fans throw their arms up in disgust (An MS Security expert - that's a contradiction!) or will they suddenly be supportive of someone they have effectively been bagging for years? (An MS Security expert for Mozilla! - what a coup!)

  • That time again? (Score:5, Funny)

    by ikejam (821818) on Wednesday September 06 2006, @06:26PM (#16056171)
    hooray..lets have it...chairs all around..here you go..two for you...Redmond Cherry or Vista White?

  • Are you sure? (Score:5, Funny)

    by eclectro (227083) on Wednesday September 06 2006, @06:26PM (#16056173)

    Hey, I am for security and all, but somebody needs to call the phone numbers on his resume. I heard that Microsoft doesn't have a "security" department.

    • Re:Are you sure? (Score:4, Funny)

      by Soko (17987) on Wednesday September 06 2006, @06:42PM (#16056256) Homepage
      Sure Microsoft has a Security Department. They're the nice people who, after you've quit MS to go work at a rival orginisation, walk you from your former office, out the front door and past Steve Balmers office window. Just watch for well aimed office chairs...

      Soko

  • So... (Score:5, Insightful)

    by Umbral Blot (737704) on Wednesday September 06 2006, @06:26PM (#16056175) Homepage
    We can draw two possible conclusions from this. Either a: MS' security team was made of good people who were doing the best they could for such a large project with such a large user base and extensive backwards compatability, and thus that Windows security was the best it could have been (even if that wasn't so good). Or Mozilla's security is going to go down the tubes. It's a slashdot paradox! Clearly we can't grant #1, because that wouldn't be sufficiently critical of MS, but be can't grant #2 either because we love Mozilla. I'm just glad Mozilla doesn't think this way.

    • Re:So... (Score:5, Funny)

      by MacDork (560499) on Wednesday September 06 2006, @07:01PM (#16056337) Journal

      We can draw two possible conclusions from this.

      Ahhh, but you've overlooked the most important factor: Window Snyder is female! Therefore neither of your proposed solutions is correct. Slashdot readers, once they have discovered this will completely forget all context in the discussion. They will find pictures, [blogger.com] fawn over teh hotness, and begin building web shrines in their basements throughout the globe.

      Gentlemen, ready your hot grits. :-P

    • Re:So... (Score:5, Funny)

      by Kelson (129150) * on Wednesday September 06 2006, @07:31PM (#16056467) Homepage Journal
      Clearly we can't grant #1, because that wouldn't be sufficiently critical of MS, but be can't grant #2 either because we love Mozilla.

      For some reason I want to adapt this to the duel of wits from The Princess Bride:

      But it's so simple. All I have to do is divine from what I know of you: are you the sort of site that would approve of an enemy, or the sort of site that would reject a friend?

      A site that hates Microsoft would complain that because Microsoft's security has been notoriously poor, then Mozilla must be making a mistake. Since Slashdot tends toward favoring Mozilla, clearly I cannot choose the whine in front of you.

      A site that loves Mozilla would have to rationalize the decision, and conclude that the security expert is worth hiring. But since that speaks favorably of Microsoft's security, I can clearly not choose the whine in front of me!

      But Slashdot is known for its vindictiveness. Given a choice between reasoned discourse and pure snark, the site will go for snark every time. So clearly I cannot choose the whine in front of you!

      etc.

      I'm just glad Mozilla doesn't think this way.

      In all seriousness, I've got to agree with you here. Though there's certainly been plenty of "MS has lousy security" rhetoric from people at Mozilla over the last few years.

  • April 1st (Score:5, Funny)

    by Anonymous Coward on Wednesday September 06 2006, @06:27PM (#16056179)
    Cmon Slashdot, a guy from Microsoft whose first name is "Window" and had a job implementing security at Microsoft??? These April Fools jokes get dumber every year.

  • "Former" (Score:3, Funny)

    by kcbrown (7426) <slashdot@sysexperts.com> on Wednesday September 06 2006, @06:27PM (#16056180)

    Hmm...."former"...."security" strategist...

    Uhuh. Sure. Whatever you say.

    I think I'll grab a copy of the source code now...

