06.15.09

Gemini version available ♊︎

‘Our Governments Just Aren’t Engineered for Security’

Posted in Finance, Microsoft, Security, Windows at 9:56 am by Dr. Roy Schestowitz

Money rain

Summary: Financially-driven and favours-motivated government unable to make reasonable decisions that are defensible

SOME MONTHS after Bill Gates had advised Obama (good cop) Steve Ballmer decided to blackmail him (bad cop). Microsoft’s influence on the new government is no secret and it shows in every way. Microsoft lobbyists fund this new government and so do William Gates (Bill Senior), Bill Gates, Melinda Gates, Steve Ballmer, and his wife Connie, who used to work for Waggener Edstrom, Microsoft's current PR Department. For people who think that Microsoft families are distant from Obama, think again and witness the evidence.

More recently we saw the BSA lobbying the government to put industry in charge of national security, so its no surprising that a Microsoft person was almost immediately put at the top of the Department of Homeland Security (DHS) [1, 2]. The government soon recruited Microsoft’s Mundie (who hates Free(dom) software) to assist with technology policy. According to new reports, President Barack Obama may make Microsoft’s security person a cybersecurity czar. This is not a joke. Yes, Microsoft and security.

Ex-government cyber official, exec mulled for czar job

[...]

Microsoft’s security chief and a veteran of Clinton’s and Bush’s national security teams are leading candidates for cybersecurity czar, a job that needs White House access and clout to protect networks that underpin the U.S. economy.

President Barack Obama promised last month that he would personally decide who would lead the fight against an epidemic of cybercrime and organize a response to any major cyber attack.

[...]

A leading candidate for the post is Scott Charney, head of Microsoft’s cybersecurity division, who has said he won’t take the job, according to a source who had direct knowledge of the matter but was not authorized to discuss it. The source said, however, that Charney would change his mind if pressed.

There is more information here:

Two leading candidates have emerged for this job. The first is Scott Charney, head of Microsoft’s cybersecurity division.

Coming from the company which says that “[O]ur products just aren’t engineered for security,” this is black comedy.

One of our readers says: “It’s a bad joke to even consider putting an alleged cyber racketeer in charge of national security. There’s conflict of interest and he’s not qualified.

“Notice that from a business perspective, MS executives have been in constant trouble with both foreign and domestic courts for both unethical and illegal practices. These range from predatory marketing, contract violations, false advertising and They maintained that long-established reputation through lots of hard work and many decisions that could have easily gone the right direction instead. These are crooks.

“On qualifications, just look at MS security track record. Microsoft’s own “childish” executives(1) point out that their software is not designed with security in mind(2) and that some (which may very well be *all*) Microsoft code is so in secure that it endangers national security. Ongoing incidents demonstrate(3) that even Microsoft HQ can’t secure its own software from Windows worms. That conclusion is made final in their bid to enter the aftermarket anti- Windows-virus software.

“Security is also making sure that material is available when it’s needed. Microsoft-style write-only backups don’t cut it. So be sure to also look at the unmitigated disaster regarding turnover of the Bush administration’s electronic records.

“Ok, that’s the tip of the ice berg for Windows security. Then there is also a conflict of interest.

“The government post must be able to fight organized crime and it is dubitable whether an individual who has been part of the problem can suddenly, simply because he is “pressured” to do a 180 and start fighting organized crime.

“Law enforcement, including police, are one of several mechanisms to mitigate social or economic damage. Dams, powergrids, hospitals, and so on are protected because of the great social or economic damage that would come from their destruction or disabling. Unfortunately, MS products have been implicated in air traffic outages, suspected in the East Coast power grid failure, and appear responsible now for great numbers of hospital deaths due to Windows worms.

“Law enforcement in many countries is usually pretty good about community outreach and crime prevention. There are even special units that deal with organized crime. An old method has been to turn a blind eye to “lesser” crimes or criminals in return for something else. Traditionally this include the use of finks to rat on their cohorts. This makes a wide, gray area around a Faustian gamble that the returns at the end will justify the means. In some cases, the give-and-take becomes a way of life rather than a means to an end. However, add the clause “…with a computer” to any known crime and law enforcement becomes paralyzed and, at best, reluctant to help.

“It would be a bad position if law enforcement had somehow become beholden to MS, now that Windows botnets are bought, sold, trade, and fought over by other organized crime groups. These Windows worms are responsible for tens of billions of dollars of damage per Worm. With Windows entering hospitals and health care, this ideology means a real body count, just like another ideologically motivated group the Taliban. Deaths and/or major damage usually are indicators that intervention is needed.

