Eye on Security: Red Hat Explains Why Windows is Less Secure, New Windows 0-Day Attack
- Dr. Roy Schestowitz
- 2010-07-01 13:46:45 UTC
- Modified: 2010-07-01 13:46:45 UTC
Summary: Comparative security news from this week
●
Open Source is Inherently More Secure, Says Red Hat (Microsoft
admits silent patching it never discloses)
But in the closed source world, you have to trust your vendor completely. All you get to see are binaries, so you have no way of knowing how they were built. President Reagan was fond of saying to Soviet leader Mikhail Gorbachev, "Trust, but verify." With proprietary software, you simply have to trust.
Microsoft, for example, pushes out security updates on the second Tuesday of every month. Bressers said they can't do that. Microsoft has the advantage of hiding security flaws and working on them at their leisure, but with open source software, that's not possible because everyone can see that there's a problem and they expect it to be fixed right away.
And if a security hole isn't plugged quickly enough, you can fix it yourself, Bressers explained.
An example of the power of open source is the ping of death bug. Back in the late 1990s someone figured out that if you send a giant ICMP packet to a computer, just about any computer, it will crash. The bug affected every operating system, routers, printers, etc. When the problem was discovered, the open source Linux operating system had the bug squashed in about 2 hours, Bressers recalled. The closed source operating system vendors, however, took days, weeks and even months to make and distribute a patch for the ping of death.
●
Microsoft: 10,000 PCs hit with new Windows XP zero-day attack
Nearly a month after a Google engineer released details of a new Windows XP flaw, criminals have dramatically ramped up online attacks that leverage the bug.
Microsoft reported Wednesday that it has now logged more than 10,000 attacks. "At first, we only saw legitimate researchers testing innocuous proof-of-concepts. Then, early on June 15th, the first real public exploits emerged," Microsoft said in a blog posting.
●
New Windows Live Messenger has same old privacy problems
Why do I get the impression that some folks at Microsoft just don’t get it?
●
Privacy problems persist in latest Windows Messenger 2011 beta [
via]
Earlier versions of Messenger played fast and loose with your privacy. The new Live Messenger 2011, currently in beta, suffers from some of the same defects
Recent Techrights' Posts
- Protecting Whistleblowers Requires Technical Knowledge/Skills
- even the highest media judges aren't aware of how to protect sources
- Report/Benchmark Says 'Vibe Coding' Results in Security Holes
- There are risks they don't like talking about
- Record Traffic in Geminispace or Over Gemini Protocol
- it's never too late to join
- The "Alicante Mafia" - Part III - Europe's Second-Largest Organisation on Strike, Protests, Other Industrial Actions to Come Impacting Over 95% of the Workforce
- The EPO's management is highly evasive, weak, and vulnerable
- The "Alicante Mafia" - Part II - Breakout of Discontent This Winter in Europe's Second-Largest Organisation
- So far we've caused a lot of panic and stress inside Team Campinos
- The "Alicante Mafia" - Part I - An Introduction to the Mafia Governing the EPO
- Are some people 'evacuating' themselves to save face?
- At Microsoft, "Firing People is a "Cheat Code" to Pump the Stock Short-term But They Are Literally Destroying the Company's Soul Long-term."
- They frame layoffs as a "success story"
- Google News Poisons Its Own Index With More Slopfarms (Including "filmogaz")
- Naming and shaming lazy slobs who rip off other people using LLMs can work, eventually
- Naming Culprits in Switzerland
- Switzerland is highly secretive about white-collar crime
- Sanitised Plagiarism as "AI" (How Oligarchy Plots to Use Slop to Hide or Distract From Its Abuses, or Cause People Not to Trust Anything They See/Read Online)
- This isn't innovation but repression
- Recent Layoffs at Red Hat (2026 the Year of Ultimate Bluewashing)
- I found it amusing that Red Hat's CEO has just chosen to wear all blue, as if to make a point
-
- Accounts or Devices (e.g. Phones) That Get 'Burnt' Have Many Pitfalls
- Embassies and consulates habitually fail at this
- Avoiding the Spooks (Nobody Watches the Watchers, They're Practically Unaccountable)
- If more people adopt encryption, it'll be easier for us to deal with whistleblowers
- At Least 5 Women Quit Brett Wilson LLP in Recent Months. It's the Firm That Attacked My Wife and I on Behalf of Americans (One of Them Strangled Women).
