11.02.11

Gemini version available ♊︎

New Flaws in Windows Kernel and the Borderline Impossibility of Post Mortems

Posted in Kernel, Microsoft, Security, Windows at 6:06 pm by Dr. Roy Schestowitz

Coal mine

Summary: A couple of new posts/articles about Microsoft Windows and what they teach us about this platform’s viability

THE PLATFORM which made “computer viruses” analogous and often synonymous with Windows viruses just keeps delivering and disappointing every time. According to this, the Windows kernel has unpatched flaws with exploits out there. To quote:

The Duqu malware used to steal sensitive data from manufacturers of industrial systems exploits at least one previously unknown vulnerability in the kernel of Microsoft Windows, Hungarian researchers said.

It is without great shock that we also learn why Windows can never be used reliably on a server, which — if compromised — makes is hard to diagnose the cause. To quote a new post:

Imagine if there were 50 PCs, 100, or more. I would be scared to look and see what other errors are occurring on other Windows 7 PCs in the company. Administrators have better things to do, than comb through useless log files. Way to go Microsoft, a quality operating system here with Windows 7. It’s no wonder Windows isn’t used for mission critical appliances, and GNU/Linux is instead. I’m not saying that GNU/Linux logs are the best, but they are pretty good and usually have information that I can use, to help pinpoint the error a little bit. GNU/Linux does not, and I repeat, does not have this amount of useless garbage in its logs like Windows does.

How long before Microsoft Jack appears at the scene to produce some promotional Microsoft comments in ZDNet UK? Usually it does not take long for Microsoft zealots like Jack to do this in that site.

A reader sent us some more links, one about the decline of Microsoft’s Web browser and another titled “Microsoft unlikely to patch Duqu kernel bug next week” (evidently).

“Time [for the] world to choose Linux,” concluded our reader.

Share in other sites/networks: These icons link to social bookmarking sites where readers can share and discover new web pages.
  • Reddit
  • email

Decor ᶃ Gemini Space

Below is a Web proxy. We recommend getting a Gemini client/browser.

Black/white/grey bullet button This post is also available in Gemini over at this address (requires a Gemini client/browser to open).

Decor ✐ Cross-references

Black/white/grey bullet button Pages that cross-reference this one, if any exist, are listed below or will be listed below over time.

Decor ▢ Respond and Discuss

Black/white/grey bullet button If you liked this post, consider subscribing to the RSS feed or join us now at the IRC channels.

5 Comments

  1. Michael said,

    November 2, 2011 at 6:48 pm

    Gravatar

    FUD:

    THE PLATFORM which made “computer viruses” analogous and often synonymous with Windows viruses just keeps delivering and disappointing every time.

    There was a time not too long ago when this was largely true – but now a new OS has become almost as malware infested as Windows. That OS: Android. Yes, Android *Linux*.

    http://security.cbronline.com/news/android-becomes-top-platform-for-malware-kaspersky-lab-271011
    Android becomes top platform for malware: Kaspersky Lab

    Oh, and funny how Roy does not mention that I am the one who alerted him about IE dropping to below 50%. Just funny. I brought it to his attention in COLA. Maybe someone else did, too? Maybe not?

    NotZed Reply:

    You continue to demonstrate a deliberate and offensive lack of reading comprehension skills. ‘made’ is past tense, and thus the current situation is simply irrelevant, however fuddish and inaccurate your take on the current situation is.

    So apart from some professional help with your stalking problem, it seems you need some primary-school level English lessons as well, or perhaps a refresher on English as a second language?

    Michael Reply:

    Insults. Check.
    Accusations. Check.
    No point made. Check.

    Maybe you just wanted to show how angry and irrational you could be?

  2. mcinsand said,

    November 2, 2011 at 9:16 pm

    Gravatar

    Microsoft guaranteed that Windows would be a virus magnet when they welded the desktop to the kernel and then, even worse, the browser and dozens of other utilities, as well. By having a megalithic architecture, a virus that exploits a weakness in one corner can easily own the system. Those decisions may have fended of DR-DOS, Geoworks, Netscape, and a host of other competitors, but they put Windows into a terrible position now. Only Windows has such a security-impossible structure; no other system is so anti-modular. What is hilarious are the cries that Windows is only hit more because of market share, which is pure baloney. Which will a vandal with a stone target, the glass house or the brick fortress? If a burgular wants to break in, would he tackle the building with many doors that have halfway functional locks or a standard construction bank?

    This is a major security issue, because so many people use Windows for transactions, for instrument and production control, and economy-critical operations. A well-crafted virus combined with a system so impossible to secure well could set up a country for an electronic Pearl Harbor.

    Michael Reply:

    The only OSs where a user has to worry about malware are Windows and Android (Linux). OS X and iOS users have *some* risk, but significantly less than users of those OSs.

