Office 2003 Bug Locks Owners Out

I Don't Believe in Imaginary Property writes "A Microsoft Office 2003 bug is locking people out of their own files, specifically those protected with Microsoft's Rights Management Service. Microsoft has a TechNet bulletin on the issue with a fix. It looks like they screwed up and let a certificate expire. There's no information on when the replacement certificate will expire, though, or what will happen when it does."

Tag: Not a bug, defective by design.

[ozmanjusri]

Actually, it's not really a bug, just the usual friendly reminder from Microsoft that there's a new version out and it's time to ante up again.

Totally off the mark.

[IBitOBear]

Microsoft gets people to update by giving their product to the CEOs and "bigwigs". When everybody _else_ in the organization cannot read or use the new format for the documents, they have to keep bouncing transfered documents back to the aforementioned bigwigs. Eventually the bigwigs get tired of the fact that they cannot understand how to use save-as-older-format, and they dislike having their underlings telling them to do things, and they cannot bear to find all the files they saved and re-save them before they downgrade back to the old version... So the entire company naturally has to pay to upgrade everyone.

Repeat that at the border of the company. Every iteration of Little Company that works with and is dependent on Big Company, cannot allow themselves to be seen as unhelpful nor out of date, and they cannot bounce the documents they receive via email etc. without giving that exact impression...

Letting certificates expire is _not_ a Microsoft "strategy", it's an artifact of their adoption of "We don't care. We don't have to. We're The Phone Company" where there is no longer just one phone company, but Microsoft wants to be "The Software Company".

This _is_ egg on their face, but the only ones who will not yell "brilliant omelet" are the people who can connect the "Trusted Computing" dots. Letting the world _again_ see what it means to leave the keys to your property in the hands of any entity that doesn't _have_ to care is just another Microwhoops...

Re:Totally off the mark.

[L4t3r4lu5]

Eventually the bigwigs get tired of the fact that they cannot understand how to use save-as-older-format, and they dislike having their underlings telling them to do things, and they cannot bear to find all the files they saved and re-save them before they downgrade back to the old version... So the entire company naturally has to pay to upgrade everyone.

Or, the admins download and roll out the Microsoft Office Compatibility Pack [microsoft.com] and leave the CEO with his new shiny-shiny.

Re:Totally off the mark.

[deniable]

And then the admins get to deal with documents that can't be handled by the converter. I had one last month, had to install 2007 to open it. I forgot to check Open Office first though. 2007 isn't as bad as the problems '97 caused, but it still causes some.

Re:Totally off the mark.

[Red Flayer]

Emphasis mine:

I had to do some Deep Googling to find someone hosting a copy of the PowerPoint viewer that was old enough to still support the '95 version.

What kid of juju is that? Sounds dangerous, like you might awake some Guardian of the Deep, or even He Who Lies Dead But Dreaming.

Sure hope your wife's employer has paid up their Catastrophic Accidental Awakening of Ancient Evil insurance policy.

Re:

[mattr]

And how do you upgrade the PAYING customer with the draconian security policy?

A totally cynical decision by Microsoft to make color palettes INCOMPATIBLE in when Office was upgraded has caused major troubles in our project. The Excel files we made, which need to use color in order to communicate complex data sets, get shown in front of large meetings and emailed to participants. I had to hand-edit many times to avoid embarrassment, the guys who didn't got embarrassed of course.

Re:

[pixelpusher220]

that's assuming MS actually lets you save documents in the older format. Back when 97 came out, initially (i.e. for months) there literally was no way to read a 97 format in 95 or earlier and no way to save in 95 format from 97. After a while they came out with the ability to save back into 95 format.

But the message was clear, you shall upgrade whether you like it or not.

Re:

[Anonymous Coward]

Or the companies could hire tech people that know how to set the default "Save-as" to automatically save as the older format in the options..

Re:

[deniable]

But it's never us causing trouble, it's always them, as in other companies.

Comment removed

[account_deleted]

Comment removed based on user account deletion

Re:Totally off the mark.

[drinkypoo]

Now if they are still using Office 97 I think they got bigger things to worry about than getting a newer version.

