EditorsAbout the SiteComes vs. MicrosoftUsing This Web SiteSite ArchivesCredibility IndexOOXMLOpenDocumentPatentsNovellNews DigestSite NewsRSS

06.10.10

Microsoft is Again “Sabotaging” Free Software on Windows (and Why Windows is the Least Secure Platform)

Posted in Free/Libre Software, Microsoft, Security, Windows at 9:12 am by Dr. Roy Schestowitz

Firefox search

Summary: Microsoft has once again pushed its own code into Firefox, without any consent from the users

Putting Free software only on Windows is not a smart decision. On Windows, Microsoft is in total control and Microsoft does abuse this control all the time.

When it comes to Mozilla Firefox, Microsoft is routinely tinkering with it without permission (assuming one runs it on Windows). The word “sabotaging” first came up here, with additional coverage in:

Microsoft is doing it yet again. Microsoft boosters are among the first report on it: (and yes, Ars Technica has at least two Microsoft boosters as well)

i. Microsoft hides mystery Firefox extension in toolbar update

As part of its regular Patch Tuesday, Microsoft released an update for its various toolbars, and this update came with more than just documented fixes. The update also installs an add-on for Internet Explorer and an extension for Mozilla Firefox, both without the user’s permission. As you can see in the Windows Update screenshot above, Microsoft does not indicate that the update will install anything for either browser. It’s also not really clear what the installed extension actually does.

ii. Is Microsoft pushing stealth updates to users again? This time, it’s toolbars …

I’m getting numerous reports from readers claiming that Microsoft is back to pushing stealth updates to Windows users via Windows Update. This time, the update seems related to its browser toolbars.

Readers started reporting this issue to me yesterday, when Firefox users started noticing that Extensions window was opening up when launching the browser and showing something new – Search Helper Extension.

When it comes to Microsoft’s security patches, there is a lot of secret behaviour such as the above. Microsoft claims to be handling 34 flaws this week, but there are actually more because of secret patches.

Ars Technica writes about Richard A. Clarke’s new book, which blames Microsoft for national and international security problems (Windows has a huge number and proportion of zombie PCs).

Who wrote those lines? Steve Jobs? Linux inventor Linus Torvalds? Ralph Nader? No, the author is former White House adviser Richard A. Clarke in his new book, Cyber War: The Next Threat to National Security and What to Do About It.

[...]

Money talks

Why has the national response to this problem been so slow? Lack of consensus on what to do and fear of the “R-word”—government regulation, Clarke contends. Then there’s Reason Number Five on his list, which basically boils down to “Microsoft.”

“Some people like things the way they are,” Clarke obliquely observes. “Some of those people have bought access.” Microsoft, he notes, is a prominent member of OpenSecrets.org’s “Heavy Hitters” political donor list. Most of the list’s stars are trade associations. “Microsoft is one of only seven companies that make the cut.”

The software giant’s largesse has shifted from Republicans back in the Clinton antitrust days to Obama, he continues, but the agenda is always clear: “Don’t regulate security in the software industry, don’t let the Pentagon stop using our software no matter how many security flaws it has, and don’t say anything about software production overseas or deals with China.”

Clarke tries to be fair. He notes that Microsoft didn’t originally intend its software for critical networks. But even his efforts at fairness are unflattering. Microsoft’s original goal “was to get the product out the door and at a low cost of production,” he explains. “It did not originally see any point to investing in the kind of rigorous quality assurance and quality control process that NASA insisted on for the software used in human space-flight systems.”

But people brought in Microsoft programs for critical systems anyway. “They were, after all, much cheaper than custom-built applications.” And when the government launched its Commercial Off-the-Shelf program (COTS) to cut expenses, Microsoft software migrated to military networks. These kind of cost cutting reforms “brought to the Pentagon all the same bugs and vulnerabilities that exist on your own computer,” Clarke writes.
Floating i-brick

The former White House advisor cites the 1997 USS Yorktown incident as a consequence. The Ticonderoga-class ship’s whole operational network was retrofitted with Windows NT. “When the Windows system crashed, as Windows often does, the cruiser became a floating i-brick, dead in the water.”

In response to this “and a legion of other failures,” the government began looking into the Linux operating system. The Pentagon could “slice and dice” this open source software, pick and choose the components it needed, and more easily eliminate bugs.

“Never mention Windows and security in the same breath,” writes Sam Varghese in the headline of another new article. It refers to the dishonest "damage control" from Microsoft after Google's mass-desertion, as seen last week.

If I had a dollar for every time Microsoft was forced to defend the abysmal security of its Windows operating system, I would probably be lying on a beach in the Bahamas and sipping a cocktail right now, with my financial future secured.

The latest defence, from Windows communications manager Brandon LeBlanc, has as many holes as Windows does in its security armoury.

As my colleague Jake Widman reported earlier today, LeBlanc took issue with a story stating that Google was moving its internal workstations away from Windows to OSX and GNU/Linux due to Windows’ poor security.

In his response, LeBlanc talks of security issues with the Mac and Google too. That isn’t the point – no system or company is perfect.

We are talking here about the relative security of various operating systems – and Windows is, without any doubt, the worst. Put it up against OpenBSD, Solaris, NetBSD, FreeBSD, GNU/Linux, OpenSolaris, or any other, Windows comes out last when it comes to security.