    *Dons tin foil hat*

  • Joke? (Score:5, Funny)

    by dk.r*nger (460754) on Wednesday September 06 2006, @06:29PM (#16056188)
    This has to be a joke. Microsoft actually employed a named Window S. ??

  • In a related story (Score:3, Funny)

    by krell (896769) on Wednesday September 06 2006, @06:29PM (#16056192) Journal
    In a related story, Heat Miser has joined the fire department.

  • Window Snyder? (Score:5, Funny)

    by ktakki (64573) on Wednesday September 06 2006, @06:31PM (#16056195) Homepage Journal
    Is he required to change his name to Mozilla Snyder now?

    Sorry.

    k.
  • First thing that popped into my head was the new Mozilla security slogan.

    "We're not going to take it! NO! We ain't gonna take it! We're not going to take it, anymore!"

  • Ahem.... Window is a gal (Score:3, Informative)

    by rsborg (111459) on Wednesday September 06 2006, @06:41PM (#16056246) Homepage
    And she's pretty hot [dec.net].

    Er, eh, not that influences my perception of her value to the Mozilla corp at all...

  • His first name... (Score:3, Funny)

    by shadwwulf (145057) on Wednesday September 06 2006, @06:42PM (#16056251) Homepage
    ...had to be a product of hippie parents.

    I'd imagine his parents would have just completed the conception of Window and his father stumbled to his feet in a drug induced stupor and suddenly had an idea of what to name their recently created progeny as his eyes came into focus on the first thing he saw, exclaiming "Babe! I just thought of a awesome name for our kid...."

    Just a thought.
    • Actually, "Window" was the second choice. "Roachclip" got too many funny looks at the registrar's office...
  • ...to drop Firefox. Great strategy!
  • One of the linked ads text for this page: Waste Receptacles The Spot To Find It! It Is All Here. Couldn't have put it better myself.

  • First Of All, Congrats (Score:5, Insightful)

    by Effugas (2378) * on Wednesday September 06 2006, @06:45PM (#16056269) Homepage
    Window's an old friend of mine, so let me be the first to congratulate her here. W00t!

    So the security world used to be pretty hostile to MS, before, you know, XPSP2, MSRC got taken seriously, etc. Window showed up before all of that, and pretty much took our abuse year in, year out. And then...things got better.

    She'll deny any direct cause and effect there, but she was _the_ interface between Microsoft and the various security cons for quite some time, and I think at least some of the reason we got certain concessions (like 24 hour response time out of MSRC) is that she was there to hear people say things like "I dunno, why should I warn MS, they're just gonna sit on it anyway."

    Firefox is not without problems (understatement). I'm looking forward to seeing what Window can accomplish w/ Mozilla.

    • Re:First Of All, Congrats (Score:4, Insightful)

      by JustNiz (692889) on Wednesday September 06 2006, @07:20PM (#16056419)
      >> XPSP2, MSRC got taken seriously

      Yeah sure it did. Keep smoking the doobie.

    • Re:First Of All, Congrats (Score:4, Interesting)

      by EvilGrin666 (457869) on Wednesday September 06 2006, @07:20PM (#16056421) Homepage
      You seem to be on the inside so I'm curious on why she'd want to leave just at the point where things were working out? Any insights on that?

    • Re:First Of All, Congrats (Score:5, Funny)

      by Anonymous Coward on Wednesday September 06 2006, @07:26PM (#16056446)
      I thought your post was going to go something like this:

      Window's an old friend of mine, so let me be the first to congratulate her.

      Sincerely,
      Door

    • Window is great, but MS security still miserable (Score:5, Insightful)

      by fv (95460) * <fyodor@insecure.org> on Wednesday September 06 2006, @07:53PM (#16056577) Homepage

      So the security world used to be pretty hostile to MS, before, you know, XPSP2, MSRC got taken seriously, etc.

      Used to be? Maybe you see a different view of them when they hire you for security consulting and fly you out for their Blue Hat conferences and such. But from my outsider perspective, Microsoft is still a security disaster. Not only have we continued to see hundreds of serious vulnerabilities throughout 2006, but MS has in many cases made us wait weeks or months before patching widely exploited bugs. Heck, another actively exploited MS Office vulnerability [seclists.org] was just discovered in the wild. If we're lucky, MS will cough up a patch on September 12, otherwise they'll probably leave users vulnerable until the next "patch Tuesday" on October 10.

