Microsoft Source Follow-Up 1090
shystershep writes "It's official. Microsoft admits that 'portions of the Microsoft Windows 2000 and Windows NT 4.0 source code were illegally made available on the Internet.' No more details, although it seems clear that it is only a portion of the code. Microsoft is, naturally, downplaying its impact, while everyone else is busy speculating about how serious this could get." A lot of you apparently haven't read yesterday's story. An investigation of the code is already underway.
Winsock API Included. (Score:5, Insightful)
Re:Winsock API Included. (Score:5, Funny)
Even better, all of the rendering engine and interface code for Internet Explorer is in the leaked source.
Re:Winsock API Included. (Score:5, Insightful)
Re:Winsock API Included. (Score:5, Interesting)
Re:Winsock API Included. (Score:5, Insightful)
Re:Winsock API Included. (Score:5, Funny)
Show me the source, Sam.
Comment removed (Score:5, Interesting)
Re:Winsock API Included. (Score:5, Informative)
Of course there are. This source code leak came from a company who ports Windows software to Unix.
Doesn't sound as interesting as BSD or Linux. (Score:5, Funny)
[ I unintentionally posted as an AC first - hopefully it's interesting enough that I get more interesting mods than redundant.]
Re:Doesn't sound as interesting as BSD or Linux. (Score:5, Funny)
They get paid for the first 40 hours in a week, then the other 60-70 hours is for the fun of it all.
Re:Is there any GPL Violating Software in it? (Score:5, Informative)
If they're using GPL code, yes. They already use open source code, and admit it freely - however, it's licensed under the BSD license, and hence can be distributed in closed source systems.
(Someone correct me if I'm completely wrong, but I think that's right).
Re:Winsock API Included. (Score:5, Interesting)
right, betanews revealed it.. damnit. they could've at least credited me [slashdot.org]
bastards
The best bit in that article... (Score:5, Funny)
Re:Winsock API Included. (Score:5, Informative)
Statement to the Media Regarding Microsoft Source Code Leak
Mainsoft has been a Microsoft partner since 1994, when we first entered a source code licensing agreement with Microsoft. Mainsoft takes Microsoft's and all our customers' security matters seriously, and we recognize the gravity of the situation.
We will cooperate fully with Microsoft and all authorities in their investigation
We are unable to issue any further statement or answer questions until we have more information.
From Mike Gullard, Chairman of the Board, Mainsoft Corporation
Source of the leak (Score:5, Informative)
I wonder what the final MS press release will name as the cause. "Evil Linux Hackers", perhaps?
Re:Source of the leak (Score:5, Funny)
Haha! How about 'Evil Worm Which Exploits Security Holes We Deny Exist Distributes Code'
Nah, I can't see them fessing up to something like that.
Source was Mainsoft - and from a Linux machine (Score:5, Informative)
Mainsoft specialise in cross-platform development, enabling devlopers to develop using MS tools for deployment on *nix. Interestingly, for the conspiracy theorists, their previous mentions [slashdot.org] on /. date from 2000 and center around rumours that they were porting Office and IE to Linux. More news on the leak from Internetnews.com [internetnews.com] and The Register [theregister.co.uk].
The code is said to be W2k-SP1.
Then why was the code in a "zip" archive? (Score:5, Interesting)
Zip files are rarely used for distributing source code amongst the Linux/Unix community because compressed tar files are far more efficient.
zip -r source.zip /usr/src/linux-2.4.22-1.2149.nptl /usr/src/linux-2.4.22-1.2149.nptl /usr/src/linux-2.4.22-1.2149.nptl
ls -l source.zip
-rw-rw-r-- 1 build build 49091705 Feb 14 06:20 source.zip
tar cjf source.tar.bz2
ls -l source.tar.bz2
-rw-rw-r-- 1 build build 31964979 Feb 14 06:23 source.tar.bz2
tar czf source.tar.gz
ls -l source.tar.gz rw-rw-r-- 1 build build 40689187 Feb 14 06:31 source.tar.gz
The resulting tarred archive compressed by bz2 is is around 35% smaller than the zipped source. With the exception of the the jar format for java classes, the zip format is rarely use by Linux/Unix developers for distributing source code.