What things are those? Office 97 met my needs just fine, the only reason I stopped using it is that it didn't support multiple monitors correctly, you'd put the app on the second monitor and pop up a menu, and the menu would pop up on the primary display! Goooooo Microsoft, yeah! Now THAT is quality. Now I'm back to one monitor, but I'm also on Ubuntu so I'm using OO.o.

Re:Totally off the mark.

[MadKeithV]

My parents are on OO.o, my girlfriend is on OO.o, and my NetBook is on OO.o. The universal response in this admittedly small sample has been: "hey, that looks a lot more like the Office I'm used to!".
That's a Windows PC, an iMac, and a Linux netbook by the way.

Re:

[toddestan]

Why not? The next version of Office for the PC was Office 2000, and that came out around the same time as Windows ME - so if you were running Windows 98 you were probably running Office 97. At the least, I would expect MS to patch Office 97 if it had problems running in Windows 98.

Re:

[klui]

The compatibility pack does not work with SharePoint versioning. If you open up an Office x document, it will convert it but the system will not know you've checked it out and have it open for editing. I've had to ask coworkers to use non-x versions hosted on SharePoint servers.

Who needs java?

[IBitOBear]

Er... Java is optional, and only required if you use the database engine (nobody does, because almost nobody knows when _not_ to use a spreadsheet, IMHO of course 8-) or some of accessibility and wizard thingies.

One of the ACs gives the actual quote and reference.

Plus OpenOffice.org (and I think core open office as well) dumped the larger desktop interface a long, long time ago.

Try something recent, and try reading the documentation, before you rail against any product.

Re:

[Nefarious Wheel]

Dunno, I use MS Office at work and Open Office at home. They both work. I'm not a great fan of Java as a development language (I prefer old classics like C and (gasp) VBA for quick jobs, PHP or Python for anything significant) but I've not found any difficulty running Open Office on my home laptop (Ubuntu Karmic for those interested). In fact, I don't think about it at all -- I just run the application I want and dive into that (writing a book). In fact I'm probably not even qualified to rate OO at all,

Take off your tinfoil hat

[brunes69]

The reality of the situation is much simpler.

When you buy a new PC or laptop for your company - guess which version of office comes on it - the latest.

Guess if it is cheaper or more expensive to purchase one with the old version - more expensive. And whi is going to approve to pay more for something older?

So, as new machines come into *ANY* company, no matter *WHO gets them, they have the newest versions of Windows and Office, and this is what makes the problems. In many companies, I imagine it is the CEOs

Re:

[jargon82]

Might be true in small companies. Big shops (even medium shops, that I've worked with) like to use a standard image. New machines are either wiped and rebuilt on arrival or come wiped in the first place.

Re:

[L4t3r4lu5]

And who is going to approve to pay more for something older?

Total Cost of Ownership [wikipedia.org]
Those who don't want to pay for:
- Training for users to be able to use the new software interface
- Training for technical staff to be able to quickly troubleshoot common issues
- Cost in man-hours of re-writing that bodge macro which auto-fills / sorts details which is now broken in every document
- Accompanying hardware upgrades for any computers which don't run fast enough for the new software

IIRC, MS Office on new computers is a 60-Day trial, or you get MS Works instead. You'

Re:Totally off the mark.

[WegianWarrior]

Same thing with women
Ah, so you're still single then?

Re:Totally off the mark.

[xouumalperxe]

all XML formats

Cool. I'll send it in OOXML then.

Re:Tag: Not a bug, defective by design.

[rtfa-troll]

I guess in some way you're right. When Office 2003 goes unsupported, the certificate will expire and people will be forced to upgrade and that probably is something Microsoft has documented and understands (and thus a "feature"). However, I still think we could call this an operational screw up. I really don't think they want to remind people of their power to do an Amazon [theregister.co.uk] on all and any of your files until they have people nice and solidly locked in.

Re:

[deniable]

'Destruction' of archived records is a no-no in some places. We'll see if anybody important gets bitten.

