Bonum Certa Men Certa

Another Reason to Avoid Mono: Security

"At Microsoft I learned the truth about ActiveX and COM and I got very interested in it inmediately [sic]."

--Miguel de Icaza



For reasons and factors that make OOXML not secure, Mono is a security hazard as well. For those who are not yet convinced, there is this brand-new article which highlights the architectural failures of .NET and their impact on security. Read it.



Two security researchers have developed a new technique that essentially bypasses all of the memory protection safeguards in the Windows Vista operating system, an advance that many in the security community say will have far-reaching implications not only for Microsoft, but also on how the entire technology industry thinks about attacks.


Also in the news today is this alarming issue of 7 "critical" flaws (the highest level of severity) in Microsoft software.

Does anyone want GNU/Linux to inherit this nightmare? Is this something which belongs in the operating system which NASA, the NSA and the Department of Defense use? What about the cost implications? Beyond the issue of acquisition cost also exist the costs of maintenance, repair, and damage control. Losses incurred by leaks (espionage) and data loss are sometimes invaluable.

A few hours ago, one reader sent us the following message regarding the consequences of poor security.




Note that the bad engineering promoted by Bill Gates and his movement is probably costing Joe Sixpack upwards of 8 hours lost effort per week from malware, instability and poor interoperability. With the US in the economic situation it is in, that may be enough to knock the floor out of the recession. The failure that is Microsoft Vista may be the last straw and take down what's left of the economy.

“The failure that is Microsoft Vista may be the last straw and take down what's left of the economy.”Until recently, Microsoft people have been able to stifle security information. However, the EFF's recent win paves the way forward for better technology to become more visible.

I look forward to the seeing Back-To-School Security Packets in Walmart, Best Buy, and others consisting of Xubuntu CDs.

The last 10 years have shown us nothing if not that FOSS helps make your business more recession-proof.

What we have here is an old and odd spin trotted out yet another time. The spin tries to be negative, but at the end of the day, use of FOSS has boosted the economy there by some $60 billion on unnecessary sunk costs.

Further, since were FOSS tends to lead, it leads due to better performance, quality, interoperability and maintenance, not just cost. So that leads to secondary and tertiary savings. After all, if the IT team is not having to spend all its time chasing fires, it can be far more than $60 billion in savings once the total cost of ownership is settled.

Sure a small wedge of the software sellers might have lost, but the large part of the pie consists of software users. We win here.

____ 1) "EFF Wins Protection for Security Researchers" (2007)

2) "Vista's Security Rendered Completely Useless by New Exploit" (2008) "... a technique that can be used to bypass all memory protection safeguards that Microsoft built into Windows Vista..." "... the work is a major breakthrough and there is very little that Microsoft can do to fix the problems..."

3) "This Bug Man Is a Pest" (2008) "...His syllabus is partly a veiled attack on McAfee, Symantec and their ilk, whose $100 consumer products he sees as mostly useless. If college students can beat these antivirus programs, he argues, what good are they for the people and businesses spending nearly $5 billion a year on them? ..."

4) "USENIX WOOT07, Exploiting Concurrency Vulnerabilities in System Call Wrappers, and the Evil Genius" (2007)




For those wondering about highly-restrained criticism of Microsoft/Windows security, a mandatory background would be the smear campaigns against security researchers. Smear campaigns are something that Microsoft is intimately familiar with [1, 2, 3, 4, 5, 6, 7, 8, 9]. Remember the Geer saga, too [1, 2] (little more in [1, 2, 3]). He lost his job for saying the truth about Microsoft's security shortcomings and the horrific state of the Web, caused largely by Microsoft and its back doors.

Recent Techrights' Posts

Daniel Pocock as Independent Candidate, Now in The London Standard
"Daniel Pocock is an independent candidate."
Andy Burnham as National Leader Would be Excellent for Techrights
Burnham has envisioned a British "centre of power" (or gravity) that moves northwards, isn't concentrated in the southeast anymore
In Defence of Courts' Privacy Policies
If you want friends, go offline. Meet real people and share real experiences.
Why I Quit Academic Career (or Academia) Nearly 15 Years Ago
I am told by people who stayed that it has only gotten worse
EPO "Cocaine Communication Manager" - Part XV - Nazi-Like Thinking at the European Patent Office (EPO) Not a Thing of the Past
antisemitism inside the EPO
Daniel Pocock Running for Office Again, Clacton-on-Sea By-election
By-election - code name "Pocock-on-Sea"
 