IMO this points to the source code being lost by from a Microsoft based platform.
Zipped contents of a CD-rom (Score:5, Interesting)
The expanded contents of the zip file is around the size of a single CD. This points to the contents being originally distributed from Microsoft on CD-rom.
Microsoft has made so much fuss about retaining control of the source code. In May 2002, under oath at the antitrust hearing Jim Allchin, group vice president for platforms at Microsoft, stated that, because the Windows operating systems contained inherent flaws, disclosing the Windows operating system source code could damage national security and even threaten the U.S. war effort. [eweek.com]
It's going to be interesting if it is subsequently found that Microsoft itself has been distributing said source code over the internet in zip format.
By the way, In February 2003, Microsoft signed a pact with Chinese officials to reveal the Windows operating system source code. Bill Gates even hinted that China will be privy to all, not just part, of the source code its government wished to inspect [com.com].
Dispite gaining more favored trading status with the USA, there remains many embargos over technology transfers which could put the US at future risk [newsmax.com].
Either Jim Allchin lied under oath, to prevent code revelation being any part of the settlement, OR the Microsoft corporation is behaving traitorously, by exposing national security issues to foreign governments.
The exposure of Microsoft source code put users at risk because of the inherent design and implimentation flaws built into the source code.
In comparison open source development practices [arxiv.org] enables open source distributions and users to evaluate the source code from the start. This forces developers to build in security from the early outset of each project or risk abandonment for more secure alternate solutions. End users can particpate in the development process.
More details on the Linux machine analysis... (Score:5, Informative)
Article doesn't say it was *stolen* from Linux box (Score:5, Insightful)
Of course! (Score:5, Interesting)
Of couse they are. They don't want to admit that its 203MB of files, they will just say its a small fragment.
Makes me wonder about all the weird e-mail files in the zip though...
NeoThermic
Of course it's a small percentage... (Score:5, Insightful)
I wouldn't be so sure that what has leaked is an insignificant portion just because of the number of lines of code.
So the question is (Score:5, Interesting)
Re:So the question is (Score:5, Informative)
Re:So the question is (Score:5, Interesting)
Furthermore, the most of the code in a given operating system belongs to the drivers. If it's the important 15%, then it could be completely irrelevant that you don't have the 85% that deal with graphics cards and similar.
Re:So the question is (Score:5, Informative)
Re: So the question is (Score:5, Funny)
> Actually, it's supposedly only 15% of the source code.
They'll be in trouble, if it's the 15% that works.
Re:So the question is (Score:5, Funny)
Re:So the question is (Score:5, Funny)
Gandalf: No! Don't ever use it!
Frodo: How do we know it's source to the One OS of the Dark Lord?
Gandalf tosses a CD-R into the burner, and burns Windows.Source.Code.w2k.nt4.wxp.tar onto it. When the CD is done, there are glowing fiery letters on it.
Frodo : I can't read the fiery letters.
Gandalf : There are few who can. The language is that of Redmond, which I will not utter here. In the common tongue, it says "One OS To Rule Them All, One OS To Find Them, One OS To Bring Them All And With The NDA Bind Them"
Frodo: Take the source code Gandalf!
Gandalf : Noo! Do not tempt me with it! I dare not take it! Not even to keep it safe! You must understand Frodo, that I would be tempted to use this source code, for good. To disclose hidden API's, help the WINE project. But through me, all of open source would be tainted, and the LawyerWraiths of The Dark Lord will sure destroy us.
Frodo : But it cannot stay here!
Gandalf : No, no it can't.
Frodo : What must I do?
Gandalf : It must be sent to the fires of
So remember folks, don't download it, or look at it, or attempt to build it! It is evil, and answers only to the hand of The Dark One.