      Meanwhile, Microsoft recently re-issued MS06-042 with a fix for a vulnerability introduced by their first attempted fix. And they openly admit [seclists.org] that they excluded eEye from the advisory credits because eEye embarrassed MS by making their incompetence public. MS is more interested in petty vendetas against researches than actually fixing the flaws.

      Microsoft has made a few positive steps toward securing their products in that last couple of years, but I think most of their efforts and successes are more in the PR realm than anything with technical merit. They have spent so much money sponsoring conferences (their money does come with strings attached) and paying off security researches, that many people seem reluctant to criticize them.

      OK, enough anti-MS ranting from me for now :). My main point in replying is actually to agree with you about Window. She is extremely smart and talented, and her defection to Mozilla is great news for a product which really needs more security attention. We had lunch last week to discuss Mozilla security and Window has some great ideas. Mozilla may already be much more secure than IE, but we should set a much higher bar than that! Best of luck at your new position, Window!

      -Fyodor
      Insecure.Org [insecure.org]

  • I bet a number of people will soon be able to see right through this move in the next few days.

    Thanks folks, I'll be here all week. Please try the fish.
  • to listen to her advice and then do the opposite of what she recommends.

    Also known as the George Costanza rule of management.

  • If people leaving for Google lead to flying chairs and death threats, what does people leaving for Mozilla get you? Tables rolled down stairs and harshly worded phrases about maternal lineage?

                -Charlie

  • Follow-up news report (Score:5, Funny)

    by eric.t.f.bat (102290) on Wednesday September 06 2006, @07:03PM (#16056343)
    Coming soon to Mozilla: ActiveM plug-ins! Now with the exciting "FORMAT C:" functionality, and complete integration with BOTH kinds of email software - Outlook AND Outlook Express!

  • Funny? (Score:4, Funny)

    by Anonymous Coward on Wednesday September 06 2006, @07:10PM (#16056374)
    WTF is this? most of the first dozen or two posts are aimed ot be (and are modded) funny. I thought this was supposed to a forum for serious discussion, not a fucking comedy club wanna-be.

  • Clearly... (Score:4, Funny)

    by ezzewezza (84083) on Wednesday September 06 2006, @07:23PM (#16056429)
    if they're not already married to other people, Window and Linus need to get married. They could even name their first child Lindow.

  • At least.... (Score:3, Insightful)

    by Metroid72 (654017) on Wednesday September 06 2006, @07:24PM (#16056435)
    You can't say that this captain hasn't been through a shipwreck.

  • Did your momma give you that name?!? (Score:5, Interesting)

    by Locke2005 (849178) on Wednesday September 06 2006, @08:10PM (#16056647)
    She (not he!) is such a babe [securite.org], I could ALMOST forgive her for being named after Microsoft's flagship product!

  • There is such a thing as image. (Score:3, Insightful)

    by jotaeleemeese (303437) on Thursday September 07 2006, @05:15AM (#16058156) Homepage Journal
    Lets not beat around the bushes.

    MS has an image problem when it comes to security, it is a problem of their own making, acknoledged by Mr Gates himself and experienced day in day out with their prodcuts by IT professionals.

    Dig a bit deeper and you realize that security is still not properly realized in MS products. AD is a mess waiting to get worst for example.

    I don't care how wonderful SP2 was, that is a drop in an ocean of incompetence and procastination.

    I don't know what the Mozilla organization was thinking. Sometimes you have to take care of the PR situation as well as the technical side of things. Anybody that has worked recently around security in MS products will carry a credibility problem, specially in a highly visible position.

    I am sure that this lady is bright, intelligent and all what his pals say lovingly about her, but she brings with her a credibility problem which becomes all too evident when one reads all the comments on this thread (which are mostly bad jokes, but that drive the same point home: we can't believe it).

    Lets hope that this is a good move, but I think people should be excused for the healthy doses of skepticism.

All trademarks and copyrights on this page are owned by their respective owners. Comments are owned by the Poster. The Rest © 1997-2009 Geeknet, Inc.