09.17.09

Gemini version available ♊︎

Windows Server 2003 — Just Like Windows XP — Gets Neglected by Microsoft

Posted in Microsoft, Security, Servers, Windows at 2:04 am by Dr. Roy Schestowitz

Done so soon or gone too soon?

Windows Server 2003

Summary: While Windows XP is not supported for security anymore, Windows Server 2003 development stops too

MICROSOFT has not only laid off many employees but it also lost many key developers [19], who were familiar with important code. That is one theory and possible explanation for the fact that XP is left vulnerable from now on; Microsoft has more or less given up on patching it.

“Those two releases, namely XP and Server 2003, come as a pair.”Servers are more sensitive than desktops to intrusion; their function makes them a more serious victim when compromised (affecting people whom they serve or served). It is therefore interesting to read about XP’s cousin, Windows Server 2003, never ever getting a third Service Pack like XP. This is surprising to some. Mary Jo Foley has some more details and implications for security may be tied to the fact that XP is left vulnerable. Those two releases, namely XP and Server 2003, come as a pair. Users/customers will be pressured to move to Vista or its sibling ‘edition’ for servers, which is terrible [1-16].

In other news, the Windows-only spyware from Sears is to be deleted along with the data it collected.

US retailer Sears has been ordered to destroy all the customer data it collected from a piece of online tracking software that consumer regulator the Federal Trade Commission (FTC) said was unfairly used.

The FTC said that while customers had been warned that, once downloaded, software would track their browsing, it had in fact tracked browsing on third party websites, secure browsing including banking and transactions and even some non-internet computer activity.

Does it run under Wine? Hopefully not.
______
[1] Microsoft Investigating LocalSystem Access Bug

Users on a given system can elevate their access privileges to LocalSystem in Windows XP, Windows Server 2003, Windows Vista, and Windows Server 2008, Sisk explained in an e-mail. It could cause havoc by giving an authenticated user inappropriate write, delete, and change privileges.   

[2] Microsoft warns of web server flaw

The company has issued an advisory on the vulnerability, which affects Windows XP Professional SP2, Windows Server 2003, Windows Vista and Windows Server 2008. 
 
[...]
 
“The web server is widely used on the internet, and is a top pick by web-hosting providers. We might see web-hosting providers targeted, and their clients’ websites breached.”  

[3] Microsoft investigates new Windows zero-day flaw

Bill Sisk, security response communications manager for Microsoft, said in an email Thursday evening that the flaw allows for privilege escalation from  authenticated user to LocalSystem in Windows XP, Windows Server 2003, Windows Vista, and Windows Server 2008.   

[4] Critical patches coming for Vista, Server 2008

This month’s Patch Tuesday fixes will include critical fixes for Microsoft’s  flagship operating systems, the company has warned. 

[5] Microsoft officially 425 years behind the times

It’s not just Excel and Exchange that ignore the Gregorian calendar. The Reg has also confirmed that SQL Server 2008, Windows Small Business Server, and Windows Mobile are ignorant as well.  

[6] The meaning of Microsoft Server 2008

Server 2008 looks like a bit of an odd duck – it doesn’t meet the promises made for “Longhorn” and “Blackcombe”, it’s probably neither more reliable nor more efficient than its 64 bit 2003/XP based predecessors, and unlike Vista (with which it shares some code) the kernel changes amount to rather more than just another point release in the NT schedule.    
 
[...]
 
And that, I think, reflects Microsoft’s other strategic concern: that MacOS X and Linux bracket Microsoft’s market and are both reaching out to the people in the middle – the managers and MCSE decision makers who now consider Apple too consumer oriented and Linux too technical.   

[7] Hyper-V isn’t the only Windows Server 2008 virtualization solution that’s lagging

But it’s not just Microsoft’s own Hyper-V that isn’t quite ready for prime-time. Several other virtualization products from Microsoft’s competitors and partners aren’t 100-percent enterprise-ready, either, at this point.   