Re:So the question is (Score:5, Funny)
1 Now the serpent was more subtil than any beast of the field which the LORD God had made. And he said unto the woman, Yea, hath God said, Ye shall not eat of every tree of the garden?
2 And the woman said unto the serpent, We may eat of the fruit of the trees of the garden:
3 But of the fruit of the tree which is in the midst of the garden, God hath said, Ye shall not eat of it, neither shall ye touch it, lest ye die.
4 And the serpent said unto the woman, Ye shall not surely die:
5 For God doth know that in the day ye eat thereof, then your eyes shall be opened, and ye shall be as gods, knowing good and evil.
6 And when the woman saw that the tree was good for food, and that it was pleasant to the eyes, and a tree to be desired to make one wise, she took of the fruit thereof, and did eat, and gave also unto her husband with her; and he did eat.
The account continues in verse seven if you don't know how it turned out. I agree with Groklaw's advice. Leave it be!
Re:So the question is (Score:5, Funny)
I did. 200 megs of compressed source, 22 hours of compiling, and all I got was "Notepad.exe"
Re:So the question is (Score:5, Funny)
Re:So the question is (Score:5, Funny)
One editing change needed in story (Score:5, Funny)
formerly long-time Redmond partner Mainsoft.
From Rich Bowen's blog... (Score:5, Insightful)
Hm. I bet Andrew Morton has better things to do then trawl through WinNT code. Staying away from it does seem safest, though...
Re:From Rich Bowen's blog... (Score:5, Interesting)
Second, we're going to see lawsuits in the next 2 years where Microsoft identifies code in Linux, added after February 10, 2004, which are either copied from, or influenced by, the Windows source code. And, as absurd as this is, it will be used to have, as Microsoft would say, a chilling effect on innovation.
Hm. I bet Andrew Morton has better things to do then trawl through WinNT code. Staying away from it does seem safest, though...
Part of future kernen maintenance should probably include comparisons against this code, just to be safe. The worst possible thing would be for some witless idiot to include any of it into any OSS project and have this miss final review.
IMHO, rather than chortling over this disclosure, I'd rather have the code be kept completely secret by MSFT. Unfortunately, information is hard to keep secret when so may people have it.
GF.
You Should Not Be Cheering (Score:4, Insightful)
Re:You Should Not Be Cheering (Score:5, Interesting)
I agree...just ask Burst.com [pbs.org]
Re:You Should Not Be Cheering (Score:5, Interesting)
Imagine the impact, if, say, the following comment is found in the IE PNG rendering engine
(Disclaimer: this example is FICTIOUS. I do not have access to the code in any way. If such a comment is found, I hereby promise to imediately cease and desist watching Deadzone.)
from the eweek article (Score:5, Funny)
I don't think any code can claim this, no matter M$ says
BBC Q&A (Score:5, Informative)
Microsoft has said that this represents about 15% of the total source code for the operating system. It is not enough to recreate the operating system.
Re:BBC Q&A (Score:5, Funny)
Mainsoft is to blame... (Score:5, Interesting)
Analysis indicates files within the leaked archive are only a subset of the Windows source code, which was licensed to Mainsoft for use in the company's MainWin product. MainWin utilizes the source to create native Unix versions of Windows applications.
Mainsoft says it has incorporated millions of lines of untouched Windows code into MainWin.
WHAT?!?!!?!??
This can't be the first time (Score:5, Interesting)
This is serious (Score:5, Funny)
Re:This is serious (Score:5, Funny)
But, but, Microsoft spent thousands of man-hours of laborious and innovative research to come up with the Bitmap format!
Oh dear god! Will the secret of the Bitmap format be made available to just anyone?
The world will be turned upside down!
it escaped! (Score:5, Funny)
You know.. It's simple: code wants to be free
Its because they trusted Linux!!!!!! (Score:5, Funny)
I wonder what Linux security hole allowed that to happen.