“Really, Charney, and his cohorts at MS, should be considered for a special place in the government: Camp X-Ray.”


(1) US DOJ


(2) “… Microsoft code was so flawed it could not be safely disclosed.”

eWeek


(3) ‘”Our products just aren’t engineered for security,” admitted Valentine,who since 1998 has headed Microsoft’s Windows division.’

“Microsoft: “Our products aren’t engineered for security,” ComputerWeekly. (2002)

Share in other sites/networks: These icons link to social bookmarking sites where readers can share and discover new web pages.
  • Reddit
  • email

Decor ᶃ Gemini Space

Below is a Web proxy. We recommend getting a Gemini client/browser.

Black/white/grey bullet button This post is also available in Gemini over at this address (requires a Gemini client/browser to open).

Decor ✐ Cross-references

Black/white/grey bullet button Pages that cross-reference this one, if any exist, are listed below or will be listed below over time.

Decor ▢ Respond and Discuss

Black/white/grey bullet button If you liked this post, consider subscribing to the RSS feed or join us now at the IRC channels.

5 Comments

  1. Roy Bixler said,

    June 15, 2009 at 12:36 pm

    Gravatar

    That good cop, bad cop act must go back a long way, because it brings to mind the old quote from Ray Noorda: “Pearly Gates and emBallmer — one promises you heaven and the other one prepares you for the grave.”

    Needs Sunlight Reply:

    Ray Noorda is on record as having said that often. He know what those clowns were up to. Novell signed the shop over to M$ weeks after Ray Noorda died.

    Roy Schestowitz Reply:

    Months.

    Needs Sunlight Reply:

    1 month = ~ 4 weeks, 2 months =~ 8 weeks, etc.

    Roy Schestowitz Reply:

    October 09, 2006.

    This interesting because Novell came to Microsoft for negotiations around May.

DecorWhat Else is New


  1. Links 31/01/2023: elementary OS 7

    Links for the day



  2. Intimidation Against Nitrux Development Team Upsets the Community and Makes the Media Less Trustworthy

    Nitrux is being criticised for being “very unappealing”; but a look behind the scenes reveals an angry reviewer (habitual mouthpiece of the Linux Foundation and Linux foes) trying to intimidate Nitrux developers, who are unpaid volunteers rather than “corporate” developers



  3. Links 31/01/2023: GNOME 44 Wallpapers and Alpha

    Links for the day



  4. Free and Open Source Software Developers' European Meeting (FOSDEM) and KU Leuven Boosting Americans and Cancellers of the Father of Free Software

    The Free Software Foundation (FSF) and its founder, Richard M. Stallman (RMS), along with the SFLC one might add, have been under a siege by the trademark-abusing FSFE and SFC; Belgium helps legitimise the ‘fakes’



  5. Techrights in the Next 5 or 10 Years

    Now that I’m free from the shackles of a company (it deteriorated a lot after grabbing Gates Foundation money under an NDA) the site Techrights can flourish and become more active



  6. 60 Days of Articles About Sirius 'Open Source' and the Long Road Ahead

    The Sirius ‘Open Source’ series ended after 60 days (parts published every day except the day my SSD died completely and very suddenly); the video above explains what’s to come and what lessons can be learned from the 21-year collective experience (my wife and I; work periods combined) in a company that still claims, in vain, to be “Open Source”



  7. IRC Proceedings: Monday, January 30, 2023

    IRC logs for Monday, January 30, 2023



  8. Taking Techrights to the Next Level in 2023

    I've reached a state of "closure" when it comes to my employer (almost 12 years for me, 9+ years for my wife); expect Techrights to become more active than ever before and belatedly publish important articles, based on longstanding investigations that take a lot of effort



  9. The ISO Delusion: When the Employer Doesn’t Realise That Outsourcing Clients' Passwords to LassPass After Security Breaches Is a Terrible Idea

    The mentality or the general mindset at Sirius ‘Open Source’ was not compatible with that of security conscientiousness and it seemed abundantly clear that paper mills (e.g. ISO certification) cannot compensate for that



  10. Links 30/01/2023: Plasma Mobile 23.01 and GNU Taler 0.9.1

    Links for the day



  11. EPO Management Isn't Listening to Staff, It's Just Trying to Divide and Demoralise the Staff Instead

    “On 18 January 2023,” the staff representatives tell European Patent Office (EPO) colleagues, “the staff representation met with the administration in a Working Group on the project “Bringing Teams Together”. It was the first meeting since the departure of PD General Administration and the radical changes made to the project. We voiced the major concerns of staff, the organization chaos and unrest caused by the project among teams and made concrete proposals.”



