EditorsAbout the SiteComes vs. MicrosoftUsing This Web SiteSite ArchivesCredibility IndexOOXMLOpenDocumentPatentsNovellNews DigestSite NewsRSS

11.16.09

Microsoft Won’t Secure Firefox/Chrome Users, Shows More Negligence

Posted in Microsoft, Security, Vista 7, Windows at 9:19 am by Dr. Roy Schestowitz

Web browser icons

Summary: ActiveX required by Microsoft’s OneCare; investigation into Vista 7 vulnerabilities a case of “too little, too late”

MICROSOFT pretends to have changed for the better. It pretends that it allows users of Windows to use Web browsers other than Internet Explorer, but the following post — artistically titled “Microsoft being a Onecare [Wanker]“ — suggests otherwise:

For starters, it uses an ActiveX control – Internet Explorer required in other words – that’s annoyingly hard to install. You get warnings galore from Windows 7′s UAC and IE about popups and do you really really really want to install something that has the potential to roger your system well and truly?

ActiveX was designed to restrict competition by supplanting Web standards. It ended up becoming one of the biggest security nightmares out there and Novell supports this.

Here is the new story of a man who has just been fired because of these practices from Microsoft:

Linux Contractor Fired for Using Firefox/Linux

[...]

The irony? The “compentency test” was a Security & Privacy test from the four letter credit card company that HAD to be taken on MS Windows with IE?

I’ll let you be the ones to point out the obvious…the fact that this large computer/server company with three letters in their name is reportedly a “friend to Linux”. I’ll let you talk about how a Linux Professional who uses Linux as their desktop environment was denied access to employment. Employment that was based on his knowledge of Linux. Yeah, the server side…but still…

Now let’s brag about how much ground Linux has made…

And a Linux Project Manager for said company asking the question:

“What’s this Foxfire thing?”

As a secondary item of news, some days ago we argued for Microsoft liability when it comes to the latest Vista 7 vulnerability. Microsoft deserves to be accused of negligence and the following article implies deception too.

Is Microsoft Overhyping Security In Windows 7?

[...]

Microsoft has been aggressively marketing the security improvements in Windows 7, but some security experts believe this strategy could leave the software giant open to some unpleasant repercussions.

Vista 7 has been breached before and to give some examples of insecurity, we have:

Now there is the SMB flaw that Microsoft finally acknowledges.

Microsoft on Friday said it is working on a fix for a vulnerability in the Server Message Block file-sharing protocol in Windows 7 and Windows Server 2008 Release 2 that could be used to remotely crash a computer.

It really took them too long, having waited for attack code to appear before properly investigating. That’s negligence and it is irresponsible. Gregg Keizer writes:

The zero-day vulnerability was first reported by Canadian researcher Laurent Gaffie last Wednesday, when he revealed the bug and posted proof-of-concept attack code to the Full Disclosure security mailing list and his blog. According to Gaffie, exploiting the flaw crashes Windows 7 and Server 2008 R2 systems so thoroughly that the only recourse is to manually power off the computers.

Why has Microsoft waited so long before looking into the problem? Could it be that lack of security and increased fear help Microsoft sell more ‘solutions’ to those very same problems? As we showed some days ago, is clearly profiting from Conficker, for example.

Share this post: These icons link to social bookmarking sites where readers can share and discover new web pages.
  • Digg
  • del.icio.us
  • Reddit
  • co.mments
  • DZone
  • email
  • Google Bookmarks
  • LinkedIn
  • NewsVine
  • Print
  • Technorati
  • TwitThis
  • Facebook

If you liked this post, consider subscribing to the RSS feed or join us now at the IRC channels.

Pages that cross-reference this one

A Single Comment

  1. Needs Sunlight said,

    November 16, 2009 at 11:17 am

    Gravatar

    A verdict of Negligence would assume a competency or willingness to fix the problem. Likely neither are present in any measurable quantity.

    From the outside it looks more like a case of further anti-competitive behavior.

What Else is New


  1. China Bashing is Grounded in Fear (That They Can Simply Do Better Than the West)

    The atmosphere of hate towards China — fuelled partly by a white supremacist in the White House — is unhelpful and insulting; dignity and understanding is the way to go



  2. IRC Proceedings: Tuesday, February 18, 2020

    IRC logs for Tuesday, February 18, 2020



  3. FFII Press Release: Germany Can No Longer Ratify the Unitary Patent Due to Brexit and the Established AETR Case-law, says FFII

    Germany cannot ratify the current Unitary Patent due to Brexit and the established AETR case-law. The ratification of the UPC (Unified Patent Court) by Germany would constitute a violation of the AETR case-law, which was used during the EPLA negotiations in 2006 to consider a deal with non-EU countries, such as Switzerland.



  4. DRM (Proprietary Software) Already Makes Mozilla Firefox Broken, Unreliable, Undependable (Dependent on Binary Blobs)

    More people are beginning to realise that Mozilla resorted to self-harming DRM and self-inflicted damage that impacts Firefox; can Mozilla (re)join the anti-DRM coalitions?