LAUGH, ITS A JOKE.
What about the .eml files? (Score:5, Informative)
Re:Its because they trusted Linux!!!!!! (Score:5, Insightful)
You're wrong -- it's good for Microsoft.
No competitor to MS can look at the code and expect to survive a lawsuit (at least if they compete well enought with MS). So, MS isn't going to lose any money like that.
Piracy isn't an issue -- Windows is already pirated enough, and MS probably profits from it in the end anyway.
As far as new vulnerabilities being discovered, well, MS already gets a mostly free ride from 90% of the population (who think they're computer viruses, not Outlook worms), so it doesn't matter that much, and probably won't hurt their bottom line (all they really care about in the end).
In the end, MS gets lots of free publicity as the victim. I don't see a downside for them.
Which is it? (Score:5, Insightful)
How long will it take? (Score:5, Funny)
Current favourite, the author of MyDoom, but many youngsters are looking to make their mark in this prestigious contest
Grab a beer, sit back, and enjoy this great sporting occassion - sponsored by Microsoft, Security Through Obscurity.
Swearing? (Score:5, Interesting)
M$ Programmer: Well, nobody's going to read this anyway, so "\\f*ck this bullsh*t"
For personal projects, this is fine (I've vented a bit in my personal coding projects), but I would never do anything like that at work...
Re:Swearing? (Score:5, Informative)
43
$ grep -Hirn " shit "
14
And one occurrance of "piss". There're more, but I''m not spending more then a minute on this.
should we be looking at this stuff? (Score:5, Interesting)
Seems like a good idea, but...
Was it ESR that made that nifty app to compare SCO and Linux sources? Could it be fiddled with to see if Linux or other free/open source code made it's way into windows?
It would be quite a coup if we could somehow legally show that they stole from the community without having to deal with the gnarly mess of windows code finding it's way into Linux.
I'm not implying that such a thing HAS happened, but we're presented with an opportunity here.
Security by obscurity? (Score:5, Insightful)
This may illustrate one of the halmarks of open source software-- that software open to prying eyes is inherently more secure than closed source. I won't be surprised if digging through the source reveals a number of exploitable security flaws, perhaps many more than have been revealed with the source closed!
To paraphrase Bruce Schneier, if I give you the plans to my safe, and 100 identical safes with the combinations so you can study the locking mechanism in detail, and you still can't crack my safe-- that's security!
A Prediction ... (Score:5, Insightful)
Just a thought...
Remember the Apple leak? (Score:5, Insightful)
It started quite a big ruckus, with the media making it out to be the entire OS, and the FBI starting what has been described as more or less a witch-hunt on 'hackers'..
I would not be surprized to see a repeat of that, substituting 'hackers' for 'file-sharers'..
Will this increase calls for stronger DRM? (Score:5, Interesting)
Given that so many companies outsource or collaborate with a far-flung global network of suppliers -- I'm sure MSFT need only whisper about the threat of leaked trade secrets to get corporate IT to adopt DRM/Trusted computing for everyday use.
Security through obscurity? (Score:5, Interesting)
However, good code wouldn't have this problem, string lengths would be checked, there wouldn't be hardcoded passwords, components that are not supposed to trust one another really don't, etc.
This exposure of the source may reveal just how crappy their code is. If its not crappy, I don't see necessarily how its more 'hackable'. Apache is open, and nobody hacks it to pieces on a daily basis. Can you imagine what would happen if the source of IIS was leaked?
Possible "culprit" found (Score:5, Interesting)
If this is true, then I suspect that the list of possible culprits is very short and some poor sap who didn't think things through is going to be in *very* hot water indeed early next week.
Honeypot? (Score:4, Insightful)
Doesn't this smell? (Score:5, Insightful)
Does this mean (Score:5, Funny)
Heck just go for it and make it part of KDE and Gnome !
