Gates on Winsecurity

xandroid writes "Just a couple days after talking about free hardware, Bill Gates has sent an email to customers saying that Microsoft will continue to focus on security, titled 'A Microsoft Progress Report: Security' (MSNBC story, PC Magazine story, Google News' related stories). The email mentions that fast-spreading and destructive viruses and worms are 'threatening the potential of technology to advance business productivity, commerce and communication', but says that to counter the threats, Microsoft will make 'major investments in customer education and partnerships that will help make the computing environment safer and more secure'. He also talks about the XP Service Pack 2, and says that Microsoft is 'working with microprocessor companies, including Intel and AMD, to help Windows...support hardware-enforced data execute protection (also known as NX, or no execute)'." Reader Zephyr_in writes "Macworld reports that the beta-release of Longhorn is likely to be postponed to early 2005 because Microsoft is concentrating first on a security-focused update (SP2) to Windows XP. Earlier this week Gates said Longhorn is 'not a date-driven release.' and said the speculation that the operating system will come out in 2006 is 'probably valid.'"

Well....

[BWJones]

The email mentions that fast-spreading and destructive viruses and worms are 'threatening the potential of technology to advance business productivity, commerce and communication',

I don't know about that.......seeing as how I use OS X, I have yet to experience downtime or hassles due to viruses or worms. Of course there are problems with an increased number of emails from Windows machines containing worms and such, but they are simply filtered out via the spam filter. So this statement from Gates only r

Re:Well....

[Anonymous Coward]

So this statement from Gates only really applies unless you are using something other than OS X, Linux, IRIX, Solaris, BSD, etc.... :-)

Which is 90% of us, so get over yourself. OS snobbery is obnoxious.

Re:Well....

[kevin_conaway]

A lot of people dont have a choice whether it be for work or personal reasons. "Voting with your wallet" is often an impractical short-term solution for people that need a piece of software to work now, not when the company decides to port it to linux.

Its been said over and over: OS's are tools, they all have their strengths and weaknesses, use the right one for the job.

Re:Fine, whtever.

[DoraLives]

I ave *never* been infected by a virus. Never.

Do not tempt the gods that way. You're just asking for something.

Re:Fine, whtever.

[sharkey]

I ave *never* been infected by a virus. Never.

Are you sure? SOMETHING'S got your keyboard fucked up.

Re:Fine, whtever.

[Mr. Flibble]

Well I run several *nix servers, my home and office machine are both Win XP. I ave *never* been infected by a virus. Never.

In the words of some of the security professionals out there(from the people at @stake and foundstone):

If you have never been hacked [sic] you are either too small a target to be worthwhile, or, you have been hit, but are not good enough to notice.

Amongst security professionals, you are rated good if when asked how many times have you been hacked in the last 5 years, and your answer is "once or twice". If it is "never" that is almost as bad as "lots".

Re:Well....

[Darby]

When it comes to viruses, whoever is using the OS that is in the majority will be part of the problem. The reason that virus writers write for Windows is that most people are using windows.

So explain all the internet worms that have brought the internet to a crawl and infected from machine to machine with no user intervention.
Windows has a 20% share in this market. Apache is 70%.
*All* of the worms are for Windows and Windows only.

That was the sound of your argument crashing down around you.

Security thr

Re:Well....

[pantherace]

This argument is just not valid. Windows simply is insecure, and it's users are part of the problem, but they aren't really the root.

How long has linux existed, and how many worms have there been? Or applications: 2 apache worms or so? and apache is by sheer numbers, what? 60% or more of the webservers on the internet. (lets assume there are actually a dozen apache worms since 1992, if there are even that many, that's one a year.) How many IIS worms are there?

How many worms have been able to break into the kernel itself? Oh, given the couple of kernel bugs, it was possible, but they were all local exploits. Which requires the code to be run on the system as opposed to things like the Classic MacOS had some virii for it, but compare the length of time it had been out (and how it was the GUI computer for quite a while) 16 years or so (1984-2000) Over that time, there were probably less virii for it than windows 98 got in the first year. (Probably partly because as an OS it was one of the dumbest in terms of networking, you couldn't do anything with it.)

MacOS X has been out for around for 4, and the number of worms is comparable to those for Linux, as in almost nothing.

I expect when Longhorn comes out, there will again be another torrent of worms. But maybe Microsoft may be getting it together with regards to security. They did a pretty good job of stability with 2000, but backslid on XP.

Even if Linux/KDE became as dominant as dominant as Windows is now, the problem wouldn't be nearly as bad. You see, Linux distributions (almost all? and the people who aren't should know what they are doing) use package management. This means that instead of running an installer for program a, b, c off of cds or the internet, they use packages provided by people who they can check cryptographic signatures of automatically, for example with rpm. Now, that's not perfect, and you don't have to have that, but it gets people into a method of expecting part of it to come from a trusted source (eg gentoo which provides md5sums of all the packages downloaded. or rpm which allows both server and developer signatures last I looked.) The distribution is EXPECTED to provide this, and if they don't either the user doesn't know enough to get it, and askes someone else for help, or knows enough to figure out that www.warez-cracks-hijacking-your-game.com is not a good site to get things from.

Linux most-breached

[bonch]

I guess you missed the study that Slashdot posted which stated Linux was the most breached OS on the net.

I seriously doubt Windows is inherently more secure--the fact is, that operating is in use by some 90% of computer users, so it's not unreasonable to expect that things are going to get through once in a while. In that regard, Windows has the potential to become more secure than Linux simply because it's so much more field-tested.

You mention that Longhorn will ship with worm vulnerabilities, without r

Re:Linux most-breached

[BasilBrush]

You must be the last person on Earth that believes the .NET marketing label actually means something. Even Microsoft have been removing that label from all those thing they slapped it on. If "the technology fascinates you" then refer to the actual technology you are talking about, not to some marketing unbrella term.

In Longhorn "most everything" won't be sandboxed at all. Longhorn has to retain backward compatibility with most existing applications out there otherwise people won't upgrade to it. And i

Re:Linux most-breached

[SoTuA]

I guess you missed the study that Slashdot posted which stated Linux was the most breached OS on the net.

There's a *BIG* difference between "a hacker 0wn3d my b0x" and "Some VB script 0wn3d half of the windows boxen on the internet, automatically, without any manual interaction from the hacker".

Re: The point everyone misses

[jaavaaguru]

On OSX/Linux/BSD/Solaris...

For the virus to be executed, it would have to be saved to disk and then have the execute bit set. For it to do this automatically, that would involve executing, which it doesn't yet have permission to do.

For a user to execute it, they'd have to save the attachment, switch to their file manager, change the permissions on the file, then run it. That's one more step that is require on Microsoft Windows, and following the data that's more than 2 clicks away is too far away rule, a lot of people won't bother if it takes that much effort.

Most operating systems have this feature built in. If Microsoft were competent enough to have it built into Windows, there would be no need to go chasing the CPU manufacturers.

Re: The point everyone misses

[Daytona955i]

I think you underestimate users. People will double click, unzip and spend however long it takes to run any attachment they get. Even if their e-mail program or ISP or whoever says something like "The attachment is a virus... do not open it." They will still open it.

Now, for most users, It's not the 2 clicks away is too far rule... it's called you need an administrator password to install anything rule. This is why people tell you to not log in as root. (and why the root account is disabled by default in OS X) Now when you double click that attachment and instead of opening a document, it prompts you with the password dialog box, alarm bells should start ringing.

Oh and most archival programs will save rwx flags. So while it's harder to get a virus, never underestimate how stupid people can be.

Re: The point everyone misses

[rah1420]

I think you underestimate users. People will double click, unzip and spend however long it takes to run any attachment they get. Even if their e-mail program or ISP or whoever says something like "The attachment is a virus... do not open it." They will still open it.

Tell someone there are 100 billion suns in the Galaxy, and he'll believe you. Tell him a bench has wet paint on it, and he has to touch it to make sure.

Re: The point everyone misses

[JanusFury]

So on OS X, if I download a SWF file or a HTML file with embedded JScript, or visit a page with a Java applet in it, I won't be able to execute any of the scripting code embedded in those files unless I copy them to my hard disk and set an execute flag?