[8] There’s no Windows Server 2008 SP1 in the works. Here’s why

Chalk that abnormality up to Microsoft’s ongoing attempt to more closely synchronize its Windows client and Windows server releases. Because Windows client and server are built from the same core and thus get patched with many of the same updates and fixes, Windows Server 2008 and Windows Vista SP1 are now “on par.”

[9] Hyper-V in Server 2008 RTM doesn’t like non-US locales

Annoying. Yes, it is mentioned in the release notes – but what if Hyper-V beta had required you to set a non-US locale at install time? Do you think Microsoft would have flagged this problem more prominently?  

[10] Microsoft cuts Windows virtualization features

The company is changing three key features of the hypervisor technology to try to stick to its schedule of releasing the technology within 180 days of completing its Windows Server “Longhorn” operating system, due to be finalized before the end of the year.

[11] Microsoft web developers branded pants

The strokers of beards and Volish nay-sayers have been claiming that reason is Windows Server 2008. They claim this on the very safe assumption that since Microsoft installed it, vole.com has been running like a condemned man  with his legs cut off on his way to his own execution.   

[12] This eWeek [on Servers]

I asked Jason about Windows Server’s newfound security: “The first time I heard about this new feature,” he said, “I thought it was clearly a response to Linux.

Windows Server 2008 isn’t quite there yet, according to Jason’s tests.

[13] Windows server URL sends you to Apple

TYPE IN windowsserver2008.com into your browser and after it thinks a bit, it takes you straight to the Apple site.

[14] What will run on Windows Server 2008 — and when

Are we in for a Windows-Vista-like experience, where even some of Microsoft’s own applications didn’t work with its new operating system for weeks, if not months?  

[...]
 
A number of Microsoft server apps that won’t support Windows Server 2008 until the latter half of 2008, when service packs providing Server 2008 compatibility are released.  

[15] Windows Server 2008 Delayed, Again

Already, Microsoft delayed SQL Server 2008 availability until later in 2008, even though the software launches with the new version of Windows Server. 

[16] It’s Official: An Unofficial Delay

Microsoft isn’t characterizing the launch announcement as a ship delay, which is possible because of the “2008″ nomenclature and the likelihood that the software will be released to manufacturing this year. My guess is that will happen around November, unless there are unforeseen development problems.   

[17] More than half of Microsoft Vista needs re-writing

Up to 60% of the code in the new consumer version of Microsoft new Vista operating system is set to be rewritten…

[18] Microsoft admits Vista screwed – report

Vista SP1 is code named “Fiji”, presumably after a pretty looking island which is paralysed by coups.

In a statement regarding the service pack Microsoft admits that Vista has “high impact” problems.

[19] MS Insider: The Office Crew Isn’t Smart Enough to Supplant Real Windows Developers

“With Alchin retiring, MarkL and MarkZ, two of the most talented architects in MS already having left, the picture gets really ugly for the Windows division,” my friend claimed, and the BV’s core team members, Ian McDonald, Jack Mayo, Todd Wanke, Clyde Rodriguez and others are starting to connect the dots.
 
[...]

He concluded ominously. “A trainwreck of biblical proportions looms. Pick a good seat on the sidelines, trainwrecks this large take awhile to complete. Vista may be the last MS OS for some time to come, especially if Cutler decides to play hardball.”

Share in other sites/networks: These icons link to social bookmarking sites where readers can share and discover new web pages.
  • Reddit
  • email

Decor ᶃ Gemini Space

Below is a Web proxy. We recommend getting a Gemini client/browser.

Black/white/grey bullet button This post is also available in Gemini over at this address (requires a Gemini client/browser to open).

Decor ✐ Cross-references

Black/white/grey bullet button Pages that cross-reference this one, if any exist, are listed below or will be listed below over time.

Decor ▢ Respond and Discuss

Black/white/grey bullet button If you liked this post, consider subscribing to the RSS feed or join us now at the IRC channels.