Bad for security... (Score:5, Interesting)
Since we all agree that all code has bug in them and since this code is out we can safely assume that some bugs will be found.
Now all the white-hat hackers are prevented by law to take a look at the code and since all black-hat hackers don't give a damn about that law, those who run windows are in a pretty bad place right now. Even worse than usual actually.
Oh well, the windows admins who like working overtime will love the coming year I suspect.
here's my bet (Score:5, Insightful)
1) MS will use this source leak in the future to claim that various open source projects (Samba, Gnome, KDE, OpenOffice(?), linux) that get new features which MS finds competitive are 'derivative' works, regardless of whether or not the developers actually looked at the source.
2) There will be enough people looking at this source for large portions of the code's functionality essentially entering into 'public domain', with people writing up how the components work. It will be essentially impossible for anyone to do 'virgin' development on 'windows-like' features for anything, as the information on precisely what the Windows version does will only be 2 steps of association from the programmer.
3) MS will pull a 'patent' or 'trade secret' violation claim on Samba/Linux/GNOME/KDE, in addition to pulling the
From my interpretation, this all seems quite feasable given current legal atmosphere. Any lawyers here have a comment on this?
Entertainment value of media "experts" (Score:5, Interesting)
The funniest part of this whole thing has been the industry pundits explaining the ramifications of the source release in various media outlets.
The best I've seen today is on crn.com [crn.com] by some joker named Winell from Econium [econium.com]. He manages to say with a straight face:Mr. Winell has obviously never used Windows ME if he thinks Microsoft quality control prevents "bad releases". You know Econium must be a real player when the title of their home page is "Welcome to Econium who is a solutions provider."
The classic yesterday was Laura Didio from Yankee Group [yankeegroup.com] comparing OSS hackers to suicide car bombers. [internetnews.com]
Nothing like an embarassing Microsoft moment to get the "experts" out from under their rocks.
Re:Entertainment value of media "experts" (Score:5, Informative)
It should be noted that the Didio quote as since been removed from that article, but here it is for those who missed it. Don't ever forget this one, this is straight from Yankee Group [yankeegroup.com] and they should not be allowed to get away with it without a public apology IMHO:
"With the open source community, there are a large percentage of tinkers and 'ankle biters' who are trying their hand at hacking. Some are even communicating with each other. So it only takes one or two of these groups sharing information to be able to pull something off. When you have this type of passion, it's hard to fight because these people are like virtual suicide car bombers."
Is this people you'd want to buy services of? I don't consider myself "PC" in the least, but this is so fucking wrong and off the track it's not funny.
Re:Entertainment value of media "experts" (Score:5, Informative)
Media Relations and
General Inquiry
Kim Vranas
Director of Marketing
kvranas@yankeegroup.com
Voice: 617.880.0214
Fax: 617.210.0014
Linux leaked too (Score:5, Funny)
"We're not sure how it was leaked. What's up there certainly looks legitimate, and we've had some reports that some of it even compiles. It appears it may have been leaked back in August, 1991, originally to an FTP server in Finland."
There are at least 3 servers that appear to have Linux source code available, although online discussions indicate that there may be many more. There is speculation that the code can e acquired through FTP, Gopher, HTTP, Bittorrent, Rsync, SMB, NFS, AFS, Freenet, and that people may even be _selling_ CS's and DVD's with the code.
SCO was quick to comment that "After they copied those 5 lines from one of our header files, the {deleted} deserved it. As soon as we find a person in our company that knows how to download a file, we'll be comparing every line of Linux to this stuff we bought from AT&T. Oh hey! We've already found something - they copied the word '#include' from us!" The phone interview was cut short as Mr. McBride was called away to launch a new lawsuit.