Re:

[Skater]

My employer recently announced that we're all upgrading from Office 2000 to Office 2007, since 2000 is going EOL. My fiancee was pleased, because she has 2007 on her personal laptop and will no longer have to worry about saving as older version. I was scared, because even minor upgrades for Office have broken files for me (the last service pack to Office 2000 did that - I was no longer able to open a file I'd been working on; I had to get the support staff to downgrade me again so I could re-read the file

Screw Up Or Forced Upgrade?

[Afforess]

I know a LOT of people still using MS Office 2003. Some people dislike the Ribbon System with '07's version. Some people are too cheap to upgrade when the old copy still "works". Now, Microsoft isn't making any money from all those old copies of 2003, so what's stop them from "Programming Obsolescence" into their software?

It sounds a bit sinister, yes; but it's not technically illegal. It might even be in the oft-skimmed EULA. Or maybe it's just similar to the way HP printers always fail a week after the warranty expires.

Re:Screw Up Or Forced Upgrade?

[darkpixel2k]

I know a LOT of people still using MS Office 2003. Some people dislike the Ribbon System with '07's version. Some people are too cheap to upgrade when the old copy still "works".

That's why there's OpenOffice. An experience that brings you back to the good 'ol days of Office 2003 for free. Actually, it may even bring you back to the days of Office '97.

At least until the next version comes out. Then you have the ribbon too. God, I hope it can be disabled.

Re:

[AuMatar]

Luckily open office writes to an open, patent unencumbered format. So if you dislike the UI- find a fork with a better one. Or a completely different program. No vendor lock in.

Re:Screw Up Or Forced Upgrade?

[gandhi_2]

This has nothing to do with open formats.

If you encrypt and digitally sign (aka DRM) your OO.org files, and loose the ability to decrypt them, you are in the same boat.

This is a story about DRM, not formats. A story about the forgotten idea of key escrow idea and of DRM cert servers, not file formats.

Re:

[wvmarle]

If YOU lose your own key, then that's your own fault. Forgetting to take your keys and closing the door behind you, that's simply your own silliness. And no news.

Here it is a third-party vendor (Microsoft in this case) that basically changes the locks to your files. As if the developer of the apartment building where you live suddenly changes the locks of all the flats. Locking out everyone who locked their doors. Even if they did not lose their own keys.

And that is bad. Very bad.

Re:

[Jack Malmostoso]

It's still vendor lock in if there's no competing product that reads their open formats. I'm also too busy/retarded/cheap to create my own.

Have you tried Abiword?

Re:

[darkpixel2k]

Have you tried Abiword?

No. But then I'm not unhappy with my occasional use of OpenOffice to read MS Office docs that people send me. Just playing devil's advocate.
...although I've never heard of anyone having trouble opening documents typed in vim...

Re:

[xaxa]

...although I've never heard of anyone having trouble opening documents typed in vim...

"Erm... why are all the £ signs showing like € in that text file you sent me?"

"And why are all the quote marks messed up?"

Presumably this is more annoying for localities with more than a couple of often-used non-ASCII characters.

Re:Screw Up Or Forced Upgrade?

[mikael_j]

...to handle writing scientific reports on Linux, and AbiWord wasn't up to the job (Note to trolls: please don't bother with shill posts for TeX/LaTex. I'm sure it's very good, but I've got work to do.)

Excuse me but would you also consider someone who tells a carpenter that a hammer is a much better tool for driving nails than a stapler a troll because you can't be bothered taking three seconds to figure out what end of the hammer to hold?

/Mikael

Re:

[Antique Geekmeister]

I'm a carpenter. And the particular hammer that is LaTeX is a wonderful, powerful hammer, that is too heavy to lift for many home workmen. That's not a "3 second job", and the constant recompilation to get viewable or printable output is a serious burden.

Re:Screw Up Or Forced Upgrade?

[marcansoft]

LyX is your friend. It's a wonderful WYSIWYM(ean) editor for LaTeX.

Re:

[Gorath99]

...to handle writing scientific reports on Linux, and AbiWord wasn't up to the job (Note to trolls: please don't bother with shill posts for TeX/LaTex. I'm sure it's very good, but I've got work to do.)