2 Comments

  1. Yuhong Bao said,

    September 17, 2009 at 3:11 pm

    Gravatar

    BTW, for your information, here is a link to MS’s Support Lifecycle policies as it applies to all MS products, including Windows 2000 and later:
    http://support.microsoft.com/lifecycle/

    Roy Schestowitz Reply:

    Some say Microsoft can be sued for false advertising (regarding the support duration of XP).

DecorWhat Else is New


  1. At Long Last: 2,000 Known Gemini Capsules!

    The corporate media, looking to appease its major sponsors (such as Web/advertising giants), won't tell you that Gemini Protocol is rising very rapidly; its userbase and the tools available for users are rapidly improving while more and more groups, institutions and individuals set up their own capsule (equivalent of a Web site)



  2. Links 26/1/2022: Gamebuntu 1.0, PiGear Nano, and Much More

    Links for the day



  3. IRC Proceedings: Tuesday, January 25, 2022

    IRC logs for Tuesday, January 25, 2022



  4. Links 26/1/2022: No ARM for Nvidia, End of EasyArch, and WordPress 5.9 is Out

    Links for the day



  5. Why the Unified Patent Court (UPC) is Still Just a Fantasy and the UPC's Fake News Mill Merely Discredits the Whole Patent 'Profession'

    Patents and science used to be connected; but now that the patent litigation 'sector' is hijacking patent offices (and even courts in places like Texas) it's trying to shove a Unified Patent Court (UPC) down the EU's throat under the disingenuous cover of "community" or "unity"



  6. Links 25/1/2022: Vulkan 1.3 Released, Kiwi TCMS 11.0, and antiX 19.5

    Links for the day



  7. Gemini Milestones and Growth (Almost 2,000 Known Gemini Servers Now, 39,000 Pages in Ours)

    The diaspora to Gemini Protocol or the transition to alternative 'webs' is underway; a linearly growing curve suggests that inertia/momentum is still there and we reap the benefits of early adoption of Gemini



  8. [Meme] Get Ready for Unified Patent Court (UPC) to be Taken to Court

    The Unified Patent Court (UPC) and Unitary Patent system that’s crafted to empower EPO thugs isn’t legal and isn’t constitutional either; even a thousand fake news 'articles' (deliberate misinformation or disinformation) cannot change the simple facts because CJEU isn’t “trial by media”



  9. The EPO Needs High-Calibre Examiners, Not Politicians Who Pretend to Understand Patents and Science

    Examiners are meant to obstruct fake patents or reject meritless patent applications; why is it that working conditions deteriorate for those who are intellectually equipped to do the job?



  10. Free Software is Greener

    Software Freedom is the only way to properly tackle environmental perils through reuse and recycling; the mainstream media never talks about it because it wants people to "consume" more and more products



  11. Links 25/1/2022: Git 2.35 and New openSUSE Hardware

    Links for the day



  12. IRC Proceedings: Monday, January 24, 2022

    IRC logs for Monday, January 24, 2022



  13. Links 25/1/2022: GPL Settlement With Patrick McHardy, Godot 4.0 Alpha 1, and DXVK 1.9.4 Released

    Links for the day



  14. Proprietary Software is Pollution

    "My daughter asked me about why are we throwing away some bits of technology," Dr. Andy Farnell says. "This is my attempt to put into words for "ordinary" people what I tried to explain to a 6 year old."