Law enforcement agencies have been contacted and are investigating, but the process is slow as the officers are heard to exclaim "Wow, it has a GUI?", "Damn, this is stable - I can't crash it at all!", "Whadda you mean, Office is included?", and "How do I turn off the grappling hook and use the rocket launcher?"
comparing MS code to OSS code (Score:5, Interesting)
Seriously, don't download this shit! (Score:5, Funny)
A cousin of a girlfriend of my former classmate yesterday went to the university computer lab to print his essay. He catched a glimpse of some code on the screen and didn't even thought about it for a second. When he returned home, he logged on to sourceforge.net and before anyone could stop him, he tainted a dozen software projects there. Shit, two perfectly good Xeon servers had to be scrapped and replaced with clean machines in a hurry.
That's just crazy, this code is the strongest shit I ever saw... oh, fuck, forget what I just said - "the strongest shit I ever heard about and never saw". It's worse than the GPL, it taints your code so quickly you can't even notice that. PLEASE, FOR THE SAKE OF EVERYTHING GOOD IN THIS WORLD, DON'T DOWNLOAD THE CODE.
Copy this message and send it to all your friends! You need to warn them not to look at the code! POST IT ON FORUMS AND MESSAGE BOARDS! THIS IS AN EVIL PLOT TO TAINT ALL CODE IN THIS WORLD! DON'T LET THIS HAPPEN!
Re:Seriously, don't download this shit! (Score:5, Funny)
Creepy huh?
MainSoft statement (Score:5, Informative)
Statement to the Media Regarding Microsoft Source Code Leak
Mainsoft has been a Microsoft partner since 1994, when we first entered a source code licensing agreement with Microsoft. Mainsoft takes Microsoft's and all our customers' security matters seriously, and we recognize the gravity of the situation.
We will cooperate fully with Microsoft and all authorities in their investigation
We are unable to issue any further statement or answer questions until we have more information.
From Mike Gullard, Chairman of the Board, Mainsoft Corporation
Sigs (Score:5, Funny)
Re:Traces back to Mainsoft? (Score:5, Interesting)
Re:Traces back to Mainsoft? (Score:5, Interesting)
Re:source out on the open (Score:5, Funny)
Re:source out on the open (Score:4, Insightful)
1) Leak unimportant proprietary source and bait competing open source developers to download.
2) Initiate legal action against "tainted" developers contributing to open source projects.
3) Continue to PROFIT!!!
Re:source out on the open (Score:5, Interesting)
windows developers have had access to gpl'd source for well over a decade... but that hasn't legally impaired their ability to make their products.
any legal action against opensource projects by microsoft relating to these leaks will still have to demonstrate that:
Re:source out on the open (Score:5, Interesting)
They had their "don't touch gpl" rule in place for quite a few years now. But they can access BSD licensed code and incorporate them freely.
Just because they had access doesn't mean MS employees are out to break the law
it works in reverse too. To microsoft, all this free linux code floating around on the net is a huge temptation for its employees to cut some corners and potentially land ms in big legal trouble
Re:source out on the open (Score:5, Insightful)
Windows kernel gets the kernel GPL'd
How can a site so full of OSS supporters have so many people so ignorant of how software licensing works? Yes, if they were found to be infringing the GPL they COULD GPL the whole kernel, but that would be stupid. They would just pay damages for infringement and remove the GPL code from future releases. This "viral licensing" bullshit is so idiotic, I can't understand how it got started. I blame SCO.
THAT old saw again. (Score:5, Informative)
The judge is such a case is unlikely to order MS' codebase GPLed. MS would have to either put out a sanitized patch for the code in question or pay the developers for an alternative license. The exact circumstances of the case would determine what if any punitive damages MS would have to pay in addition to recompensating the developers.
MS would have the OPTION of making the entire contaminated codebase GPLed to satisfy the license but I doubt they would take that option. They could do it for the FUD value but since the aggrieved FOSS project wouldn't accept that as a settlement, MS would just have to do something else. Imagine that! A FOSS project could rule out an MS product being GPLed to PREVENT harm to a project or FOSS in general.
Re:source out on the open (Score:5, Insightful)
Microsoft will just sue you into oblivion, and when you run out of money, they'll have won.