Saying that forcing users to enable an Execution Flag on files before you can run them, is a 'security feature' is ignorant. There are plenty of plain file formats that can contain executable code in them, and an 'execute flag' doesn't do anything to solve t

Re: The point everyone misses

[jaavaaguru]

I was talking about executable files (notice the word "executed" in my post). You're talking about interpreted scripting languages. If you don't want such things to be run, then either disable whatever "feature" causes them to be run, or choose to use software that simply doesn't run them.

Java VMs (at least the real Sun versions) have a security policy which prevents applets writing data to anything other than the domain from which they came. i.e. if it came from the internet, it cannot read/write to any arbitrary part of the local filesystem unless you change the security policy manually.

"Plain file formats" do not contain executable code. They might contain code that can be interpreted. A perl file downloaded from the Internet for example cannot be run by typing ./perlfile.pl until the execute bit is set. Running it using perl ./perlfile.pl is different, since the initial program being run is the perl executable, and it's not up to the shell to decide how to run the script.

I'd agree that any point-and-click GUI that lets users run interpreted code from files like that is missing something in the security department.

The execution bit being a security feature is a fact, not a sign of being ignorant.

Re: The point everyone misses

[Angry Pixie]

You're being misleading! The fact is, I as a Windows user don't even need to save a virus to disk and run it in order to get infected. :P

So UNIX users are actually three steps removed from dangerous attachments, but seriously will KDE and GNOME eventually bring in traditionally Windows specific security issues inadvertantly by trying to mimic the Windows environment?

Re: The point everyone misses

[jaavaaguru]

Technically, if it's embedded in an e-mail and runs itselfvia some scripting feature, and speards itself to other computers, it's a worm.

Unix/Linux users are one step ahead of Windows as far as standard viruses go, but they're a long way off as far as worms go. I'm not aware of any mail clients in KDE or Gnome that support scripting, and if one did appear, I don't see why people would switch away from the current range of excellent apps like Evolution and KMail/Kontact.

If one of those did start supporting

Re:Well....

[dbc001]

98% is pretty unlikely. When people are a part of a group (slashdot readers), they assume that since they share one or a few traits, that they share *most* traits. This is a fallacy. I read slashdot for three years before using Linux on a regular basis. There are a lot of Slashdot readers who don't use Linux. There are many who don't play video games. And -GASP!- there are quite a few who even have social lives.

Those of you who assume that the rest of slashdot is just like you are truly naive.

Re:Well....

[Grishnakh]

It's not the opperating system itself that is causing the problems, it's the smacked asses that use it maliciously. Don't blame the drunk driver, blame the car and the sober drivers right? Get a clue.

I disagree. The "smacked asses" are starting the problems, but the operating system is turning a very small problem into a very large one.

To use your drunk driver analogy, suppose 90% of the cars on the road, made by "Fireball Motors Corporation", suddenly exploded when even tapped by another vehicle, let alone a full collision. Even worse, after these cars become rolling fireballs, they suddenly accelerate wildly and run into as many other cars as possible, which of course turns them into rolling fireballs. Of course, this isn't much of a problem if everyone drives perfectly and never makes a mistake, but every Friday night, a few drunk drivers accidentally run into other cars, causing the freeways to turn into massive infernos. A few people escape unharmed, because they bought cars from Orange Motor Corp., Banana Motors, or built their own. These other cars just get a little dent when a Fireball car hits them. However, every Saturday after the morgues have processed all the charred bodies, the victims' families cry about the drunk driver that caused the tragedy, but no one ever considers getting rid of their Fireball car. When an Orange driver asks them why, they say they like the knobs on the stereo better, and are willing to risk their life for that. Then the Orange driver throws a rock at their car and laughs as it bursts into flames.

Sorry, but given the risk you run by sticking with Windows, I have no sympathy for you at all, and I'll laugh when a virus or worm wipes out your data. It's just a matter of time.

Me Too...

[vwjeff]

I have yet to experience downtime or hassles due to viruses or worms.

I'm not going to get into an OS war but I also have not had any downtime due to a worm or virus on my Windows XP box. This is because I do not open e-mail attachments, run a hardware firewall, and keep my system up to date with the latest patches and virus definitions.

I also have a G4 running OSX and an older PC running SuSE. My favorite is the G4 not because I am a Apple zealot but because I like the interface. I didn't like Apple b

Re:Well....

[Angry Pixie]

I for one am not going to push for Longhorn. Longhorn is going to be an evolutionary change over what Windows has been according to Microsoft. I may need to look elsewhere if Windows XP will be my last Windows OS for years to come. I can't go Apple since I've invested a lot in PC hardware and software. With Longhorn, I'll have to deal with the possibility of some or all of my important apps breaking under the new Windows. Plus, I have to deal with Microsoft's new vision of security and digital rights management.

Mod me offtopic... Windows and Windows software is insulting. No, it doesn't suck. It's very good, but it's insulting. UNIX is the same way. It used to be I could just pop in my software, install it, and begin operating it. At most I'd have to supply a serial number. Fine.

But now, the act of purchasing, installing, or using Windows software forces me to put up with accusations of fraud and theft. Please comment if the following list of insulting behavior is incomplete:

• Diskettes that eat themselves after a specific number of installs or that hard-code user registration info onto the original distribution media

• CDROMs that are encrypted, preventing me from making legitimate backups

• Software that won't load unless I have a security dongle, a special diskette, or the original CDROM

• Software that requires
• activation

• Software that secret connects to servers behind my back

• Software that requires me to allow it to connect to a home server to verify my serial number on each use

• Software that locks itself down to my hardware

• Software that installs secret files to prevent me from reinstalling it without a format -> Fuck you, VBOX!

• Software that tries to verify my ownership each time I update it

It's reasonable that software publishers want to curb piracy, and I know that these methods can be effective at preventing regular people like me from stealing. But Windows users have come to accept this presumption that we are criminals trying to take advantage of some poor software publisher; that we are not to be trusted; that we should be prevented from doing anything bad with our computers. Maybe some of us are, but I don't like being put in an adversarial position vis-a-vis my software and my computer. Essentially I have to provide picture ID everytime I want to do something new on my computer - and as a hobbyist, I enjoy doing new things. All I ask for is that Microsoft trust me and show me respect as a registered user who has owned every version of Windows and Windows NT since 1.0. I also ask the same of other other software companies too.

Imagine if restaurants behaved the way software companies did everytime we wanted food.

Here's where I believe the true benefit of Linux and FreeBSD comes into play. Open Source advocates talk proudly about freedom, but I haven't heard anyone address dignity attacks Windows users regularly submit to. When I install Linux, I know that, with a few exceptions, I won't have to deal with the issues I listed above. I know there are no real deep pockets in the Linux business, but someday I would like to see a national advertisement for Linux aimed at desktop users where the central point driven home is that personal computer users can gain back that dignity they lost over the last 15 years. Flame away.

Re:The REAL security problem in '04

[Moofie]

And I suppose that all the people who buy Macs because they're a better solution for their needs are just victims of the reality distortion field, and should be first against the wall in the New Purge. All those scientists who are transitioning to OSX as their research environment are just ignorant.

You, sir, are an asshat.

A properly designed system is not harmful to other properly designed systems. Windows is not properly designed. OSX (and BSD and arguably Linux) are properly designed.

Re:The REAL security problem in '04

[Lane.exe]

When's the last time you used an Apple computer? OS X is able to do so much automatically because hardware parameters are generally known when using Apple or Apple-trusted hardware. Configurations are a snap because there's no gamut of odd brands with odd settings floating around out there. The only things that one takes the time to configure are things like non-Apple mice, wireless cards or printers. Everything else is pretty much a simple set-up operation. This isn't because Apple is trying to make stupid users, but rather because it allows intelligent users to manage their systems easier.