  15. Microsoft GitHub Exposé — Part XV — Cover-Up and Defamation

    Defamation of one’s victims might be another offence to add to the long list of offences committed by Microsoft’s Chief Architect of GitHub Copilot, Balabhadra (Alex) Graveley; attempting to discredit the police report is a new low and can get Mr. Graveley even deeper in trouble (Microsoft protecting him only makes matters worse)



  16. [Meme] Alexander Ramsay and Team UPC Inciting Politicians to Break the Law and Violate Constitutions, Based on Misinformation, Fake News, and Deliberate Lies Wrapped up as 'Studies'

    The EPO‘s law-breaking leadership (Benoît Battistelli, António Campinos and their corrupt cronies), helped by liars who don't enjoy diplomatic immunity, are cooperating to undermine courts across the EU, in effect replacing them with EPO puppets who are patent maximalists (Europe’s equivalents of James Rodney Gilstrap and Alan D Albright, a Donald Trump appointee, in the Eastern and Western Districts of Texas, respectively)



  17. Has the Administrative Council Belatedly Realised What Its Job in the European Patent Organisation Really Is?

    The "Mafia" which took over the EPO (the EPO's own workers call it "Mafia") isn't getting its way with a proposal, so it's preventing the states from even voting on it!



  18. [Meme] Team UPC is Celebrating a Pyrrhic Victory

    Pyrrhic victory best describes what's happening at the moment (it’s a lobbying tactic, faking/staging things to help false prophecies be fulfilled, based on hopes and wishes alone), for faking something without bothering to explain the legal basis is going to lead to further escalations and complaints (already impending)



  19. Links 24/1/2022: Scribus 1.5.8 and LXLE Reviewed

    Links for the day



  20. IRC Proceedings: Sunday, January 23, 2022

    IRC logs for Sunday, January 23, 2022



  21. [Meme] Team UPC Congratulating Itself

    The barrage of fake news and misinformation about the UPC deliberately leaves out all the obvious and very important facts; even the EPO‘s António Campinos and Breton (Benoît Battistelli‘s buddy) participated in the lying



  22. Links 24/1/2022: pgBadger 11.7 Released, Catch-up With Patents

    Links for the day



  23. The Demonisation and Stereotyping of Coders Not Working for Big Corporations (or 'The System')

    The war on encrypted communication (or secure communications) carries on despite a lack of evidence that encryption stands in the way of crime investigations (most criminals use none of it)



  24. On the 'Peak Hacker' Series

    Hacker culture, unlike Ludditism, is ultimately a movement for justice, for equality, and for human rights through personal and collective emancipation; Dr. Farnell has done a good job explaining where we stand and his splendid series has come to a close



  25. Links 23/1/2022: First RC of Linux 5.17 and Sway 1.7 Released

    Links for the day



  26. Peak Code — Part III: After Code

    "Surveillance perimeters, smart TVs (Telescreens built to Orwell's original blueprint) watched over our living rooms. Mandatory smart everything kept us 'trustless'. Safe search, safe thoughts. We withdrew. Inside, we went quietly mad."



  27. IRC Proceedings: Saturday, January 22, 2022

    IRC logs for Saturday, January 22, 2022



  28. Links 23/1/2022: MongoDB 5.2, BuddyPress 10.0.0, and GNU Parallel 20220122

    Links for the day



  29. A Parade of Fake News About the UPC Does Not Change the General Consensus or the Simple Facts

    European Patents (EPs) from the EPO are granted in violation of the EPC; Courts are now targeted by António Campinos and the minions he associates with (mostly parasitic litigation firms and monopolists), for they want puppets for “judges” and for invalid patents to be magically rendered “valid” and “enforceable”



  30. Welcome to 2022: Intentional Lies Are 'Benefits' and 'Alternative Facts'

    A crooks-run EPO, together with the patent litigation cabal that we’ve dubbed ‘Team UPC’ (it has nothing to do with science or with innovation), is spreading tons of misinformation; the lies are designed to make the law-breaking seem OK, knowing that Benoît Battistelli and António Campinos are practically above the law, so perjury as well as gross violations of the EPC and constitutions won’t scare them (prosecution as deterrence just isn’t there, which is another inherent problem with the UPC)


RSS 64x64RSS Feed: subscribe to the RSS feed for regular updates

Home iconSite Wiki: You can improve this site by helping the extension of the site's content

Home iconSite Home: Background about the site and some key features in the front page

Chat iconIRC Channel: Come and chat with us in real time

Recent Posts