Yea, but what if..... (Score:5, Interesting)
.
.
Re:Yea, but what if..... (Score:5, Insightful)
If it came to it, I highly doubt that would hold up legally. Besides, much of the stuff in Windows is patented, and there's simply no way to re-implment it (different code or no) without violating a patent.
Why in the hell do you want to copy windows anyway? Open source to me is about making new or simply better software. (Speaking generally to everyone here, not just the parent...) If you absolutely must have win32 compatibility, then buy a Windows license like everyone else. If that's not acceptable, then figure out a solution that doesn't require win32 compatibility. But for god's sake, don't be a common criminal and steal someone else's implementation.
I digress. Chances are pretty good that writing a specification from such crufty code (and a good deal of it is crufty) would be more difficult than legally reverse-engineering a working implementation anyway.
Re:Windows developers do not read GPL source (Score:5, Insightful)
Except, in the realm of software, that just doesn't apply. A "best way" often exists to accomplish some simple task, and 20 good developers would all independantly "discover" that way. Even in more complicated code, you'll see a large overlap of broader ideas, all arising independantly
This makes one of my peeves about software patents... Patents include the critiria of non-obviousness. If 20 developers would all come up with the same solution, that seems like a pretty damned obvious technique, IMO.
Take the XOR'ed image patent, for example... Even ignoring the idea of prior art (which IMO existed), using XOR to put one image on top of another such that you can later remove the superimposed image cleanly (ie, a mouse cursor over a background), even a moron would use XOR. Yet, the USPTO still decided to grant that one.
So yes, very similar works do arise, totally independant of each other, in the field of software engineering. Unfortunately, considering our legal system's pro-corporate bias, that will most likely work against us. Rather than believing that Billy G and Linus both came up with printf("Hello World\n");, this source release will quite likely suffice to convince the courts that various open source projects "stole" such trivial statements from Microsoft code.
Or to borrow a joke from the SCO threads, "Wow, look at all of the i++; statements those damned open source commies used, just like in SCO's code!"
alternate universe (Score:5, Insightful)
check out this alternate universe:
musicians are fucked. apparently, we can't look at other peoples copywritten music without 'taining' our ability to write original music.
everybody from bach to bon jovi is now in violation of copywright law. musicians have henceforth been instructed never to look at somebody elses music lest they be sued later for copying the notes and rhythms.
harumph. this is rediculous.
Re:source out on the open (Score:5, Insightful)
The odds of coming up with something vaguely similar to their stuff is high enough that it's not worth being accused of copying their work. The best defense against such an accusation is to have never seen their work.
If I were a tinfoil-hat kind of person, I'd wonder if this isn't some sort of SCO-ish related thing.
Re:source out on the open (Score:5, Informative)
Re:source out on the open (Score:5, Insightful)
Billy in the land of the underpants gnomes:
Step 1: 'accidentally' release windows source
Step 2: Secretly hire unafiliated programmer to copy blocks of windows source to OSS projects (comments intact)
Step 3: Sue IBM/RedHat/Novell into the ground
Step 4: Profit!
Re:No step 2 necessary for step 3 (Score:5, Funny)
Re:No step 2 necessary for step 3 (Score:5, Insightful)
If the lawsuits get too frivolous, not even Microsoft will be immune to countersuits, plus such massive lawsuits aren't going to be "free" in reputation terms, either. ("Gee, if all Microsoft can produce is lawsuits, maybe they aren't such a leading company after all?")
Besides, so they prove some small chunk of code is encumbered. (It is virtually inconceivable that huge chunks of code will make it in.) So we rip it out and keep going. Killing any given iteration of Apache may be possible, but taking down the entire thing legally is going to be quite a feat! (And remember that unlike SCO, Microsoft is limited by the fact that they are still selling software; they can't for instance go after the GPL in a really serious way because they'd likely end up invalidating their own licenses; "Unenforcable GPL" is good FUD but would be an atrocious court strategy for them!)