  5. EPO and Other Patent Updates Over RSS

    Site syndication (over RSS feeds or XML/Atom) is vastly better than what became popular in recent years (censored, centralised, discriminatory "Social Control Media"); here are some feeds of interest



  6. When It Comes to a Unitary Patent System, Bad (or Intentionally Dishonest) Legal Advice Has Become the Norm

    The Unified Patent Court and Unitary Patent (UPC and UP, respectively) reinforce the old saying about lawyers being liars, doing anything to attract clients (to take their money); the UPC is basically dead, but fiction, falsehoods and outrageous fantasies still find their way into Web sites of law firms



  7. Links 19/2/2020: KDE Plasma 5.18.1, GNOME 3.36 Beta 2 and WordPress 5.4 Beta 2

    Links for the day



  8. Is Linux Foundation a Microsoft Branch Now?

    The so-called ‘Linux’ Foundation (LF) nowadays helps Microsoft cement its monopoly — the very opposite of what ages ago it said the LF would do



  9. Are Songs Property? And Maths Also Property? Artificial Monopolies Are Not Property...

    Patent maximalists continue to face stronger arguments from their sceptics, who rightly allege that words are being intentionally misused and numbers fabricated so as to distort underlying facts



  10. Battistelli Blocked Techrights at EPO (Banned for More Than 5 Years), So CEIPI Won't Respect Access to Information Either

    The use of censorship to confront people who talk about (not even expose) corruption isn't novel; but the adoption of this approach in Europe (not just places like Russia and China) is definitely noteworthy



  11. IRC Proceedings: Monday, February 17, 2020

    IRC logs for Monday, February 17, 2020



  12. Links 18/2/2020: Linux 5.6 RC2, Wine 5.2, GNU Social Contract and Sparky 2020.02 Special Editions

    Links for the day



  13. IRC Proceedings: Sunday, February 16, 2020

    IRC logs for Sunday, February 16, 2020



  14. Links 16/2/2020: MX Linux 19.1 and MyPaint 2.0

    Links for the day



  15. IRC Proceedings: Saturday, February 15, 2020

    IRC logs for Saturday, February 15, 2020



  16. Guest Article: Au Revoir, GNU/Linux

    "Funny how OSI just ended up being another vehicle for their takeover of the computing world..."



  17. Former Microsoft Employee: ZDNet is Owned by Microsoft (and Others) in Some Senses

    A noteworthy message we've received from someone who knows Microsoft from the inside



  18. Links 15/2/2020: Blender 2.82, Qt 5.15 Alpha and NetBSD 9.0 Released

    Links for the day



  19. Microsoft Views 'Open Source' as a Zero-Cost Heist Opportunity (Making Proprietary Software/Spyware Using Other People's Free Labour)

    Making GPL-licensed (copyleft) software and hosting it outside Microsoft’s jaws is the best way to counter the abusive monopolist, which still says it “loves” what it is actually attacking



  20. Did Microsoft 'Buy' ZDNet?

    A look at what ZDNet tells its readers (screenshot from this morning) and a rare look at how its writers are censored/suppressed



  21. Anatomy of a Crime and Protection From Prosecution

    It’s hard to forget what António Campinos hides for his friend



  22. Today's EPO is a Fraud Managed by Frauds

    Beneath the scandals associated with systematic abuse against staff, union-busting (silencing whistleblowers) and en masse granting of invalid patents — the hallmark of grotesque maladministration — lie a bunch of even greater crimes



  23. IRC Proceedings: Friday, February 14, 2020

    IRC logs for Friday, February 14, 2020



  24. One Need Only Look at ZDNet's 'Linux' Section to Understand It's a Microsoft Propaganda Operation

    A timely new snapshot (or screenshot) that demonstrates what ZDNet became after hiring Microsoft employees as ‘journalists’ and censoring on behalf of Microsoft, defaming Free software figures and so on



  25. Links 14/2/2020: New Release of KStars, OpenSSH 8.2, Rhythmbox 3.4.4, Flatpak 1.6.2

    Links for the day



  26. The Uselessness of Social Control Media and Why We Need RSS Feeds' Resurgence More Than Ever

    Social control media became pure noise or misinformation, usually in pursuit of financial expansion alone, and it is also a censorship machine which discourages not falsehoods but unconventional thinking



  27. Another New 'Clown' for the UPC 'Circus'

    A former writer of IPPro Magazine (which seems to be defunct now) reports another shuffle -- perhaps the fifth in a few years -- of "IP" [sic] Minister for the UK; it doesn't bode well for the Unified Patent Court (UPC)



  28. IRC Proceedings: Thursday, February 13, 2020

    IRC logs for Thursday, February 13, 2020



  29. Links 13/2/2020: Ubuntu 18.04.4 LTS, Septor 2020, Endless OS 3.7.7, Wayland 1.18.0, KDE Plasma 5.18 and GTK 3.98 Released

    Links for the day



  30. The Microsoft Propaganda Model

    Classic new examples (real screenshots) of how Microsoft-funded media entraps people looking for information about "Linux" to actually push Microsoft talking points and marketing, cover-up, face-saving lies etc.


RSS 64x64RSS Feed: subscribe to the RSS feed for regular updates

Home iconSite Wiki: You can improve this site by helping the extension of the site's content

Home iconSite Home: Background about the site and some key features in the front page

Chat iconIRC Channel: Come and chat with us in real time

Recent Posts