I KNOW how to spend all day trying to configure various things and optimize them for security and use. However, sometimes, I don't feel like reading through piles of security docs just to make sure I can feel safe plugging my computer into a cable line. It's nice to have things just work, and work securely, right out of the box. Apple, however, has provided an operating system whereby I can spend endless hours tinkering with settings, in both a CLI and GUI environment; but by no means do I have to do this in order to get my computer working securely. The best thing you can do for a clueless user who just wants to check e-mail is get them an eMac or iMac. No fancy cables to plug in, no massive suite of security software to install -- just turn on OS X's firewall (built on that rock solid BSD standard ipfw), set up mail.app for their e-mail and get Safari or Mozilla Firebird to start blocking popups. Instantly, they're secured against anything except a direct, targeted attack against their computer. Worms, trojans, spyware... not a problem.

Re:The REAL security problem in '04

[iminplaya]

You really had me up until the license thing. That would be a political mess, with arbitrary revocations for violating some obscure rule that's only valid in California for example. Sorry guy, until somebody drives the internet across the median and rams it into a "station wagon full of nuns", we must never let anybody decide who gets access or not. I do agree however that everything went to hell when AOL'ers got access:-)

Re:The REAL security problem in '04

[Anonymous Coward]

I disagree, and, as opposed to modding you down, I will reply. I'm an intelligent, well-versed, apple user. I've been working with x86-based machines seriously since I was in 7th grade. I'm now about to graduate high school. Last year, I ""switched", as it were. I went out and found myself an old tibook. It's a good, solid, stable machine. I run linux and many versions of windows via work or at school. However, I like to come home to my Mac. Why? It just works. I putz around with pcs all the time, I am paid to do simple repairs and upgrades. Pcs are a hassle, and I spend a lot of my time working on them. I don't have to fool with my mac. It does exactly what I want, it's rock-steady, it's unix (I know this!), and most of all; It's pretty! Not all mac users are net-incompetent. Very few that I've met, in fact, are. That is a false assumption.

Re:The REAL security problem in '04

[BWJones]

Apple computers are created for, and solely used by people who know, and want to know nothing about computers, the "proudly ignorants".

Ah, but they are also used by the most advanced computer users out there. Those that use them for a variety of fields in science from quantum chemistry to astrophysics, medicine and computer science. Pretty impressive that.

This is a dangerous mindset to encourage. Their computers are set up to do everything for you, to treat the user with a kind of benevolent contempt.

What is a dangerous mindset? Allowing people to be connected? Allowing them access to information? What are you going to say next......That people should not be able to vote for whom they want?

As to doing things for you, yeah, when I want to plug in a hard drive, it is automatically mounted and I don't have to type in the CLI two or three lines of commands to get it mounted and shared. There are many other examples of this and why you perceive this as benevolent contempt completely escapes me.

Some recent pricing of upgrades illustrates the kind of attitude Apple has to its customers.

This leap of logic is confusing. And what recent pricing are you referring to? Can they not expect to make a profit on their investment? Be thankful Microsoft has some minor competition, or else you might be paying more than you might think.

Only the ignorant?

[MikeMo]

Oh, please, don't be so condescending. I'm a programmer, been one since 1978 (how old are you?) and I've been using Macs since they came out. Even have a Lisa. I'm the IT director at a company where we have about 30 servers, most of them Macs. The ones that aren't are running a variety of *nix, and one Windows Terminal Server. I've written TONS of code for DOS, for heaven's sake, and Windows since 3.1.

Trust me, I am not "proudly ignorant". I use Macs because they're better. Period. I am not genetic

Re:The REAL security problem in '04

[naden]

You troll .. and to the mods your no better.

I think most people will agree most security problems boil down to one simple thing, the stupidity of the user

Your missing the whole point. The users aren't stupid - they don't care. Computers are not an integral part of their life as they are probably are for you. Hence implying they are stupid because they can't spot a virus is just plain rude.

I have to ask if you know exactly what happens and what to do if your car suddenly stops for no reason. Does it make you an idiot if you have to ask for help ? No because for most cars are a tool not a lifestyle - just like computers.

Apple computers are created for, and solely used by people who know, and want to know nothing about computers, the "proudly ignorants".

Now that Apple is *nix based I find this kind of statement quite suprising. What a bunch of proudly ignorant [bioitworldexpo.com] people.

Apple computers yes do have the obscurity security benefit, however they also have intelligent default settings. Windows with XP SP2 will finally set the defaults to what they should have been from the start.

You are the ignorant one not the non-techie users.

Re:The REAL security problem in '04

[Monkelectric]

people who know, and want to know nothing about computers

I hate Apple with a passion so I'd really like to agree with you ... but Windows claim to fame was it was easy to use compared to DOS. The thought was now that users don't have to manipulate the command line, more people would be able to do more with computers.

Remeber the two things they sold Windows 95 on? It's easy to format a disk, and easy to install programs. They lowered the bar but users as a whole responded by becoming even stupider.

Re:The REAL security problem in '04

[Monkelectric]

I know its bad taste to reply to my own message, but I'd like to add to my own arguement, and say that MS is primarly responsible for the glut of stupid users. They promoted the idea that you shouldn't have to know anything to use a computer. If you're too stupid to use a computer its not your fault, its all those eggheads.

Whats the result? Users don't even *crack* manuals open, they expect just to be a genius at anything they try. Then software companies realized "hey, nobodys reading these manuals"

Re:The REAL security problem in '04

[Jonny Royale]

Interesting points, wonder why you got modded down?

I'd like to add to what you've said and point out that there is a difference between stupidity and ignorance. Stupidity is not being able to learn somethiing. Ignorance is not knowing something, but it doesn't exclude the capacity to learn. Most people, when it compes to the intracacies of the PC, are ignorant, rather than stupid. And they want to be.

For example, I don't want to know the specifics of which particular gasket a mechanic's going to tighten (or loosen) when he reapirs my car, I just want to get to work. I could, if I chose, get materials on automotive mechanics, find out this information, and be knowlegable, rather than ignorant, and even possibly do the repairs myself; but I have no need to know this stuff, so I remain ignorant.

IMHO, This has been one of the fundamental failings of understanding of the Open Source movement, as they try and move from the hobbyist to the mainstream. Doctors, lawyers, and other professionals have too much to worry about in their own fields to concern themselves with makefiles, mount points, and other intracacies of Linux. And, quite frankly, a large number of people simply don't care to learn this stuff, any more than I care to know exactly what happens when I turn the ley in my car to get to work. I just want the engine to start, and use my fundamental driving skills to get to work, or home or to the bar, or wherever.

Does this ignorance mean that I can't drive as well as someone who knows the full workings of an automobile? Certainly it does, however, there are indicators and saftey features in the car itself to protect me from my own ignorance.

This is part of what Microsoft has realized. They realize that people want to know nothing about how their machines work, they just want them to work. That's why their now working on protecting the ignorant user, rather bothering with attempting to educate them. For these users, it's better to put the govenor on the engine, the automated seat belt, and the airbags rather than trying to teach them to use a turn signal when they change lanes.

If Linux is going to embace the mainstream, they are going to have to embrace this ignorant user. Linux is going to need to be so simple that people aren't going to fear it anymore as a more complicated (albeit better performing, more stable and more secure) system than Windows. They're just going to put the cd in the computer, and drive away.

Re:The REAL security problem in '04

[DarkVein]

For these users, it's better to put the govenor on the engine, the automated seat belt, and the airbags rather than trying to teach them to use a turn signal when they change lanes.

I'm reminded of that solid metal car that Kinsman (the Grey Lensman, in E.E. "Doc" Smith's series) got into... the one that went 7000 miles per hour, was absolutely completely lightlessly black dark inside, had no seat belts or other cushioning, and was driven by an alien of a species that can "see" through solid matter. The a

Proudly ignorant or TCO-conscious?

[G4from128k]

Apple computers are created for, and solely used by people who know, and want to know nothing about computers, the "proudly ignorants"

Every extra hour that I am forced to spend learning how make make a computer do what it should have done in the first place adds $50 to the TCO of that machine. So if I have spend even one hour per week figuring out how to keep my machine safe from exploits, I've added $2500 to for the cost of that machine for that year.

I am not proudly ignorant, I only realize that my time is limited and that spending it patching gaping holes in a badly designed product is not top of my list of either fun or productive things to do. At best, you could call me resentfully ignorant because I resent that ignorance should be a problem.

