02.14.09

Never Blame Microsoft, Blame Users and Exploits

Posted in Microsoft, Security, Vista 7, Windows at 6:45 am by Dr. Roy Schestowitz

“Our products just aren’t engineered for security.”

Brian Valentine, Microsoft executive

Microsoft was trying to deflect the blame away from its highly insecure software and onto people who write the exploit/s to take advantage. With the help of the BBC, which it had corrupted, Microsoft proceeded to blaming computer users for Microsoft’s shoddy engineering that is even killing people. LinuxToday has a strong rebuttal:

And too stupid or dishonest to report Microsoft Windows as the defective disaster that it is. If it were any other type of product it would have banned from every country in the world long ago. The BBC reports the latest Windows Conficker worm outbreak in typical “oh no big deal” fashion, does not identify this as a Windows worm until several paragraphs into the article, quotes industry security vendors as though they were actually worth listening to and not useless weasels, and then blames end users:

“The worm is spreading through low security networks, memory sticks, and PCs without current security updates…
“”Microsoft did a good job of updating people’s home computers, but the virus continues to infect business who have ignored the patch update…
“”Of course, the real problem is that people haven’t patched their software,” he added.

Please excuse me while I go kick something. Of COURSE it’s the users’ fault. They’re still using this most expensive piece of defective crapware in the entire solar system. But its incurable defects are not their fault. (We need to give up the notion that such computer users can be rescued by Linux– we don’t WANT them using Linux. “It is impossible to make anything foolproof, because fools are ingenious”.)

IDG identified flaws in Windows’ update mechanism, but besides, it doesn’t really matter if Microsoft patched the flaw. Why was such a huge flaw there in the first place?

Windows Update Shows Its Quirky Side

[...]

While installing the updates, my firewall asked about allowing outbound access to a program running from the E disk, an external hard drive. This was the first time I’ve seen Windows Update stomp on anything outside of the C disk. The computer had other hard disk partitions with higher letters of the alphabet, so my guess is that it chose the E disk because it had the most available hard disk space.

As we showed before, Vista 7 will change absolutely nothing. In fact, according to some early analyses, Vista 7 may be less secure than Vista, which is far from secure. Here is the very latest:

White hat hackers have created a proof of concept demo illustrating how improved User Account Control (UAC) features in Windows 7 might be completely bypassed.

More here.

Vista 7 starts now

Share in other sites/networks: These icons link to social bookmarking sites where readers can share and discover new web pages.
  • Reddit
  • email

If you liked this post, consider subscribing to the RSS feed or join us now at the IRC channels.

Pages that cross-reference this one

2 Comments

  1. amd-linux said,

    February 14, 2009 at 9:18 am

    Gravatar

    This is just in:

    German Federal Forces are shuting down several hundreds of their computers, as several locations are hit by Conficker, a worm that infects Microsoft Windows computer systems.

    http://www.spiegel.de/netzwelt/web/0,1518,607567,00.html

    (the news source is Germany’s largest online news website, so this is no rumour or MS bashing but a sad fact).

  2. Charles Norrie said,

    February 15, 2009 at 2:51 am

    Gravatar

    With Windows 7 the Gates sufferer is on version 8 of the flawed GUI 3.0, 3.1, 95, 98, 2000, XP, Vista and now 7. That’s 8 in 14 years, nearly 2 years an offering. Ubuntu debuts a new version twice a year, seamlessly upwardly compatible, and both the code and the upgrades free. I bet there are still some buggy old 3.1 boxes out there.

    Every time a new one comes out you think ‘Surely Windows will have fixed that bad old kernel once and for all’.

    They NEVER do. I think they know that if they do, they won’t sell any more of the rubbish again! Therefore income will collapse. After the founder is selling stock!

    My idea for Windows 8 is that they take Ubuntu Jaunty Jackalope, rebadge it as Win8. Under the rules they can sell it for what they want, and there will be fools who will buy. All marketing advertising, legal and development staff will be fired. Source code would be issued under the GPL licence. Like Canonical the new behemoth would make a reasonable income from selling training and the like (say $100M/year). W8 users will have the best offering they’ve ever had, and the rest of use could go on using our shiny Linux versions.

What Else is New


  1. Nine Documents About the Financial Siege Against EPO Staff (Past, Present, and Future)

    Today we release dozens of pages of letters and documents (internal to Europe's second-largest institution); they all focus on the betrayal and skulduggery, crushing staff in spite of what was originally promised (and what workers actually signed up for)



  2. EPO Senior Management (Cabal) “Essentially Deaf to the Proposals From Staff Representatives.”

    Representatives of EPO staff feel like the management of the EPO is "deaf" and uncaring; there's hardly any meaningful progress (or none whatsoever) when it comes to truly honest dialogue with real participation



  3. EPO Management, Led by António Campinos, Attempted to Stifle or Prevent Staff From Being Surveyed

    Battistelli's cabal, which covers up a lot of fraud and corruption, is attempting to prevent the staff from expressing an opinion (for insiders and perhaps outsiders to assess) because things are really bad and autocratic measures are seen as necessary to keep the lid on issues/abuses