Excuse me but would you also consider someone who tells a carpenter that a hammer is a much better tool for driving nails than a stapler a troll because you can't be bothered taking three seconds to figure out what end of the hammer to hold?

LaTeX is usually the right tool for the job if that job happens to involve writing a lot of equations, but the learning curve makes grown men (MSc students) weep.

Re:Screw Up Or Forced Upgrade?

[mikael_j]

Actually, my experience with LaTeX is that if you look at it as HTML with different keywords and keep some decent documentation nearby (there are several good PDF books available for free online) it is easier to use LaTeX if you want sane printable results than it is to use MS Word or another word processor (hell, the reason I started using LaTeX to begin with was because I got fed up with trying to force word processors to give me decent output).

/Mikael

Re:

[mikael_j]

Only if the WYSIWYG tool is capable of doing things right without messing them up, which is the main problem with MS Word btw, the output just ends up being a bit wrong, still good enough that most people who are just printing out office memos don't care or notice but anyone who gives their document a second look (and isn't just looking for typos) will notice that it's not looking right compared to some "professional" documents they've seen in their lives.

Also, if your number one issue is "I don't want to w

Re:Screw Up Or Forced Upgrade?

[the_womble]

I like Gnumeric too.

Abiword is a good lightweight word-processor, but not as feature rich as OpenOffice.

What exactly is your problem with Latex? If the learning curve is too much, you use Lyx.

Re:Screw Up Or Forced Upgrade?

[broken_chaos]

It's still vendor lock in if there's no competing product that reads their open formats.

Umm... There are a huge number of programs that read/write ODF (OpenOffice's default format). Wikpedia has a fairly extensive list [wikipedia.org] of software that handles the various ODF files.

Re:Screw Up Or Forced Upgrade?

[Maxo-Texas]

I get your point but this is a little different.

Not having perfect page layout might take you 30 minutes to fix. Worst case, the text is in a zip file and can be pulled out.

Not being able to read encrypted data would be a little bit more serious.

Re:Screw Up Or Forced Upgrade?

[ozmanjusri]

What did I do today? Well, I didn't like the ribbon bar in the new OpenOffice, so I forked the project.

Wow, that's crazy. Why did you bother going to all that trouble when IBM's [lotus.com] already done it for you?

If you don't like Symphony, there's plenty more choices. That's the great thing about being open and having competition, right?

Re:Screw Up Or Forced Upgrade?

[Nefarious Wheel]

At least until the next version comes out. Then you have the ribbon too. God, I hope it can be disabled.

Agree. The Ribbon was a tremendous step backwards in user friendliness, all in the name of eye candy. It sucks. Way too long a familiarisation curve. In contrast, I'm having zero trouble -- almost zero thought -- in using the plain vanilla Gnome / Open Office interface to do the stuff I need to do on the home laptop, i.e. load documents, edit them, and store them.

Re:

[TheLink]

The ribbon is bad in many cases because displays have got wider more than they have got taller.

Re:

[deniable]

Let me guess, Office 2012 will have a vertical ribbon on one side of the screen.

Re:

[Nefarious Wheel]

Unfortunately most people are just resistant to change.

Course maneuvers. I've survived as a programmer for forty years. If I were resistant to change I'd have quit thirty-nine years ago. I've also seen rather a lot of very good, and very bad UI design since the introduction of the command line and have adapted to all of it.

The Office Ribbon UI is a tremendously bad concept, because it intrudes on the process of using the application in a negative way. Every little smooth, automatic, dynamic expansion and compression of menu items contrasts with the items you

Re:Screw Up Or Forced Upgrade?

[shrimppesto]

Why did you put "works" in quotes? Office 2003 still does, in fact, work. It works just fine.

A lot of people are still using Office 2003 because the number of new features that impact daily usage seems to shrink with every new release. Why upgrade when the version you have does everything you need it to, and the new version doesn't do anything you wish it did?

There's always someone who will benefit from [insert new feature here]. But for the rest of us, Office has suffered from a paucity of innovation since 1995. If anything, things have gotten worse -- e.g. they keep trying to make Microsoft Word "smart," but the result is a program that's too smart to be obedient and too stupid to do what you actually want it to do.