I'm not even sure how you can blame Apple for much of the Internet's current dismal state of affairs. What percentage of viruses, trojans, spam, etc. are distributed via Apple machines?

But, as long as we are playing the blame game, I might as well burn a few karma points. Lets add some more culprits to the list:
1. All the IT vendors that touted software and internet services.
2. All the businesses and organizations that listened to IT vendor's hype and gave PCs to all their employees.
3. The original internet standards designer who gave us naive, overly-trusting standards that make it too easy for anonymous blackhats and spammers to send out untraceable virus packets and spam
4. CPU makers (and Gordon Moore) for giving us such a rapid pace of performance growth that no platform ever matures before it is replaced by another exploit-ridden next generation OS

I'm sure there are others.

Re:The REAL security problem in '04

[AeroIllini]

Well said, sir.

Microsoft is constantly lauded by the press and the business world alike for bringing computers to the masses. A chicken in every pot and a Windows license in every home. And while that is a commendable feat, helping to spur the absolutely exponential growth of the internet and computing in general in the last few years, no one stopped to ask if the masses were ready for all this computing at their fingertips. Computers are powerful devices, and are becoming ever moreso with increased use of broadband internet. The potential for a computer to do serious damage is great, when the right person (or perhaps the wrong person, depending on your perspective) is doing it. The problem right now is that the computer companies are doing exactly what every business in our capitalist society *should* be doing with a home appliance: trying to make money. That, above all else, drives their product creation and marketing. The problem with this line of thinking for computers, which are more than just appliances, is there is no responsibility or accountability for consumer ignorance. Yet.

Consider other home appliances: stoves, televisions, water heaters, automatic litter box cleaners. None of these things require a license to operate. Why? Because although they may be dangerous if used improperly, they don't really pose an immediate danger to other people; just the person operating the device. Since we as a nation believe that people should take responsibility for their own uses of these devices, only product warning labels, owner's manuals, and occasionally tech support are offered as education.

Now consider devices that truly do pose an immediate danger to other people: automobiles. Because we are all driving on roads with *other people* and are a potential danger to them, we as a nation decided that drivers needed to be licensed in order to drive, i.e., there is a mandatory level of education needed before people are allowed to use the device.

When personal computers were first introduced, they fell into the first category above. Each unit was separate. If you didn't read the manual and fried your hard disk, that was your problem. However, as we network more and more, and desktop environments such as Windows and Zero Install try to blur the line between working on your own machine and working as part of a network, computers are migrating into the second category. We're all driving on the proverbial internet highway. Now, if you are a clueless user who clicks every attachment in emails and forgets to install security patches, you are endangering the livelyhoods (if not the lives) of other people on the network. Even the responsible people can still be hammered: you can't tell me that mail servers running OS X are not slowed down by the deluge of emails from Windows boxes still running SoBig and MyDoom. No one is immune, and it translates to lost revenues for everybody.

So what do we do to fix it? Do we mandate that computer companies educate their customers? No. That would be like asking car companies to teach their customers how to drive. How about the ISPs? Nope. They're just the toll booth operators. TThe problem is standards: the world of personal computers sprang up absolutely overnight, from a standards compiance point of view. Automobiles have had over 90 years with the same basic premise (gas, brake, clutch, steering wheel, internal combustion engine), and they have been refined to be compatible with each other. Take one driver's education course, and you can drive any car built. They can all run on the same fuel. They all fit on the same roads (current SUV trend notwithstanding). All of them have at least some interchangable parts. Yet there are dozens of car companies, each with its own set of designers and engineers. Computers sprang up so fast, with a new technological revolution every week, that standards compiance hardly had time to ask, "what the hell just happened?" As it is, we have several major operating systems, none of which run the same software (they all req

Thoughts on Gates

[DarkHelmet]

and says that Microsoft is 'working with microprocessor companies, including Intel and AMD, to help Windows...support hardware-enforced data execute protection (also known as NX, or no execute)

Excuse me, but Intel's ripped off 64-bit system has no sort of NX bit on it. That is the primary difference between AMD and Intel's 64 bit x86 implementation.

What I'm curious about is if this statement from Gates is a forward statement. Does this mean that Intel will adopt the NX bit within the next year or so? Hopefully this will be the case.

I can imagine with this in place, I imagine a lot more of the script kiddies will be doing "Nuke" style attacks rather than full-on hacks. In this case, say if Apache were to have a buffer overrun exploit, the most that would happen is the service would be shut down. Still a pain in the ass for anyone trying to run a web server, but better than running a service that potentially grants access to your machine.

That and worms will hopefully not be so rampant anymore, provided that people stop opening exe email attachments. Don't we wish.

Gates said Longhorn is 'not a date-driven release.' and said the speculation that the operating system will come out in 2006 is 'probably valid.'"

Well, what exactly is the one "must-have" feature in Longhorn that makes it necessary today? Nothing really. A database-driven file system is not necessary. Internet Explorer 7 is not necessary (at least if you have Firefox it isn't). More DRM? Not necessary. What's necessary today are security fixes. And as long as Microsoft keeps patching WinXP, Longhorn is not needed anytime soon.

What is necessary now is SP2. And the sooner they release that, the better.

Re:Thoughts on Gates

[_Shorty-dammit]

Itanium has it, so Intel deserves the mention. *shrug*

Re:Thoughts on Gates

[demachina]

Something I haven't seen mentioned much is this is most likely a strategy to apply the Netscape sanction to Symantec, McAfee and all the other companies making a good living on security software.

As soon as Microsoft starts shipping anti virus and firewall software with Windows for free there is a pretty good chance people will stop paying for it. Security companies will then follow Netscape down the road in to oblivion. They might hold on for a while thanks to brand loyalty and if their offerings are superior to Microsoft's early versions, but its probably just a matter of time before Microsoft's free offering gets better technically and free is always better than "costs money" as IE proved over Netscape and Linux is trying to prove over Windows. Its also no secret Microsoft has been on a hiring binge for security talent so they probably have the talent to compete. They certainly have the R&D resources.

In fairness, Microsoft may be doing this partly because it realizes it has to solve its security problem because its pissing people off and its pissing governments off especially as fixated as governments are now about terrorism and cybersecurity.

But Microsoft also realizes there are billions of dollars pouring in to pockets that aren't theirs for security software. As in so many other markets if they bundle the same functionality with Windows for free, they put these other companies out of business. They can then jack up the price of Windows, or use some licensing scheme to redirect these billions in to there pockets because there are billions of dollars in IT budgets no longer going to security companies.

Closing security loopholes != closing security mkt

[jlusk4]

I can't get too worked up about the threat to Symantec et al. caused by MS closing their security loopholes.

Those loopholes should never have existed in the first place. I think the fundamental unfairness is that we had to be saddled for a couple of decades with a P.O.S. "operating environment" because both MS and its customers were too short-sighted to get it right the first time.

Also, no matter how much good faith effort is exerted to close security holes at the design and implementation levels, ther

Re:Thoughts on Gates

[Jeff DeMaagd]

oh and you forgot to mention that Microsoft FORCED intel to follow AMD's 64 bit implmentation by only releasing ONE version of WindowsXp 64 bit edition

Uh, there are two 64 bit platforms supplorted by Windows XP64: AMD86 and Itanium. What Microsoft wasn't going to tolerate was supporting a third platform.

Re:Thoughts on Gates

[DarkHelmet]

No version of windows was ever necessary -- but it has always been better than what came before it.

You mean like how Windows ME is soooo much better than 98? Heh.

Re:Thoughts on Gates

[DarkHelmet]

Can you provide a reference to back this up?

http://www.aceshardware.com/read_news.jsp?id=80000 460 [aceshardware.com]

There's always a chance that this is wrong, but this is just to prove that I didn't pull it out of midair ;)

I don't think that I like the idea of MS...

[rune2]

telling me what I can and cannot run.

Re:I don't think that I like the idea of MS...