- It seems like good news that the women escape this workplace
- Slop About Slop and Slop About "Linux"
- In short, avoid slopfarms
- EPO Abuses Covered in Spanish
- Knowing what we know (and heard/saw), the sinister silence of the media is perceived by some to be complicity of the lower order.
- Richard Stallman Encourages "ICE Out For Good" Protests, His Opponents Do Not (Passive and Uncaring About Human Rights)
- He has done a lot philosophically, politically, and so on
- Claim That IBM Marked 15% of its Workforce for Potential Layoffs
- No wonder we keep hearing from Red Hat people who say they hate IBM
- Over at Tux Machines...
- GNU/Linux news for the past day
- IRC Proceedings: Friday, January 16, 2026
- IRC logs for Friday, January 16, 2026
- Great Reset at IBM, the Company That Pulps Red Hat
- In 2026 many workers are RTO'ed, PIP'ed, and at Red Hat many have effectively 'left the company' and now start afresh as "IBM" staff
- J.H.M. Ray Dassen & Debian, Red Hat, GNOME unexplained deaths
- Reprinted with permission from Daniel Pocock
- Gemini Links 16/01/2026: "Porting My Main Website Over to Gemini" and Seeed Studio DevBoard
- Links for the day
- IBM Stacked and Ranked Badly, Maladministration Dooms the Company
- Now they stack people up for PIPs and layoffs ("RAs")
- Links 16/01/2026: UK Royal Family's "Legal Team Accused of Dishonesty, Fraud and Misconduct", OSI Still Controlled by Microsoft (the OSI's Spokesperson is on Microsoft's Payroll, Not Interim Executive Director, Deborah Bryant)
- Links for the day
- Writing About Corruption
- Fraud is everywhere
- The B in IBM is Brown-nosing and Buzzwords (or Both)
- International Buzzwords Machines
- IBM's 'Scientific-Sounding' Tech-Porn Won't Help IBM Survive (or Be Bailed Out)
- Who's next in the pipeline?
- IBM Was Never the Good Guy
- its original products were used for large-scale surveillance, not scientific endeavours
- The Bluewashing is Making Red Hat Extinct (They All Become "IBM", Little by Little)
- IBM does not care what's legal
- Slopfarms Push Fake News About Microsoft Shutdown, 30,000+ Microsoft Layoffs Last Year Spun as Only "15,000"
- The Web is seriously ill
- Countries Take Action Against Social Control Media and 'Smart' 'Phones', Not Slop (Plagiarised Information Synthesis Systems or P.I.S.S.)
- None of this is unprecedented except the scale and speed of sharing
- Sites That Expose Corruption Under Attack, Journalism Not Tolerated Anymore (the Super-Rich Abuse Their Wealth and Political Power)
- Sometimes, albeit not always, the harder people try to hide something, the more effective and important it is for the general public
- Links 16/01/2026: Social Control Media Curbs in Australia Underway, MElon Still Profiting by Sexualising Kids 'as a Service'
- Links for the day
- More People Nowadays Say "GNU/Linux"
- We still see many distros and even journalists that say "GNU/Linux"
- LLM Slop on the Web is Waning, But Linuxiac Has Become a Slopfarm
- I gave Linuxiac a chance to deny this or explain this; Linuxiac did not
- More Signs of Financial Troubles at Microsoft, Europe Puts Microsoft Under Investigation
- The end of the library is part of the cuts
- Team Campinos Talks About SAP Days Before EPO Industrial Actions and a Day Before the "Alicante Mafia" Series (About Team Campinos Doing Cocaine)
- EPO staff that isn't morally feeble will insist on objecting to illegal instructions
- Pedophilia-Enabling Microsoft Co-founder Cuts Staff
- Compensating by sleeping with young girls does not make one younger
- Microsoft Shuts Down Campus Library, Resorts to Storytelling About "AI" to Spin the Seriousness of It
- Microsoft is in pain
- Free Software Foundation (FSF) Back to Advertising the Talks of Richard Stallman
- A pleasant surprise
- Stack(ed) Rankings and Ongoing Layoffs at Red Hat and IBM (Failure to Keep Staff Acquired by IBM)
- IBM is mismanaged and its sole aim is to game the stock market (by faking a lot of things)
- Over at Tux Machines...