The writing's on the wall for Office. If the folks in Redmond don't figure out something reeeal soon, Office is toast.

Re:

[Afforess]

"Works" is in quotations, mainly because the whole point of the article is that Office 2003 DOESN'T work anymore.

Re:

[mr_matticus]

Sure it does, so long as you didn't lock up your own files with Microsoft's rights management services.

Considering that this is used mostly, if not entirely, by corporate clients implementing access control, the idea that it's Microsoft doing evil in the background is foolhardy. Locking documents out because of the failure of a security certificate would hardly convince a corporate client to upgrade to a newer version of Office.

Locks OUT!?

[AndGodSed]

I was about to type out a long post extolling the virtues of... erm... something... and then I blinked back to my screen and realised I had just envisaged what a mistake like this from an upstream supplier (in this case Microsoft) would have on my work day.

I am in IT and I would have had hundreds of phonecalls for this by now, and it is only 09:24... sheesh to apply a hotfix like this to all my clients...

woops there I went again imagining what this would mean for my workday... I can't actually say that any of our clients use the RMS service on their office documents.

Wowee, dodged a bullet there.

Good luck to all the IT grunts out there in the trenches trying to get this fixed right now...

Re:Locks OUT!?

[msclrhd]

What's worse is when Microsoft does not exist anymore at some point in the future. Eventually, the certificates will expire again; then -- without Microsoft to renew them anymore -- you're screwed.

Want to access your important, digitally protected documents? Sorry.

Re:

[sjames]

That's what happens when you hand the keys to your kingdom over to someone whose best interests don't align with your own.

Re:Locks OUT!?

[jimicus]

That's what happens when you hand the keys to your kingdom over to someone whose best interests don't align with your own.

Saying you should avoid that is all very well but it's practically impossible in any business.

Want to take out a loan? The moment the bank thinks you may be in trouble they can and will send you a rude letter saying "Repay the whole lot. Now."

Want someone to do your accounts? Paying an outside company will be a sight cheaper than paying a wage to someone who you only need for a few weeks of the year, but the accounts they prepare will be full of disclaimers to the effect of "We have prepared these using information supplied by our client...." and it's you the tax man will come after if he smells a rat. Too bad if the office junior did your accounts and the senior person who signed them off was in a hurry to get home that day - they'll never admit it in a million years.

Want an email, calendaring and contacts platform? Free clue: The F/OSS exchange alternatives are generally just as complicated as Exchange itself, with the added bonus that finding someone who knows them can be a hell of a lot harder.

Re:

[Imrik]

Don't worry about it, even after the certificates expire, you have Microsoft's guarantee that no one will be able to access your secure data.

Re:

[Nerdfest]

What's worse is when Microsoft does not exist anymore at some point in the future

Not a huge worry. Everyone will be off enjoying the parties anyway.

Re:

[gandhi_2]

Who the fuck enables the "copy protection" feature in every-day office work? Most normal users don't even know it's an option.

Re:

[AndGodSed]

I don't know either, but whoever did is very upset right now, and I bet so is their IT support.

Re:

[Rogerborg]

Who the fuck enables the "copy protection" feature in every-day office work?

The government?

Re:

[deniable]

Oh hell no. It'd make tracking leaks too easy.

Design Choices

[TubeSteak]

Why wouldn't Microsoft allow the end user to setup and manage their own certificates upon installation?

Re:

[deniable]

Because people could then use self-signed certs and we know those are only used for evil.

amazing...

[wizardforce]

Putting that amount of trust in a third party that has the power to lock you out of your own files... It boggles the mind as to why that is acceptable in anything of importance.

Re:

[gandhi_2]

This is Copy-Protection becoming self aware.

Apparently the software realized that YOU still have the ability to copy your data.

Re:

[phantomfive]

Simple cost/benefit analysis: if it gives you a competitive advantage, it may be worth it, even though you may have to pay for it down the road. The value of documents to businesses decreases as time passes: they are interested in making money, not in retaining archives.