[Keeper]

This feature will prevent ligitimate apps from running in the following cases:

1) They attempt to write to pages marked as executable instructions (self modifying code, various buffer overruns/heap/stack corruption)
2) They attempt to run code in a page marked as data

Basically, the two patterns listed above are how almost all remote ownage occurs on a box. There are a few legitimate reasons why you'd want to have self modifying code (JIT compilers being the biggest) but they can be worked around. I'd be w

Maybe Theo could help?

[ChiralSoftware]

OpenBSD has had "W^X" for quite a while now, and it sounds like that is what Bill is talking about. It is a great idea. There is just no reason for a program to ever modify its own executable code, with a very few exceptions such as Java's JIT compiler. For once it sounds like he is talking about security that protects his customers, not "security" such as DRM which reduces the capabilities of the product.

--------
Create a WAP server [chiralsoftware.net]

Re:Maybe Theo could help?

[Fapestniegd]

There is just no reason for a program to ever modify its own executable code.

Apparently you've never written an anti-piracy wrapper for a Windows application.
That's how the good ones do it, by decrypting/modifying thier own binary code section in memory.
I guess as a GNU advocate, there is no need for anti-piracy programs,
but some people butter their bread writing software and they can't just give it away.

Re:Maybe Theo could help?

[Mr. Piddle]

I guess as a GNU advocate, there is no need for anti-piracy programs, but some people butter their bread writing software and they can't just give it away.

Piracy is really and truly overrated. People who do pirate software would not have ever paid for it in any case. Do you really think some farmer in China is willing to pay $50 for software? How about some random high-school student? How about a bureaucracy-constrained lackey, who would spend literally thousands of dollars to push through the hoops to buy that $50 piece of software (instead, they buy $50,000+ of Oracle and WebLogic)?

The existing legal climate works well to inhibit well-intentioned people from prirating. It is important for business people to feel legitimate with respect to their software, because it is an easy and inexpensive way to reduce risk. People who sincerely do not care about risk are in the minority.

Worst case is that pirates are free word of mouth advertising.

Re:Maybe Theo could help?

[Lehk228]

you mean the ones that take a week for a crack to come out for instead of a day? anti-piracy code is worthless appeasement of PHB's, Please let me know what software runs your decryption wrapper every time it is executed so i can avoid the wast of CPU resources, SOFTWARE PIRACY IS IMPOSSIBLE TO PREVENT IN A STAND-ALONE APP. The only programs that are tough to pirate are apps that connect to a server suchas online games (UT2Kx, Everquest, Starcraft, etc) but even then you get people running pirate servers.

Re:Maybe Theo could help?

[Fapestniegd]

It modifies itself in memory, not on the disk.
If you set a flag to keep it from doing so, as in setting the code section as read only, then the wrapper would not function.
Of course this means viruses could modify it in memory as well. But that's the price you pay.

Don't Forget About Price

[Anonymous Coward]

Tell gates not to forget about lowering prices. This will help slow the move from Windows to Linux as well.

Price and security both need to be priorities for Microsoft. Both price and security are BIG TIME negative aspects of owning Windows.

Release Dates?

[Aldurn]

Windows Longhorn: We'll release it "When It's Done" [3drealms.com].

Comment removed

[account_deleted]

Comment removed based on user account deletion

Protected Stack hardware requirements?

[ponds]

Why does a protected stack need hardware modification ? IANACE, but doesn't OpenBSD do this on standard hardware? As much as I don't like substanceless MS criticism, and as much as I want the status quo's platform to be secure; I really think that actions speak louder than words, and while SP2 is a big step in the right direction, how about: 1. Ditching ActiveX, does anyone actually use this for anything other than malware anymore? 2. Disabling the (Outlook) preview pane by default 3. Higher SSL Verbosity with IE 4. IE URL-bar and statusbar should go into an "extra careful verbose mode" when it encounters hexadecimal encoding ( % ). IMO, these are all obvious things that should have been changed LONG ago, why are they still defaults?

Re:Protected Stack hardware requirements?

[asmellysock]

Why does a protected stack need hardware modification ?

All memory protection needs hardware support. Once code is executing, it is only the CPU that can generate trap which causes the operating system code to regain control.

Re:Protected Stack hardware requirements?

[Keeper]

You can have a software protected stack. SP2 will have components compiled with Microsoft's "latest" compiler software, which generates code to verify the stack hasn't been corrupted (Win2k3 was compiled with this too, apparently; which was why the MSBlaster worm had 2 'variations' to the buffer overflow attack -- one to attack Win2k/XP and one to attack Win2k3). As I just alluded to, depending on the layout of code in memory and where the overflow occurs, you can hack around software protections. It's a lot harder (apparently, it took the group that found the buffer overflow originally only a few days to create the attack for Win2k/XP, but a few weeks to find something that did more than DOS a Win2k3 box), and in some cases impossible, but not all cases.

The only way truely eliminate arbitrary code execution is to mark pages with data non-executable and have a processor level exception thrown when you try to execute code from a data page.

I do not believe OpenBSD has a software protected stack. However, given that OpenBSD runs on platforms which have hardware protected stacks, it does have the ability to guard against those kind of overflows. Just not on x86 hardware. Well, except maybe a version that runs on the AMD64 hardware...

Ditching ActiveX, does anyone actually use this for anything other than malware anymore?

Yes. Aside from the windows update site, there are a whole crapload of corp intranets that use ActiveX. To get rid of it would cause a lot of grief for their corporate customers. What they CAN do (and have done for Win2k3, and I suspect they'll be doing for XP SP2) is disable ActiveX components by default for non-trusted sites. You can do this today yourself if you really want, by going to the security tab in the IE->Tools->Internet Options dialog.

2. Disabling the (Outlook) preview pane by default

Why? Fix cause of the problems; don't cripple the software. In this case, images should not be downloaded by default. And hey, guess what ... the latest version of Outlook does just that.

3. Higher SSL Verbosity with IE 4

IE4? You're bitching about IE4?!? Geeze ... maybe I should start bitching about Netscape 4.0 then...

4. IE URL-bar and statusbar should go into an "extra careful verbose mode" when it encounters hexadecimal encoding ( % ). IMO, these are all obvious things that should have been changed LONG ago, why are they still defaults?

Right, it was so obvious that it took how many years for the problem to be discovered? Everything is obvious in hindsight. Nothing is obvious until it has been done.

Re:Protected Stack hardware requirements?

[CTho9305]

I do not believe OpenBSD has a software protected stack. However, given that OpenBSD runs on platforms which have hardware protected stacks, it does have the ability to guard against those kind of overflows. Just not on x86 hardware. Well, except maybe a version that runs on the AMD64 hardware...


From here [openbsd.org]:
(NOTE: i386 and powerpc do not support W^X in 3.3; however, 3.3-current already supports it on i386, and both these processors are expected to support this change in 3.4).

You can use a little-known feature of x86 called "segments" to enforce non-executability of memory areas. It's just different from the regular paging system used to implement virtual memory, and COMPLETELY unique to x86. You can find a discussion about it here [anandtech.com]. The links in the thread have some good info.

Re:Protected Stack hardware requirements?

[argent]

"Everything is obvious in hindsight. Nothing is obvious until it has been done."

I banned IE and Outlook at work almost 10 years ago when they merged IE and the desktop. THAT was obviously a bad idea from the start, it's still a bad idea, they still refuse to undo it, and THEY WILL HAVE NO SECURITY until it's undone.

Look, I'm not a frigging genius, but I could tell it was a bad enough idea to take that unpopular stand... and then I looked like a hero when Melissa and the rest of the Outlook viruses mowed everyone else down and left our part of the company untouched. What totally stuns me is that not only has it not been undone, even with almost ten years of proof that it's a bad idea there is no groundswell of opposition to that merge. Microsoft has done a sterling job of throwing up one red herring after another to divert attention from the fundamental design flaw.

Re:Protected Stack hardware requirements?

[argent]

First, no, you don't have the same problems any time you have multiple pieces of code using a s ahred library. If that was true it would be impossible to have OS level security at all, because the difference between an OS and a shared library isn't that great. The problem is the design of the MSHTML control, not the fact that it's shared code.