In Free Software, Nobody Gets Fired
Way to own one's code and project
PIP-Styled Mass Layoffs Allegedly Coming to Microsoft by 12 August 2026
Microsoft has been doing "silent layoffs" (PIPs and more) for quite some time
Daniel Pocock's Candidacy (Election of Member of Parliament) Mentioned in BBC and Over a Dozen News Sites Since Yesterday
Funnily enough, albeit not surprisingly, the same people who attack Pocock also attack us
Links 18/07/2026: Spotify Uses Slop Song Descriptions, "San Francisco Demands Removal of Nudify Apps"
Links for the day
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Friday, July 17, 2026
IRC logs for Friday, July 17, 2026
Gemini Links 18/07/2026: A Manifesto by The Dissident, Shokz Headphones, and Gemini Tinylog Reader (GTL)
Links for the day
IBM Already Tentatively Down for Next Week (Monday) After Its Worst-Ever Week
What a week for IBM!
Links 17/07/2026: Protests Erupt Throughout Ukraine and Anthropic Caught Secretly Spying on Users
Links for the day
Gemini Links 17/07/2026: "Silence Doesn't Mean Abandoned", Revisiting PalmOS in 2026
Links for the day
Farage Out, Daniel Pocock in?
Can Pocock beat his previous voting record?
Layoffs at Microsoft Are Massive, Go Under the Radar for the Most Part
Microsoft is in a really bad shape
One Heck of a Week for IBM, the 'Grandpa' of 'High-Tech', International Business Machines Corporation (NYSE:IBM) Under Investigation by Bronstein, Gewirtz & Grossman, LLC
If IBM gets busted or might be busted, will the CEO jump, get pushed, or be arrested?
“Why Open Source Misses the Point of Free Software”
As Dr. Richard Stallman once put it
GNU/Linux Grows at the Expense of Microsoft Windows in Croatia, Now Close to 8%
Croatia has been mentioned a lot lately in relation to EPO "lobbying" (vote-rigging)
27-Year IBM Veteran on IBM: "Worse than the Titanic and Perhaps Just Like Madoff, Enron, etc."
several comments we saw today envisioned the CEO of IBM in an orange suit (in US prison)
ServiceNow/ServiceLine and Slop at the EPO is Becoming a Health Risk to Staff
PD44 has historically been the oppressor at the EPO
IBM Can Burn Pensioners to Appease Wall Street and Protect the Billionaire CEO With His Humongous Bonuses
Its stock it set to open 2.82% in the red
IBM SHAREHOLDER INVESTIGATION: Potential Securities Claims Involving International Business Machines (IBM)
there's a risk of criminal action against executives
Tux Machines Moving Onwards and Upwards
"...tasks expand to fill the time available"
The Register MS is Publishing Spam for Gartner Group to Spread Hype About "AI", Mentioned 30 Times in the Paid (Fake) Article
One sure thing is, the so-called 'tech media' is profoundly compromised by American corporations
"Market Share" of GNU/Linux Nearly Trebled in Cambodia This Month
GNU/Linux is still measured at 8% by statCounter
GitHub is Dying (Traffic Down Despite Bots and Slop), Microsoft Will Eventually Cull it - Just Like XBox - to Limit the Losses
Do not stay on GitHub (Microsoft) under the false assumption that it is "free hosting" or will always be around
Teaser: Daniel Pocock is About to Go Mainstream Again
Stay tuned, Pocock has something in store
Microsoft Has Just Been Sued Over Layoffs
If the rumours are true, there is yet another wave of layoffs at Microsoft
Richard Stallman Always Cautioned, Upfront, That His Political Views Were Wholly Separate From His Scientific Work or GNU
Notice that he already spoke a lot about politics
Links 17/07/2026: Microsoft is Cutting OneDrive Coverage, Larry Ellison Sued by Paramount Investor
Links for the day
Nichirei and Asahi Beer Need to Take Cyberattacks as Hint of Opportunity to Move to Free Software
Windows TCO
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Thursday, July 16, 2026
IRC logs for Thursday, July 16, 2026
Gemini Links 17/07/2026: Sunlight in the Clouds, Techno-Therapy, and Sloppifying Original Text
Links for the day
Links 16/07/2026: Slop Recognised as a Waste of Energy, Hong Kong Cracking Down on Dissent/Opposition Some More
Links for the day
GNU/Linux Approaching 5% "Market Share" in Oceania, Almost Trebling in 12 Months
It is difficult to ignore the gains made by GNU/Linux this month
Microsoft Whistleblowers Explain How Brutal the Latest Cull is (Layoffs in Seconds-Long Calls, Mass Elimination of Whole Studios and High-Level Officials)
we see anonymous leakers or whistleblowers in the media today
Gemini Links 16/07/2026: esp32-gemserv, Slop-Contaminated Free Software, and Moving Systems
Links for the day
Last Summer Microsoft Mass Layoffs Came in Two Large Waves, Rumours Say Next Week Another Large Wave is Coming
If many more Microsoft layoffs are formally admitted next week we will not be surprised
Tomorrow is Another Strike Day at Europe's Second-Largest Institution, the Media is Still Deliberately Ignoring It
Fridays are now recommended “anchor days" for EPO strikes
Public Interest News Foundation Shows News Drought or News Deserts in the United Kingdom
Public Interest News Foundation shows that we should be deeply concerned
Illusions of Choice
Choices can be differently bad or equally bad
Windows Down to 10% in India
Windows is a "burning platform"
One Year Has Passed
Our aim is to repair an injured system wherein "abuse of process" can be turned into a weapon, leveraged even by foreigners who are funded by affluent third parties
Techrights is Annoying People Who Work for (and Serve) People Who Annoy (and Abuse) Society
Working against us (instead of with us) has historically been a bad strategy
No Skinnerboxes, No Slop, No False Idols or Corporate Prophets
Torvalds does not understand the everyday struggles of tech workers and tech users because he is a millionaire
IBM's Next Stop: $199 (Market Cap Already Under 2.5 Times IBM's Debt)
Don't rush to call us "sensationalist" over it
Links 16/07/2026: Solar Greenwashing by Energy-Wasting GAFAM and Growing Concerns About Harm by Social Control Media
Links for the day
Gemini Links 16/07/2026: Photography, Agility, and "Today I have Truly Become a Linux User."
Links for the day
Rebellion Brewing at Microsoft
As always, we welcome Microsoft whistleblowers
Technology Against Human Nature
Losing a sense of what it means to be alive
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Wednesday, July 15, 2026
IRC logs for Wednesday, July 15, 2026