That said, I'm not entirely sure using Office 2003 gives you such a competitive advantage over other products. But that is not my decision.

Re:

[MrMista_B]

And yet people use such things as gmail, hotmail, facebook, and etc.

Re:

[Sparx139]

Technically, yes. I could not be bothered trawling through the source code of OOo to look for malicious code (and frankly, I doubt I'd understand most of the code anyway), so I am placing my trust in the dev team. But I know that it's less likely to happen, because it wasn't developed by a single company, but by many people. That, and if this happened, a fix would appear quickly (a lot more quickly than if it was a M$ product)

Re:

[AndGodSed]

You are referencing a SCRIPT that was MEANT TO DO HARM.

There is a difference. The "malware" was really a simple script that asked for root before it got installed and used pre-installed programs that are available in the Ubuntu install to ping a server and download a file from another to do... something nefarious.

The easiest fix in the case of that script would be to force wget to launch with a tty attached instead of being launched in the background. Presto you have plugged a hole that this script exploite

Re:amazing...

[selven]

If I had my way, documents would be done using plain text and markup languages. Everything is simple and separate, so you don't have many security issues that way.

Re:

[icebraining]

That package wasn't in the official repo, so it wasn't tested. I trust OOo from the official repos, 'cause I know it has been tested before getting to "stable" version.

I don't trust packages from random websites, and I would never have installed it.

So if you had no web, you'd be hosed?

[Maxo-Texas]

If you have Office 2003 and no web access, are you hosed?

Re:So if you had no web, you'd be hosed?

[El Capitaine]

The cases where the user would be "hosed" are few to none.

This bug only applies to documents protected with Rights Management Services, which is part of Active Directory and the Windows Server operating system.

Therefore, the only way you would have an issue is if you were on a network that used RMS but had no internet connection, in which case you'd have your IT guy download a fix from some other internet-connected machine and deploy it to the systems with the bug.

This will not affect people who are simply running their own copies of Office 2003 without RMS or Active Directory or any other fancy add-ons.

Re:

[Skuld-Chan]

I don't think you can use this feature without internet access to start with.

Unexpected error?

[SpacePunk]

From the article...
"Office 2003 users receive the error, "Unexpected error occurred. Please try again later or contact your system administrator,""

WTF? Is there anyone out there that can point me to an expected error? Can these wannabe programmer motherfuckers ever pass on real information on an error to the end user? Their error messages might as well say, "Our program fucked up, we're dipshits, we don't know what the fuck is going on. In fact, we couldn't have put together a crappier piece of software if we were drunk, or high."

Re:Unexpected error?

[jpmorgan]

You would prefer 'Expected error occurred. We could have handled with this transparently, but we'd rather pop up an annoying dialog box?'

Re:Unexpected error?

[L4t3r4lu5]

I'd prefer it to say "The document you are trying to access has been secured by Microsoft Rights Management Service, but the signing certificate has expired. Please see your Administrator regarding updating or renewing your certificate."

Still, I suppose no MS coder had ever considered that a time limited certificate would ever expire.

Re:Unexpected error?

[Thanshin]

Their error messages might as well say, "Our program fucked up, we're dipshits, we don't know what the fuck is going on. In fact, we couldn't have put together a crappier piece of software if we were drunk, or high."

It would be funnier to get messages like: "Our program fucked up. -- Error code: ss324. Help me. I've been in a cage for the last two years. They feed me the corpses of the programmers who didn't make it through the big flood. I don't want to die. Please help! ... HH/991.DDF. For more information, contact your system administrator."

Re:Unexpected error?

[BrokenHalo]

Is there anyone out there that can point me to an expected error?

What's worse is that insulting little click-box that sits there jeering at you saying [OK]

...when as we all know, the correct response is "No, it's NOT fucking OK, you dipshit."

Re:

[deniable]

Wait till you get a phone call asking you what to do with that box, for the third time, today, from the same person.

Re:Unexpected error?