Second, the problem with the MSHTML control is preciusely that you *do* have 20 pieces of code doing the same thing: you have every single application using it re-imp

also

[Beer_Smurf]

What wasn't said
"....and if anyone makes a workaround for the NX feature to install Linux we will be able to use the DMCA to thwart them."

Come on Spinner .. i mean Linux

[naden]

With Longhorn only coming out in 2006, hopefully Linux will make a huge push over the next couple of years to cement itself as a serious 'business desktop' platform.

Because the fact remains that many businesses will be reluctant to upgrade their existing systems to Longhorn if there isn't some huge productivity increases. Hence Linux can be promoted as the solution for business's existing systems. Dump Windows. Install Linux.

In order for this to happen there needs to be a lot more education to the pointy-

Re:Come on Spinner .. i mean Linux

[bonch]

With Longhorn only coming out in 2006, hopefully Linux will make a huge push over the next couple of years to cement itself as a serious 'business desktop' platform.

People were saying this around 2002. Two years later, and KDE and GNOME are still pretty much the same, slowly taking evolutionary baby steps.

Longhorn is going to be entirely .NET and include things like Avalon, Indigo, WinFS, and so on. I guess what I'm saying is Microsoft is actually pushing to do a revolutionary release--this will be the same kind of change going from Windows 3.1 to 95 was.

Plus, I think Slashdotters ignore that people have Windows software and won't magically dump it all and switch to Linux simply because the next version of Windows is due out in 2006 instead of 2005. I see no signs whatsoever that signify Linux is going to make some sort of great stride in the next two years. In fact, things look much the same as they did two years ago, except that KDE and GNOME have, like, more buttons and stuff, and now we're supposed to be switching away from DevFS or something in our production kernels...

Personally, I think Apple is making incredible headway lately. They're Doing Everything Right(tm). If anyone's making strides today and in the next couple of years, it's Apple. OS X just gets better and better (and subsequently ripped off...).

It seems

[smartin]

He sent that out a few days late.

Re:It seems

[kidgenius]

Actually, this was out by April 1. TheScreenSavers mentioned it.

Never admit !

[Onan The Librarian]

I read Gates's comments a few days ago and noted that at no point does he even come close to admitting that every virus, worm, or other exploit that hits Windows is able to do so because Windows own code has made it possible. "Windows security" should be used as a perfect example for a dictionary definition of an oxymoron.

Seriously, with approximately sixty billion dollars in the bank, exactly what prevents M$ from producing a secure OS ?

Re:Never admit !

[Keeper]

Seriously, with approximately sixty billion dollars in the bank, exactly what prevents M$ from producing a secure OS ?

The same thing that prevents game programmers from comming up with crack-proof copy protection.

Re:Never admit !

[DarkVein]

Game developers? Game developers don't care about copy prevention. Publishers don't develop it either. Third parties sell it to publishers under false pretenses and nonsense that breaks down to "every time someone copies your discs, you lose money."

And, as a rule, these third parties are nowhere near the leading edge of computer science. They are always business ventures. They hunt and search for techniques to deliver what the slogan on their incorporation documents says they're going to deliver, and pay a nominal research cost to develop it into something they can sell. They are neither smart nor industrious. They can, however, speak BS and HS to CEOs and CIOs of B2B and B2B "Publishing Industry Leaders" in the expanding software publishing industry. Make Big Money.

Game developers, on the other hand, don't give a rat's ass about these people. They don't want people to mooch off their hard work without paying for it. But, most of the devs I've talked to understand that most copies are not lost purchases. They also realize how much trouble copy prevention mechanisms cause them and their fans/customers. However, the decision to impliment them is not theirs. And they can't bad mouth the decision, or the publisher will have a tantrum and drop them under the "don't slander us" clause of their contract.

However, if you frequent some of the better game company run forums... Ion Storm, and formerly Bioware, etc., you'll find that they have very explicit almost uniform rules about discussing copy prevention. They don't permit software titles to be mentioned, or links, but they will fully permit discussion of the problem and mechanisms and methods to correct the problems. When developers respond, it's sympathetic and hesitant, and usually mentions somehow that it's the publisher's fault and they can't do anything about it. Bioware's forums got strict and silent about the issue all at once, after a large continuous volume of complaints--very uncharacteristic of the company, and indicative of some sort of "shut up and shut them up" order.

Re:Never admit !

[Diamon]

Seriously, with approximately sixty billion dollars in the bank, exactly what prevents M$ from producing a secure OS ?

Perhaps a lack of a company producing an existing closed source secure OS for them to buy up.

Re:Never admit !

[real_smiff]

Seriously, with approximately sixty billion dollars in the bank, exactly what prevents M$ from producing a secure OS ?

OK let me take a crack at this.
Because they are trying to come up with a very usable OS. 'Easy to use' and 'Secure' are to some extent mutually exclusive. Not totally, but it's a balance, and in the same way as airplane mnfrs famously sometimes don't make improvements to the safety of their 'planes until after the crash, MS hasn't made the necessary changes until after worms etc. got really bad in 2003 and they started losing customers. This doesn't mean they won't make the changes and continue to do well (no I'm not a Microsoft fanboy).

Good things to hear since:

[Anonymous Coward]

a) Hardware will become nearly free and
b) If Microsoft security becomes hardware-based, it may even work!

Now, seriously, I'm your average M$-basher and could take this opportunity to make some mocking remarks.

But, you know what?

I find it sad when some software monopoly says things like "our systems are not engineered for security" and "our security will improve because we will resort to hardware" -- while still keeping a 95% desktop share.

*sigh*

NX - Finally

[rdean400]

About freaking time. IBM's mainframe and midrange server architectures have been doing this for years. In OS/400, for example, the only things the processor will execute are program objects. Memory blocks marked as data cannot be executed, even in the event of a buffer overflow. The OS and hardware work together to ensure this.

Re:NX - Finally

[Cheeze]

too bad it'll probably be wasted on the likes of advanced DRM.

IF it does find it's way in a microsoft operating system, I'm pretty sure someone will find a way around it, and eventually control it remotely. If someone remote has the ability to not allow a local user to run programs, then your petty antivirus techniques are useless.

In the meantime

[Anonymous Coward]

MS will continue to talk about Longhorn to ensure nobody else can grab mindshare. I swear Longhorn stories are on sites like Slashdot and .com.com.com everyday and yet there is no end of talking about a product that won't be out for years.

Security is nice and all, but Longhorn is starting to remind me of heaven - a long way off with no concensus on what it is really like. A lot of faith that things will get better someday is almost required, just as faith is required for the religious minded.

Re:In the meantime

[bonch]

Security is nice and all, but Longhorn is starting to remind me of heaven - a long way off with no concensus on what it is really like.

Guess you missed the Longhorn PDC build, the endless Longhorn build leaks that come out every couple of weeks, and the monthly videos MSDN has been putting out that showcase a new Longhorn technology by the devs who wrote it.

I don't get the need for people to imply it's "vaporware"--Longhorn is coming, and we need to be ready. There's a reason we have the Mono project...there are devs who recognize what the future will be.

Here's the "innovation" to fight worms

[netringer]

It would be easier to kill worms if users didn't run attachments. It would help more if they didn't type in passwords for .zip files that are contained in .gifs so anti-virus programs can't see it in the message text.

But, here's an idea! What if the email program DIDN'T EXECUTE SCRIPTS WRITTEN IN BASIC!

Hey, Bill, here's some code that will kill worms dead:

Safe and Secure [mozilla.org]
Unlike many other products, Mozilla Thunderbird doesn't allow scripts to run by default.

How long will it take until Microsoft dips into the Outlook code and stops the running scripts in message attachments?

Maybe never. They'll just build rarely updated "after the fact" virus scanning in the next XP service pack! Yeah, that'll do it.
I won't need it. I use Thunderbird and Mozilla Mail.

Innovative, isn't it ?

[lazy_arabica]

Meanwhile, criminal hackers have become more sophisticated

Sure, it was easier to write an assembler program adding it's own code to a software, while keeping the infected program executable, than scripting 15 lines of VB Script.