It's not hopeless, not by a long shot. I won't say they couldn't make a real annoyance of themselves and I won't say Total Open Source victory is some sort of inevitability, but it's not hopeless.
Re:source out on the open?: conspiracy theory (Score:5, Insightful)
Though many of us - myself included - would not mind a peek into the collective mindshare of the Evil One, one cannot look into the abysss and return unchanged.
Sorry. Debated last night with philosophy majors. They won, six shots to five black and tans.
To translate it bluntly: This is still copyrighted code, owned by Microsoft. Duping even their "badly-written routines" into an inocuous place may lead to an SCO-esque attack in the near future , claiming violations in certain filesystem and mounting routines, or possibly something involving Samba, or a myriad of other wincompatibility issues.
It feels like a tactic that may be conceived by some bright bulb in MS Legal to bring conflict to the competition, or at least stifle development past current kernels.
I am starting to get the shakes that I get in a poker game when my all-in bet is called when I have pocket kings. (Last time that happened, the opponent had A-J suited. He flopped aces-up. I swore loudly.)
I am not a lawyer. I play one online, and I'm studying for the patent bar, but I don't pretend to dish out legal advice. Still, if I go all-in, I have the goods.
Re:source out on the open (Score:5, Insightful)
- Release portions of an older baseline which have already been fixed/replaced (to minimize the hacker potential), but are algorithmically distinctive enough to be recognized if they were used in another product.
- Wait for a well-meaning open source user to submit one of the pieces as a patch to the Linux kernel
- Scan new kernels for distictive algorithm.
When found
- Launch expensive lawsuit at RedHat, Lindows, et al. Demand injunctions against distribution, damages, etc.
Or maybe, I've just read too much SCO-IBM coverage here. --JohnRe:source out on the open (Score:5, Interesting)
Let's do some math..and since we're talking conspiracy theory here, we only need to use addition!
* MS "kills off" the old OSs, but not enough corp users move
* MS goes security nuts and publicizes ever patch. Let's not mention that some patches take 6 months to come...
* Release the code through a "trusted partner" - MS supports lots of partners which, via programming, politics or press, support the beast in return.
* Frightened CEOs scream - CIOs look at updating to XPee vs. training staff on Linux and OpenOffice. Looks ok, until...
* Frightened CEO's PowerPoint presentation doesn't work right
SOLUTION:
* CEO - "Upgrade!"
* MS = PROFIT!
C'mon - add to the panic...It's Fun!
Re:It was lifted from a Linux Box (Score:5, Interesting)
I've seen junk like that before, so it's entirely possible.
Re:This may sound crazy, but M$ would likely gain. (Score:5, Interesting)
No. Windows 2000 is NT 5.0, XP is 5.1 and Server 2003 is 5.2. Notice the minor version bump which indicates that all these releases share a lot a code.
It is reasonable to think they want to have users switch to Longhorn (does anybody know if it will be NT 5.3 or 6.O ?), but then the leak occured too soon, for they're not ready yet.
Re:DON'T TOUCH IT (Score:5, Insightful)
You are buying into the same FUD Microsoft is spewing about the GPL.
Just looking at the code does not "taint" you. There are plenty of ex-Microsoft employees who have looked at Microsoft source code and have then contributed to non-Microsoft projects (not just OSS, but closed-source from competing companies). Really, are you claiming that a coder that has seen Microsoft's code is legally impossible to employ except at Microsoft? What if some poor sap has seen both Microsoft's code and a competitor like Suns? They can't ever work on software again anywhere?
Conversely Microsoft hires people all the time that have looked at GPL code. They don't seem worried that these people are "tainted" despite the fact that their public announcements would seem to indicate that it is impossible for such people to work there.
The person/company in trouble is the one that made the code available. Apparently this is somebody at Mainsoft, who should be punished hard. This sort of behavior is extremely damaging to IT!