[AlgorithMan]

this is simple. Error handling basically works like this

try {
command1
command2
command3
}
catch(DiskFullError E) {
messagebox("not enough free disk space\n"+E.ExtendedInformations()); // this is an expected error
}
catch(NoWritePermissionError E) {
messagebox("you don\'t have write permission in that directory\n"+E.ExtendedInformations()); // this is an expected error
}
catch(DirDoesntExistError E) {
messagebox("the directory you chose doesn\'t exist\n"+E.ExtendedInfo()); // this is an expected error
}
catch(...) {
messagebox("an unexpected error occured"); // this is where the unexpected errors are handled
}

you try to do some stuff and if something goes bad, the codes throw an exception, which can be caught by the error-handlers. and if there is no error handler for the error, then this is an unexpected error. this would crash the program, unless you do catch(...), which can also catch unknown exception types
well, in redmond it goes more like this (see MSDN)

if(!command1) {
switch(ERRNO) {
case 1: messagebox("Error code 1, contact your vendor"); break;
case 2: messagebox("Error code 2"); break;
default: messagebox("unexpected error");
}
}else {
if(!command2) {
switch(ERRNO) {
case 2: messagebox("Error code 2"); break;
case 3: messagebox("Error code 3, press F1 to see some useless hexadecimal bytes"); break;
default: messagebox("unexpected error");
}
} else {
if(!command3) {
switch(ERRNO){
case 1: messagebox("Error code 1, contact your vendor"); break;
case 4: messagebox("Error code 4, why don\'t you switch to linux?"); break;
default: messagebox("unexpected error");
}
} else {
// wohoo, nothing went bad!
}
}
}

if something goes bad, a global variable (ERRNO) is set to some error code and the functions return false. the default case takes all the values of ERRNO, that are not handled explicitly Yes, this is prehistoric and non-thread-safe error handling, but what do you expect from the masters of disaster?

Re:

[Karellen]

errno is completely thread-safe on all modern platforms. errno is allowed to be a macro, and often looks like

#define errno (*get_pointer_to_per_thread_errno())

i.e. there's a function which returns a pointer to a static, but per-thread thread-local, errno variable. The errno macro dereferences this pointer, so that reading from and assigning to "errno" still works as expected, but is a completely thread-safe manner.

Re:Unexpected error?

[jimicus]

Every error message that Microsoft has ever written is like this.

Sometimes they think to include a way of getting the full error in proper technical language across - maybe by writing to the event log or having a "click for technical details" option but more often than not they don't. As a Unix admin, it's immensely frustrating dealing with software which goes so far out of its way to be opaque.

Re:Unexpected error?

[dargaud]

I blame this kind of error messages on programmers who use exceptions. Instead of doing error checking within the routine that has the problem and crafting an error message in there, you just throw an exception, hoping for the caller to take care of it. If the caller doesn't then the exception keeps floating up until nobody has a clue to what the condition was, hence "unexpected error". I hate exceptions.

certificate expired throw error

[rs232]

"I blame this kind of error messages on programmers .."

I blame the people who designed a system where an expired certificate throws up such an error msg ...

Re:

[TheVelvetFlamebait]

I hate exceptions.

Are there no circumstance in which their use would be acceptable? ;)

Re:

[GreatBunzinni]

What you are describing isn't a problem with the exception system, as you are free to craft your exception-handling system so that it informs you exactly where the exception was thrown. If you want to blame someone then blame those who failed to learn how to use them.

Re:Unexpected error?

[b4dc0d3r]

Code reuse is the more likely problem. The biggest problem is that each component has to assume there is no UI. It could be in a GUI, or commandline, or silent mode, or a service, or whatever else, so it doesn't pop up an error message - it just returns a value.

You tell your handy security library to use the internet library to connect to the microsoft server thingie, and the internet library doesn't have any reason to know about certificates. The security library assumes the certificate will always be valid (or the network will take care of that), so it doesn't have a "bad certificate" return value. Then the app doesn't check the return values (only success/fail), or it's not in the list of things to check.

Detailing your actions makes it easier to disassemble and comprehend, so lots of proprietary coders don't do that. Bubbling up an exception could have a detailed description of why something failed, but proprietary coders don't want end users to see the gory details of what their code is doing. "Confusing error messages" is one of those things Windows users hate, so they generally either detail what you might do to fix it or, if it's too detailed or on a server instead, just skip that part.