The kinds of threats are evolving too. Blaster, for example, hijacked individual computers, turning innocent users into unknowing and innocent worm propagators.

Oh, those poor and innocent individual users. What a wonderful way to make them think they are only victims, and never responsible of the spread of a virus, even if they don't make any effort to secure their system.

Central to our security efforts is preventing malicious code from being able to exploit a vulnerability by isolating such code, providing more effective control over what computer processes can talk to or work with, and making systems more resilient so they are able to identify and stop suspicious or bad behavior in its tracks.

Of course, the idea that a malicious program shouldn't be able to do much damage, because it has very restrictive rights is a strong innovation.

Memory Protection: Malicious software designed to exploit buffer overruns can allow too much data to be copied into areas of the computer's memory. Although no single technique can completely eliminate this type of vulnerability, Microsoft is employing a number of security technologies to mitigate these attacks.

Wonderful ! Microsoft OSs will (at last) have memory protection ! Let me remember, how old is Unix ? Nearly 40, isn't it ?

Could someone explain me how Microsoft can be seen innovative by so many people ? And how they can so proudly try to make us believe they always were (and will be) on the right way ?
-----

GET RID OF THE IE-DESKTOP INTEGRATION

[argent]

"Microsoft will make 'major investments in customer education and partnerships that will help make the computing environment safer and more secure'. "

BILL: GET RID OF THE MICROSOFT HTML CONTROL.

Getting rid of ActiveX and splitting the MS HTML control into a separate modules so programs can display local HTML without worrying about it kicking off a local exploit or downloading untrusted material from the Internet... not just defining zones, but separating the display code, the internet code, and the active desktop code into separate modules that don't interact with each other except through an application that has to explicitly request dangerous things... that would do more for security than anything else Microsoft could do between now and the end of time.

But to do that would be to back out of the claim that it was essential to merge IE and the desktop back when they violated their agreement with the DoJ back in the '90s, and Microsoft cares way more about losing face than improving security.

Funny...

[ntr0py]

... that "Winsecurity" is so far removed from actual "security" that it deserves its own word.

Re:Funny...

[commodoresloat]

And it's telling that they chose a word that rhymes with "insecurity."

I received that email

[khendron]

On my W2K computer at work.

It took me quite a while to convince myself that it was not spam and safe to open. This, I think, shows that Microsoft has a long long way to go.

Some of what he says is right.

[jonadab]

No, not everything, of course. But some of what he says is right. Much of
the bits about isolation and resiliency are dead on the money: having the
firewall on by default is a start, but if I understand correctly what he's
saying (which is hard, because the wording is brief and nontechnical; it
was obviously not written for a technically-inclined audience), Microsoft
intends to actually *fix* Outlook. Not "patch" it to stop a particular
exploit, but actually fix the root problem.

He also says some stuff that's good to hear despite not really constituting
security -- e.g., popup blocking, and not loading remote content in email.

He also talks about taking measures at the system level to mitigate the risk
of buffer overruns, but I can't tell from what he says whether what they're
doing there will be helpful or a placebo. This is where the CPU NX stuff
comes in, and I'm a little over my head there; I understand the idea, but
I don't think I grok all of the implications.

This is actually a good article. Not perfect, but good. Go read it, those
of you who haven't yet. I don't think we're going to slashdot Microsoft.

Re:Some of what he says is right.

[GreenBugsBunny]

I don't think we're going to slashdot Microsoft.

This sounds like a challange ;)

Linux Security

[MichaelKaiserProScri]

Here's an interesting though. Is Linux more secure and stable BECAUSE it is more difficult to set up?

Linux makes few assumptions. You have to explicitly install and run things if you want them. There is no marketing pressure to force you to take features you do not want. Heck, you can even build your own kernel to include or exclude features. The "barrier to entry" under Linux is higher. So the majority of Linux installs were installed by somebody who actually knows something about a computer.

Conversly, Windows is easy to install. Furthermore, since it comes pre-installed on most computers, it is REAL easy to install. Windows is not so much of a choice for most users as it is the failure to make a choice. Many of the people "succesfully" running Windows are "twelve o' clock flashers". (You know, those people who's VCR constantly flashes "12:00" because they have no idea how to set it.) Combine this with cheap, always on broadband and you have a recipe for disaster.

You've heard of "Security through obscurity", well Windows suffers from "Insecurity through ubiquity"

Re:Linux Security

[extra the woos]

Not to make another reply right after my last one disagreeing with someone but... I dont really think barrier of entry has anything to do with it...(and yeah i'm just ranting here dont mod me up its off topic) Ease of installation...Windows being easier to install is a MYTH!!! IT'S NOT EASIER TO INSTALL WINDOWS!!! It's easier to install software on windows for the average user...(yes, i use debian, yes, apt-get is even easier, no, i dont think my mom would find it easier at this time. yes, once the synaptic gui improves more it'll blow windows away for desktop software installation by n00bs.) But I mean, SuSe, Mandrake, etc, are easier to install than windows. So joe user brings home an old copy of 2k that he got to upgrade that old 98 that they have on their 1998 compaq. Joe has a cable modem. He pops the disc in, boots, installs, no problem. Right from the get-go he starts getting messenger spam! He's confused, he calls a friend who tells him how to turn the messenger off (why was it on by default?). Fortunately joe's video card was detected so it's not in 16 color mode! But there's another problem. Joe hears about a security update he needs to stop the blaster worm. Problem is the worm had already infected his computer. In order to get the patch, he needs to go to the windows update site, but he can't get there because his computer keeps shutting down. So he figures out that he can set the date back (common sense or a nerdy friend maybe)! But windows update still wont work, because RPC is crashed and windows update needed it to install the patch (to joe, his computer is just broken, he doesn't know what's going on). What the hell does he do. Our user is VERY confused. So Joe installs a copy of linux instead because he heard it was "better" and his nerd friend gave it to him for free and its even LEGAL to get it for free..this AMAZES JOE! He puts the cd in the drive and powers his computer on...His distribution, right in the install, detects his cable modem and at the end before the install even finishes, connects him up and downloads the latest security stuff!!! Amazing! All he needed to do was type his name, what he wanted his computer's name to be, and what he wanted to do on his computer (joe wanted to do word processing, and graphics and games sounded interesting too...joe left the rest alone)...Setup tells joe to make his own account, he thinks this is neat. The install is done, he reboots. He types in his username (neat, he's loggin into his own computer, he's never seen anything actually secure before, win98 you could just press cancel!)... He sees a desktop, with icons for the web, and a word processor. What has a higher barrier of entry there? Installation is something linux is better at than windows, it's NOT EVEN CLOSE...I'd compare installing linux to installing mac os 7 on an old machine. It just works. Unless you have some weird homebuilt setup with odd hardware (and Joe user WILL NOT HAVE ANY), you don't even need to install any drivers for anything. Compare that with Windows 2000 (maybe xp is better, I saw no reason to buy xp so I use 2k for my everquest needs, no, it does not run under winex): Windows installs. Unplug the net connection and install some security updates that I downloaded in linux. Plug network cable back in. Cry at 16 color desktop. Get nvidia drivers. Wonder why sound is messed up. Get new sound drivers. Not all the agp features are working..what! Get via 4-in-1's. (once set up, win2k is the best version of windows by far imho, i like it actually..just dont say installing it is easier than linux)... To be fair, in debian (not known for being easy to install) my nvidia card was not configured for opengl. Course, to be fair to linux, the install was every bit as easy as installing the graphics drivers in windows. Download them off nvidia's site, run program...yay... (Yes, i know nerd-centered distros like debian, gentoo, etc, are harder, and yes I run debian on my machine, and have experienced installing red hat, mandrake, and suse).

THE spin doctor

[digitect]

Don't you just love how Windows' in-securities are spun as "evil forces"?

And don't you also love how Microsoft's solutions always point the responsibility finger elsewhere. They always try to paint themselves as the good guy, having to clean up after the mayhem someone else initiated. "Here's our progress on taking steps to combat the evil in the world."

One of these days, business is going to wake up to this shell game and start holding the software manufacturer to blame for the general design problems of their products. Then you'll start seeing a general shift to another platform, maybe starting in the back office, file and printer serving, firewalls, etc. The desktop will be last.