  12. Links 30/01/2023: Coreboot 4.19 and Budgie 10.7

    Links for the day



  13. IRC Proceedings: Sunday, January 29, 2023

    IRC logs for Sunday, January 29, 2023



  14. [Meme] With Superheroes Like These...

    Ever since the new managers arrived the talent has fled the company that falsely credits itself with "Open Source"



  15. Not Tolerating Proprietary 'Bossware' in the Workplace (or at Home in Case of Work-From-Home)

    The company known as Sirius ‘Open Source’ generally rejected… Open Source. Today’s focus was the migration to Slack.



  16. The ISO Delusion: A Stack of Proprietary Junk (Slack) Failing Miserably

    When the company where I worked for nearly 12 years spoke of pragmatism it was merely making excuses to adopt proprietary software at the expense of already-working and functional Free software



  17. Debian 11 on My Main Rig: So Far Mostly OK, But Missing Some Software From Debian 10

    Distributions of GNU/Linux keep urging us to move to the latest, but is the latest always the greatest? On Friday my Debian 10 drive died, so I started moving to Debian 11 on a new drive and here's what that did to my life.



  18. Stigmatising GNU/Linux for Not Withstanding Hardware Failures

    Nowadays "the news" is polluted with a lot of GNU/Linux-hostile nonsense; like with patents, the signal-to-noise ratio is appalling and here we deal with a poor 'report' about "Linux servers" failing to work



  19. Microsofters Inside Sirius 'Open Source'

    Sirius ‘Open Source’ has been employing incompetent managers for years — a sentiment shared among colleagues by the way; today we examine some glaring examples with redacted communications to prove it



  20. Links 29/01/2023: GNOME 43.3 Fixes and Lots About Games

    Links for the day



  21. The Hey Hype Machine

    "Hey Hype" or "Hey Hi" (AI) has been dominating the press lately and a lot of that seems to boil down to paid-for marketing; we need to understand what's truly going on and not be distracted by the substance-less hype



  22. IRC Proceedings: Saturday, January 28, 2023

    IRC logs for Saturday, January 28, 2023



  23. Unmasking AI

    A guest article by Andy Farnell



  24. The ISO Delusion/Sirius Corporation: A 'Tech' Company Run by Non-Technical People

    Sirius ‘Open Source’ was hiring people who brought to the company a culture of redundant tasks and unwanted, even hostile technology; today we continue to tell the story of a company run by the CEO whose friends and acquaintances did severe damage



  25. Links 28/01/2023: Lots of Catching Up (Had Hardware Crash)

    Links for the day



  26. IRC Proceedings: Friday, January 27, 2023

    IRC logs for Friday, January 27, 2023



  27. Microsoft DuckDuckGo Falls to Lowest Share in 2 Years After Being Widely Exposed as Microsoft Proxy, Fake 'Privacy'

    DuckDuckGo, according to this latest data from Statcounter, fell from about 0.71% to just 0.58%; all the gains have been lost amid scandals, such as widespread realisation that DuckDuckGo is a Microsoft informant, curated by Microsoft and hosted by Microsoft (Bing is meanwhile laying off many people, but the media isn’t covering that or barely bothers)



  28. This is What the Microsoft-Sponsored Media Has Been Hyping Up for Weeks (Ahead of Microsoft Layoffs)

    Reprinted with permission from Ryan



  29. [Meme] António Campinos Wants to Be F***ing President Until 2028

    António Campinos insists he will be EPO President for 10 years, i.e. even longer than Benoît Battistelli (despite having appalling approval rates from staff)



  30. European Patent Office Staff Losing Hope

    The EPO’s management with its shallow campaign of obfuscation (pretending to protect children or some other nonsense) is not fooling patent examiners, who have grown tired and whose representatives say “the administration shows no intention of involving the staff representation in the drafting of the consultant’s mandate” (like in Sirius ‘Open Source’ where technical staff is ignored completely for misguided proposals to pass in the dark)


RSS 64x64RSS Feed: subscribe to the RSS feed for regular updates

Home iconSite Wiki: You can improve this site by helping the extension of the site's content

Home iconSite Home: Background about the site and some key features in the front page

Chat iconIRC Channel: Come and chat with us in real time

Recent Posts