It's nothing the user can do anything about, so why bother reporting it? Plus you need to make translations and test cases to ensure your message pops up in all languages when the cert is expired... more work when you could just ship it, and list a known risk that the server team has to keep the cert up to date.

I know, tldr. Black box programming combined with allowing ignorant users peace of mind will result in this type scenario every time. I always chuckle when I see "Table or view does not exist" errors in Oracle SQL when I can see the table in the list of ALL_USER_TABLES or similar. I don't have access to it, and revealing that it exists but I'm, not allowed to read from it might be a security violation the same way "bad username" vs "bad password" gives brute-force people more information to work with so you say "bad username/password combination" and now they don't know if the user exists. Maybe they thought of that, or maybe they tried to select, got 'denied' return code, and translated that into one they do have a text string for.

So many possibilities, of which yours is the least likely. Exceptions can be done well, there just aren't enough good examples out there so it takes a serious debugging headache before someone looks at a better way of doing it. Then Management says the errors are too wordy and you're back to "Unexpected error" meaning everything from "Network down" to "I crapped my pants".

Re:Unexpected error?

[dbIII]

The funny thing is I can read in stuff from the 1980s that doesn't even use ASCII and these clowns can't even keep files readable for six years.
Proudly brought to you by the guys that stranded a ship with a divide by zero error and halted devices for a day because they forgot about leap years. They are only ready for the "Enterprise" is you have a few spare redshirts to lose.

Re:

[Anonymous Coward]

I love these kind of messages. Everybody keeps calling me, it says here you know what is going on. WTF? I don't have a clue what you've done, just because I am the system administrator I am not telepathic or having some kind of better error messages mailed to me...
Even better, you are installing something and the dialog pops up: "Contact your system administrator". I am the fucking administrator if I wasn't I wouldn't be logged in as 'administrator'...you haven't told me what the problem is...

Thats why I am NOT an early adopter

[Provocateur]

Now that I know that this won't affect the Isolated Basement Department, I can now safely install Office 2003...

Receipt, check. Shrinkwrap off, check. Must keep original box...

A copy protection system called RMS?

[mattcsn]

Obviously, someone at Microsoft has a sense of humour.

Disillusioned

[suso]

People who call themselves "I don't believe in intellectual property" and make that text link to the EFF obviously misunderstand the purpose of the EFF.

Re:

[DavidRawling]

RMS is for controlling the documents once they are outside the organisation. They're encrypted, and you can't get the key unless the RMS server lets you have it. And only Office can decrypt, and the RMS allows the author to block the ability to do things like edit, print or forward the document to someone else.

Some customers like the idea. When we implement it, rule #1 is "You no longer have sole control of the document". IIRC, there are ways to set RMS up so that internal people always have access - it'd b

Re:Any workarounds?

[deniable]

It sounds like RMS is a good tool for pushing free software.

Re:

[ozmanjusri]

Microsoft IS a software development company.

Exactly.

And I'm so glad I backed up all of my documents to my Sidekick before this happened.

Re:

[jamesh]

Sorry AC - that's what you get when you have free will

- God

Re:

[jamesh]

But not the power to stop them making it.

Me too...

[argent]

There's been a boatload of warnings about depending on this kind of technology.

The problem is, there's been plenty of opportunities for "I told you so", and people still buy software with time bombs built into it.

Re:

[deniable]

Already used this line, but "RMS is a good tool to push free software."

Re:

[Trepidity]

More like Microsoft RMS [wikipedia.org].

Re:

[Renegrade]

No, it's correct in it's original form. It's managing Microsoft's rights to raep the customer base. Exactly like Digital Rights Management. It's like saying "rightsizing", to an extent, as well.

People just don't seem to get the context at all. Try to view it from the corporation's side.

Note that this is in no way unique to Microsoft, just about every large corporation will try to rights manage you, sooner or later. If it's big, and IT, you better have your personal lube ready, because they sure as hell