Wait a sec, perhaps that explains the new firewall corporate bought for our branch to replace our old Win2K one... Linux.

CPU Architecture issues

[nurb432]

I could be wrong ( it would require a lot of testing to be sure ), but it seems to me if we had gone with a Harvard type architecture, were data and code are separated at the chip level we wouldn't be discussing this at all.

Perhaps it would be prudent to re-visit the past, in order to move into the future.

Not too many current chips do things this way, though the 8051 series comes to mind.

Next Big Thing

[salesgeek]

Couple of random thoughts:

1. NX bit is not an end all in preventing mal code from running. It does limit some exposure.

2. DRM is not guaranteed security as MS is trying to sell to the public. It does guarantee that fixing a hacked system will be sooooo much more difficult. A successful hack could rended someone's local data inaccessable. And we are sure to see version 1.0 type vunerabilities in bios, os and libraries for a while... eeek.

3. MS providing antivirus, firewall and so on will not work out as competition between vendors has fueled a ton of creativity and generated some pretty amazing products. Let's hope this feature is like the backup software included with Win3.11 and 95 rather than IE.

4. None of this really speaks to MS's most important and weakest security-wise product: MS Office.

The irony of spam

[srs5694]

I got the e-mail. For me, it was spam. I never asked for it. I didn't sign up for any Microsoft newsletter, and certainly not in any way that was verified via a reasonable opt-out system. Thus, I found the passage about spam particularly ironic. Here was some long-winded spam that trumpeted how the next version of Windows would have spam-protection tools. Naturally, I fired off an abuse complaint. So far, I've received no response to that.

neither necessary nor sufficient

[hak1du]

says that Microsoft is 'working with microprocessor companies, including Intel and AMD, to help Windows...support hardware-enforced data execute protection (also known as NX, or no execute)'

Marking pages as being executable or not has been a feature of many processor families for decades. It's generally a useful feature, but it is neither necessary nor sufficient for making opearting systems secure: after all, Linux, BSD, and Solaris manage to be much more secure than Windows running on the same processors.

Re:Cue the Microsoft Bashing

[EpsCylonB]

I seem to remember this site used to focus on Linux, with only the occasional Microsoft-bashing article. Nowadays, it's completely the opposite.

I thought this was a site that dealt with computing and technology, what exactly is wrong with this article ?.

I don't know, but...

[bonch]

Slashdot posts every single letter, lecture, and little throwaway statement Bill Gates in order to give the "M$"-bashers something to froth over.

Absolutely nothing new will be offered in the discussions for this article.

Meanwhile, Gentoo, Debian, GNU (twice!), and Gnome have all been hacked in the span of the last six months, and LinuxSecurity [linuxsecurity.com] reports dozens of vulnerabilities for each distro every week alone.

It will always boil down to this--security as a criticism against Windows will always be somethi

Re:I don't know, but...

[nathanh]

I miss when there was no agenda other than being a cool site for nerds to get news on the latest Stallman lecture, Linux kernel technology, or programmer interview.

You know, I was thinking you were a troll (or at the very best, a malcontent) up until that last sentence. Then I realised I agreed with you. I also miss the days when Slashdot posted an interview with a kernel programmer or discussed the latest gadgets. It seems these days the articles all have an anti-establishment theme.

Perhaps the Slashdot editors have let success go to their heads. They think that their larger audience means they have a greater responsibility to report on the "important stuff". Unfortunately the Slashdot editors don't limit the "important stuff" into the YRO category, so you can't easily turn it all off.

Re:So, basically...

[ponds]

I really want to disagree with this, but I just can't.

If Microsoft took up another strategy than pure marketing; they could offer alot better of a product, at the same return.

Microsoft basically offers three things:

1.) A decent operating system. Ill get modded down for saying this, but it's an OK system. It isn't wicked l33t for people like us, but it's a decent system for the status quo.

2.) A excellent office suite (sans Outlook). Anyone want to argue that MS office hasn't been top of its class ever

Re:Windows security.

[TheSpoom]

Hmm... GNAA version 2? :^\

Re:By the time SP2 comes out...

[thegrassyknowl]

Maybe their league of "talented" programmers is actually taking the time to do something right and improve security in Longhorn? I mean, it's a nasty task to acomplish putting security into Windows.

First, you have to fix all the holes in the OS. Then you have to protect the OS from the users. Then you have to make sure that the system is configured as secure out of the box rather than totally open.

We're used to seeing a major push of Windows every year or so. This might signal Microsoft taking the Lin

Re:By the time SP2 comes out...

[bonch]

Linux/*BSD will have a better GUI than Windows, more application and driver support than Windows, and an infinitely better design and development process.

Doubt it. Care to point to any signs that show this magical stride Linux is going to make?

OK, two out of four isn't bad. But Microsoft must be scared of something. Why is one of the wealthiest corporations in the world and its army of developers having so much trouble getting something out the door, and why is Bill going out of his way to appear to tow the line? Kind of spooky.

They're not having any "trouble." They're creating entirely new technologies for this new operating system. MSDN has been putting out "The .NET Show" videos every month showcasing the new technologies. People can make apps using XAML and a few lines of .NET code. One video shows the dev writing 10-15 line app that lets him update his website blog. They're hardware-accelerating everything, stripping out Win32, and revamping all of Windows. Where are we going to be at in 2006? KDE 3.5 and GNOME 2.8, with the same old XFree86 technology running beneath (oh, gee, it might be XServer instead which will, gasp, add transparency). Same old, same old.

Re:By the time SP2 comes out...

[BlueLightning]

Where are we going to be at in 2006? KDE 3.5 and GNOME 2.8, with the same old XFree86 technology running beneath

You know, there's a flipside to that coin: if it ain't broke (which it mostly isn't), don't fix it. Unlike Microsoft, "we" don't have to do buzzword-laden feature releases on a regular basis.

Free software isn't perfect by any means, but it's steadily improving. Besides, nobody really knows where we'll be at in 2006 - not even Microsoft can give you any guarantees on where they'll be then.

Re:I love how Gates speaks of Windows...

[bonch]

...as if there is no other computing platform out there.

Uh, why would a company's leader talk about his competitors when he's talking about his own product?

Tell you what, Bill, we've got this stuff called "Linux" and "Mac OS X" out there, among others.

Yeah, let's compare their marketshare to that of Windows...though OS X is definitely making headway lately.

P.S. Maybe I'm the only one, but I'm getting tired of people addressing "Bill" whenever they talk about Microsoft. "Yeah, Bill, do this-and-this

Re:Also also known as

[MBCook]

What are you TALKING ABOUT? This has been around in computers for years. How in the world did this get modded up? The NX bit is one thing and one thing only: a controll to tell the CPU if code from a specific page of memory can be executed or not. It doesn't tie software/hardware to a specific computer. It doesn't take away your rights to run any program you want. It doesn't make you have signed software. It SECURES your computer from things like buffer overflows by making it so that arbitrary executable code that might get put into memory through a buffer overflow can't be executed. This has nothing to do with TCPA, Palladium, DRM, or anything else like this. I hope the meta-moderators make those "Interesting" mods you got as unfair. You are either a troll or an idiot.

And AMD supports it first. They support it right now. Intel is dragging their feet on it. That's the reason I WILL be buying AMD and boycotting Intel (although there are others, this would be the main one).

Re:"focus on security," eh?

[Keeper]

once it's proven to work, then the bells and whistles get added.

Unfortunately, once you add the bells and whistles you can no longer say with any certainty that the code still "works." Anytime someone touches working code they risk breaking it. Only way to avoid that is testing, which is as much of an inexact science as programming is ...

Re:Working with AMD/Intel on NX ?

[linuxbikr]

Not a misconception. The difference is in the fact that Linux usage encourages users to use a regular account that limits the destructive potential to their own data and locally installed programs, nothing more. Linux explicitly requires users to enter the system with administrator rights in order to modify the system behavior or configuration. Windows systems gives these powers to normal users by default in the name of "convenience".

Second, there is a lot of variety in Linux installations even though