- GNU/Linux news for the past day
- IRC Proceedings: Thursday, January 15, 2026
- IRC logs for Thursday, January 15, 2026
- Gemini Links 16/01/2026: House Flood and Pragmatic Retrocomputing Dogfooding
- Links for the day
- Links 15/01/2026: Starlink Weaponised for Regime Change (by Man Who Boasted About Annexing South American Countries for Tesla's Mining), Corruption in Switzerland Uncovered by JuristGate
- Links for the day
- Linuxiac May Have Reverted Back to LLM Slop (Updated Same Day)
- Is he back off the wagon?
- GAFAM and IBM Layoffs Outline
- a lot of the layoffs happen in secrecy and involve convincing people to resign, retire, relocate etc.
- Links 15/01/2026: Internet Blackouts, Jackboots Society in US
- Links for the day
- Coming Soon: Impact With EPO Cocainegate
- Will Campinos survive 2026?
- The Last 'Dilberts' or Some of the Last Salvaged (Comic Strips Which Disappeared Shortly After They Had Been Published)
- Around the time the creator of Dilbert went silent he published some strips mocking TikTok and usage of it
- The Creator of Git Probably Doesn't Know How to Install and Deploy Git
- Nobody disputes this: Mr. Torvalds created Git
- Slop is a Liability
- Slopfarms too will become extinct because people aren't interested in them
- GAFAM is a National and International Threat to Everybody
- GAFAM is just a tentacle in service of imperialism
- EPO People Power - Part XXXVI - In Conclusion and Taking Things Up Another Notch
- They often say that the law won't deter or stop criminals because it's hard to enforce laws against people who reject the law
- Running Techrights is Fun, Rewarding, and Gratifying
- In Geminispace we are already quite dominant
- Red Hat is Connected to the Military, Its Chief Comes From Military Family (From Both Sides)
- The founder of Red Hat's parent company literally saluted Hitler himself (yes, a Nazi salute)
- Don't Cry for Gaslighting Media in a Country Which Loathes the Press
- my wife and I received threats for merely writing about Americans
- Red Hat (IBM) is Driving Away Remaining Fedora Users
- I've not used Fedora since Moonshine
- Robert X. Cringely Has Already Explained IBM's Bullying Culture (Towards Its Own Staff)
- IBM is a fairly nasty company
- Proton Mail compromise, Hannah Natanson (Washington Post) police raid & Debian
- Reprinted with permission from Daniel Pocock
- Over at Tux Machines...
- GNU/Linux news for the past day
- IRC Proceedings: Wednesday, January 14, 2026
- IRC logs for Wednesday, January 14, 2026
- Gemini Links 15/01/2026: "Ode to elinks", envs.net Pubnix and Downtime at geminiprotocol.net
- Links for the day
Comments
saulgoode
2010-07-01 14:10:44
Not just trust the vendor, but also those with whom they've shared the source code (subcontractors, governments, large corporate clients, etc).
It is noteworthy that there were claims that the recent attack on Google stemmed from sources within the Chinese government (with whom MS shares its source code), it is not that surprising that Google would quickly put an end to a situation where the malware authors get to see the Windows source code and they do not.
Dr. Roy Schestowitz
2010-07-01 14:17:26