DecorWhat Else is New


  1. Links 19/1/2022: XWayland 22.1 RC1 and OnlyOffice 7.0 Release

    Links for the day



  2. Links 19/1/2022: ArchLabs 2022.01.18 and KDE's 15-Minute Bug Initiative

    Links for the day



  3. When Twitter Protects Abusers and Abuse (and Twitter's Sponsors)

    Twitter is an out-of-control censorship machine and it should be treated accordingly even by those who merely "read" or "follow" Twitter accounts; Twitter is a filter, not a news/media platform or even means of communication



  4. IRC Proceedings: Tuesday, January 18, 2022

    IRC logs for Tuesday, January 18, 2022



  5. Links 19/1/2022: Wine 7.x Era Begins and Istio 1.12.2 is Out

    Links for the day



  6. Another Video IBM Does Not Want You to Watch

    It seems very much possible that IBM (or someone close to IBM) is trying to purge me from Twitter, so let’s examine what they may be trying to distract from. As we put it 2 years ago, "Watson" is a lot more offensive than those supposedly offensive words IBM is working to purge; think about those hundreds of Red Hat workers who are black and were never told about ethnic purges of blacks facilitated by IBM (their new boss).



  7. What IBM Does Not Want You to Watch

    Let's 'Streisand it'...



  8. Good News, Bad News (and Back to Normal)

    When many services are reliant on the integrity of a single, very tiny MicroSD card you're only moments away from 2 days of intensive labour (recovery, investigation, migration, and further coding); we've learned our lessons and took advantage of this incident to upgrade the operating system, double the storage space, even improve the code slightly (for compatibility with newer systems)



  9. Someone Is Very Desperate to Knock My Account Off Twitter

    Many reports against me — some successful — are putting my free speech (and factual statements) at risk



  10. Links 18/1/2022: Deepin 20.4 and Qubes OS 4.1.0 RC4

    Links for the day



  11. Links 18/1/2022: GNOME 42 Alpha and KStars 3.5.7

    Links for the day



  12. IRC Proceedings: Monday, January 17, 2022

    IRC logs for Monday, January 17, 2022



  13. Links 17/1/2022: More Microsoft-Connected FUD Against Linux as Its Share Continues to Fall

    Links for the day



  14. The GUI Challenge

    The latest article from Andy concerns the Command Line Challenge



  15. Links 17/1/2022: digiKam 7.5.0 and GhostBSD 22.01.12 Released

    Links for the day



  16. IRC Proceedings: Sunday, January 16, 2022

    IRC logs for Sunday, January 16, 2022



  17. Links 17/1/2022: postmarketOS 21.12 Service Pack 1 and Mumble 1.4 Released

    Links for the day



  18. [Meme] Gemini Space (or Geminispace): From 441 Working Capsules to 1,600 Working Capsules in Just 12 Months

    Gemini space now boasts 1,600 working capsules, a massive growth compared to last January, as we noted the other day (1,600 is now official)



  19. [Meme] European Patent Office Space

    The EPO maintains a culture of illegal surveillance, inherited from Benoît Battistelli and taken to a whole new level by António Campinos



  20. Gemini Rings (Like Webrings) and Shared Spaces in Geminspace

    Much like the Web of 20+ years ago, Gemini lets online communities — real communities (not abused tenants, groomed to be ‘monetised’ like in Facebook or Flickr) — form networks, guilds, and rings



  21. Links 16/1/2022: Latte Dock 0.11 and librest 0.9.0

    Links for the day



  22. The Corporate Cabal (and Spy Agencies-Enabled Monopolies) Engages in Raiding of the Free Software Community and Hacker Culture

    In an overt attack on the people who actually did all the work — the geeks who built excellent software to be gradually privatised through the Linux Foundation (a sort of price-fixing and openwashing cartel for shared interests of proprietary software firms) — is receiving more widespread condemnation; even the OSI has been bribed to become a part-time Microsoft outsourcer as organisations are easier to corrupt than communities



  23. EPO's Web Site Constantly Spammed by Lies About Privacy While EPO Breaks the Law and Outsources Data to the United States

    The António Campinos-led EPO works for imperialism, it not only protects the rich; sadly, António’s father isn’t alive anymore and surely he would blast his son for doing what he does to progress his career while lying to staff and European citizens



  24. Links 16/1/2022: Tsunami and Patents

    Links for the day



  25. IRC Proceedings: Saturday, January 15, 2022

    IRC logs for Saturday, January 15, 2022



  26. Links 16/1/2022: Year of the GNU/Linux Desktop and Catch-up With Patent Misinformation

    Links for the day



  27. Patrick Breyer, Unlike Most German Politicians, Highlights the Fact That Unified Patent Court (UPC) and Unitary Patent Are Incompatible With EU Law

    A longtime critic of EPO abuses (under both Benoît Battistelli and António Campinos leadership), as well as a vocal critic of software patents, steps in to point out the very obvious



  28. Links 15/1/2022: Flameshot 11.0 and Libvirt 8.0

    Links for the day



  29. Blogging and Microblogging in Geminispace With Gemini Protocol

    Writing one’s thoughts and other things in Geminispace — even without setting up a Gemini server — is totally possible; gateways and services do exist for this purpose



  30. Links 15/1/2022: Raspberry Pi in Business

    Links for the day


RSS 64x64RSS Feed: subscribe to the RSS feed for regular updates

Home iconSite Wiki: You can improve this site by helping the extension of the site's content

Home iconSite Home: Background about the site and some key features in the front page

Chat iconIRC Channel: Come and chat with us in real time

Recent Posts