  4. The European Patent Office's Central Staff Committee: Office Cannot Recruit Fit-for-Purpose Patent Examiners Anymore

    One third of EPO recruits are 'locals' (Germans), 0.2% are Swiss, 1% Scandinavian; the EPO as an employer became unattractive and it's unable to attract the staff it needs (as was projected and planned when the EPC was agreed upon)



  5. IRC Proceedings: Friday, November 27, 2020

    IRC logs for Friday, November 27, 2020



  6. Links 27/11/2020: Jolla is 7, Diffoscope 162, MNT Reform Production

    Links for the day



  7. The Time Coronavirus Helped EPO Management Prevent Staff From Protesting and Going on Strike (March 26th)

    "In view of the spreading of the New Corona Virus, the planned General Assemblies have to be cancelled," the Staff Union of the European Patent Office (SUEPO) wrote in the wake of the crisis across Europe back in March (weeks ahead of a planned strike)



  8. Guarding Your Privacy With E2EE: Primer

    "As with all security, there is assumed risk no matter how careful you are. There are no security guarantees but that doesn't mean you shouldn't try."



  9. Links 27/11/2020: Systemd 247 and Cockpit 233

    Links for the day



  10. A Free Speech Deficit Harms Software Freedom

    Free software and Software Freedom cannot possibly succeed if we keep accepting or even just tolerating systematic censorship of opinionated people in our community; failing to speak out on this matter (for fear of supposedly offending someone, risking expulsion) is part of the problem — complicity by passivity



  11. Perception of Difficulty

    New poem by figosdev



  12. IRC Proceedings: Thursday, November 26, 2020

    IRC logs for Thursday, November 26, 2020



  13. Cartoon: After Gambling With Workers' Savings the EPO Can Do Real Estate

    New EPO cartoon from EPO insiders (the one on the right certainly looks a lot like António Campinos and the one on the left can be his EUIPO ‘import’ or Benoît Battistelli‘s INPI ‘import’)



  14. Free as in Freedom Should Not be Associated With Cost

    It's important to remind people that so-called 'free' services (Clown Computing, centralised spaces that 'farm' their so-called 'users') aren't really free; we need to advocate freedom or free-as-in-freedom alternatives



  15. [Meme] UPC's Pyrrhic Victory

    Contrary to what Team UPC says, what happened earlier today is hardly a breakthrough



  16. Many Thanks to Free Software, the Demise of Software Patents (in Europe and the US), and So Much More

    On a positive note we're heading into the end of November, one month before Boxing Day; we take stock of patent affairs that impact software developers



  17. Links 26/11/2020: PHP 8.0, Proxmox VE 6.3, UNIGINE 2.13

    Links for the day



  18. 29,000 Blog Posts and Recent Site Improvements

    Over 29,000 blog posts have been posted here, but more importantly we've made the site a lot more robust and resilient, accessible in more formats and protocols (while improving transparency, too)



  19. [Meme] Trump is Out. Now It's Time to Pressure the Biden Administration/Transition Team on Software Freedom Issues.

    The Biden transition is in motion and tentative appointments are underway, based on news reports (see our Daily Links); now is the time to put pressure, e.g. in the form of public backlash, to ensure it's not just another corporate presidency



  20. Boycott ZDNet Unless You Fancy Being Lied to

    ZDNet's Catalin Cimpanu continues to lead the way with misinformation and lies, basically doing whatever he was doing to land that job at ZDNet (after he had done the same elsewhere)



  21. The UPC and Unitary Patent Song

    On goes the UPC symphony, as the Unified Patent Court (UPC) is almost here, always coming "real soon!"



  22. Open Letter to the German Greens on UPC and Software Patents: Don’t Betray Your Voters and Your Promises, or You Will Regret it

    Dear Members of the German Greens in the Bundestag. By Benjamin HENRION.



  23. [Meme] One Step Away From Replacing Patent Examiners With 'Hey Hi' (AI)

    If it's not legal for 'Hey Hi' (AI) to get a patent, why should it be legal for patents to be granted by those who are invisible (and sometimes in de facto house arrest)?



  24. European Patent Office (EPO) Reduced to 'Justice Over the Telephone' and Decree by E-mail

    The EPO is trashing the EPC and everything that the Office was supposed to stand for, as it wrongly assumes demand for monopolies (typically from foreign corporations) comes before the rule of law and Europe's public interest



  25. Making Free Software Work for Users

    The latest reply to a non-developer concerned about software freedom; guest post by figosdev



  26. IRC Proceedings: Wednesday, November 25, 2020

    IRC logs for Wednesday, November 25, 2020



  27. Links 26/11/2020: AV Linux 2020.11.23 and Blender 2.91 Release

    Links for the day



  28. Links 25/11/2020: GamerOS and Biden Transition in Motion

    Links for the day



  29. An Orwellian December

    With December around the corner and states tightening the screws on the population (or employers on employees) at least we can look forward to spring



  30. The Non-Technical (or Lesser Technical) Software User That Wants Software Freedom

    Assuming that Free software should care about what users — not only developers — really want (and need) it’s important to understand how they view the current situation (with growing waves of corporate takeover and compromises, even expulsions)


RSS 64x64RSS Feed: subscribe to the RSS feed for regular updates

Home iconSite Wiki: You can improve this site by helping the extension of the site's content

Home iconSite Home: Background about the site and some key features in the front page

Chat iconIRC Channel: Come and chat with us in real time

Recent Posts