“Being virus and malware-free” is another new article about escaping Windows (like Google did, for security reasons). The haven from security problem really is seen as a reason to embrace software freedom, not just an afterthought or excuse.

Share this post: These icons link to social bookmarking sites where readers can share and discover new web pages.
  • Digg
  • del.icio.us
  • Reddit
  • co.mments
  • DZone
  • email
  • Google Bookmarks
  • LinkedIn
  • NewsVine
  • Print
  • Technorati
  • TwitThis
  • Facebook

If you liked this post, consider subscribing to the RSS feed or join us now at the IRC channels.

Pages that cross-reference this one

What Else is New

  1. Links 22/5/2012: Google/Motorola Deal Secured, Chrome Passes IE

    Links for the day

  2. Links - Explorer Goes Down, Oracle Judge is Coder



  3. Links 21/5/2012: Linux 3.4 Released, Dream Studio 12.04

    Links for the day

  4. Articles Against Software Patents and Patent Trolls

    An accumulation of recent articles on matters such as patent trolls, which mostly use software patents based on a recent survey

  5. New Zealand (NZ) Patent Debates Expand

    The kiwi (NZ) press turns its attention to a patent controversy other than the question of software patenting

  6. AOL Helps Microsoft Infiltrate, Harm Open Source Communities, Feeds Facebook With Google-Hostile Patents

    Microsoft is preying on AOL funds and patents

  7. 'Piracy' and 'Discount' Propaganda Used to Kick Free Software Out of Governments in Favour of Microsoft Deals

    A look at new tactics and moves which omit freedom and autonomy from nations foreign to Microsoft

  8. Sun: Interoperability More Important Than Patents

    An old position paper from Sun Microsystems helps shows a certain resistance to patents such as those which Oracle uses against Android

  9. In Motorola Case, Microsoft Boosters Use Slashdot for Anti-Linux/Android Patent Propaganda

    Covering what's right/correct -- not what's wrong/incorrect -- about the Microsoft case against Motorola/Android

  10. Microsoft Tax on Everything

    The company which hardly pays any tax is busy trying to tax GNU/Linux, Android, and all hardware in the OEM channel

  11. Links 19/5/2012: Mandriva Linux Freed, New Linux Mint RC

    Links for the day

  12. Apple Patent Wars Make Android Devices Less Attractive, Everyone Suffers

    Bits of patent news regarding Apple and its patents

  13. Defeat for Software Patents in the United Kingdom

    Wise words from a prominent Linux figure and news from the UK

  14. BSA and IDC Systematically Lie to the Public, Distort Press Coverage

    IDC and the Business Software Alliance (BSA) liaise once again in order to give ammunition to lobbyists of proprietary and copyright conglomerates

  15. Links 17/5/2012: “Bio Computer” Runs Linux, Raspberry Pi Grows

    Links for the day

  16. IRC Proceedings: May 11th-May 16th, 2012

    IRC logs for May 11th, 2012 (and subsequent days until May 16th)

  17. IRC Proceedings: May 5th-May 10th, 2012

    IRC logs for May 5th, 2012 (and subsequent days until May 10th)

  18. IRC Proceedings: April 29th-May 4th, 2012

    IRC logs for April 29th, 2012 (and subsequent days until May 4th)

  19. Android Under Patent Attacks From Nokia, Microsoft, and Oracle

    A roundup of patent news involving Android and the US patent/copyright system, which facilitates ridiculous patents or lawsuits over APIs

  20. Helping OpenSUSE is Helping Microsoft Tax GNU/Linux

    A short wave of calls to refrain from OpenSUSE promotion, which through the upstream is helping Microsoft, the sponsor

  21. Microsoft May Face Federal Action for Blocking Rival Web Browsers on ARM

    Mozilla's call for action is taken seriously by people at The Hill (Washington)

  22. Links 16/5/2012: 125,000 GNU/Linux Machines for Pakistani Students, Android 4.0 Rollouts

    Links for the day

  23. Links 15/5/2012: Linux 3.4 is Near, Mandriva to Have More Releases

    Links for the day

  24. Links - TPP Meeting Infiltrated, More Protest Needed.



  25. Europe Rules Against Monopolies on APIs

    The case against Android notwithstanding, the highest European court rules that APIs cannot be covered by copyrights

  26. Microsoft Versus Education

    A bit of news/commentary on Microsoft in education (indoctrination)

  27. Patents Are Never 'Open Source'

    The disinformation tactic which ascribes patents to FOSS as seen in the news

  28. Signs of Progress: Work for Microsoft, Get Ostracised From Panels/Public Consultations

    Convinced monopolist Microsoft has its moles' voice invalidated, based on the conflict of interest (Microsoft versus the public)

  29. Links 14/5/2012: Linux Kernel 3.3.5, Wine 1.5.4

    Links for the day

  30. Links 13/5/2012: Xfce 4.10, KDE 4.8.3, GNOME 3.5.1, GIMP 2.8

    Links for the day

RSS 64x64RSS Feed: subscribe to the RSS feed for regular updates

Home iconSite Wiki: You can improve this site by helping the extension of the site's content

Chat iconIRC Channel: Come and chat with us in real time

Recent Posts