03.06.10

Microsoft Angers the World by Asking for a Form of Security Bailout, More Fundamental Windows Flaws Found

Posted in GNU/Linux, Microsoft, Security, Windows at 4:08 am by Dr. Roy Schestowitz

Screaming

Summary: Microsoft’s recommendation of “Internet tax” for removing Windows botnets/zombies doesn’t fly; Windows DEP (data execution prevention) is busted

EARLIER in the week we wrote about Microsoft’s Charney suggesting that everyone — UNIX and Linux users included — should pay [1, 2] to compensate for Microsoft’s own negligence [1, 2, 3]. Many people already pay for the damage collectively; for instance, if banks lose money due to zombie Windows PCs that compromise accounts, then interest rates will be lessened. These are some of the hidden costs everyone pays for Microsoft’s incompetence. In Germany, it's hardly even hidden anymore.

“Microsoft’s Laugh-a-Minute Show Continues,” says Glyn Moody regarding Microsoft’s arrogant suggestion.

Can you believe it? Microsoft’s lousy programming has caused *billions* of pounds worth of damage to the global economy in terms of downtime, lost files (and probably blood pressure problems) and it has the bare-faced cheek to suggest there should be an “Internet usage tax” on *everyone* (including GNU/Linux users) to pay for the rectification of *its* mistakes? No wonder Scott Charney has the humorous and manifestly self-contradictory title of “Microsoft Corporate Vice President for Trustworthy Computing”….

Here is another response: “Taxing every citizen for Microsoft Windows problems? Are we insane?”

Just when you think you’ve heard everything, something new arrives. Two years ago, we heard that half a million computers are infected with malicious bots every day (a “bot” is a software program that enters your computer from the Internet or inside infected files, then runs in the background to steal your data, send spam or wreak havoc in some other way).

This is a huge problem both because we depend on digital data in too many ways to explain them here (but you may read about them in the Open Government Book) and because of environmental reasons. According to a McAfee report published in May 2009 the amount of energy used every year to transmit, process and filter spam would be enough to power 2.4 million homes, with the same Greenhouse Gas emissions as 3.1 million passenger cars.

On March 2nd, 2010, Microsoft Corporate Vice President for Trustworthy Computing Scott Charney spoke at a computer security conference about this very theme, that is how to fight the damages caused by computers infected by bots (or “malware”).

According to the summary published on ComputerWorld, Mr Charney started correctly. He pointed out that, just as there are quarantine programs for people with infective diseases, the same thing should happen with people who have computers infected by malware but, for any reasons, won’t fix them up as soon as possible: such people should not be allowed to go online until their computer is clean and safe.

Windows is insecure not because people are negligent; Microsoft itself is extremely negligent and there are many examples of this. “Typical Windows user patches every 5 days,” says this new report from IDG (quoting Secunia).

75 Microsoft, third-party patch events each year are a burden most users can’t bear, says Secunia

Here is Berend-Jan Weve finding another security problem in Windows. From SJVN:

Honest to God I don’t go around trying to pick on Windows for its security problems, but the hackers keep finding new ways to break into it. And, this time, they’ve found a doozie. Berend-Jan Wever, aka “Skylined,” a Google security software engineer has busted DEP (data execution prevention), one of the few significant security improvements Microsoft has made to Windows.

DEP, which was added to Windows back in August 2004 in XP SP2. It addressed the very common hacking technique of buffer overflows. In a buffer overflow attack, a malicious program tries to overwrite the buffer, the amount of memory a program has been allocated for running its code in. By so doing, a buffer overflow overwrites memory that may or may not have been allocated to other programs. In either case, it can then use this overwritten memory for its own purposes. Usually this means running malware or even taking over the computer itself.

[...]

Unfortunately, Wever, using a variation of a hacking technique he helped perfect called heap-spraying has busted DEP. In heap-spraying, the attack code made an educated guess at where vulnerable memory that could be used to execute unapproved programs could be found. In Wever’s latest trick, the attacking code looks for clues on where to find memory that’s allowed by DEP to run programs. Once armed with this information, the attack code can then successfully plant itself in the system.

While the attack code isn’t ready to go for any script-kiddie, as Wever himself points out, he has given enough information on how to defeat DEP that it’s only a matter of time before a competent cracker uses the code to start enabling new attacks.

[...]

In short, if you’re running 32-bit Windows of any sort-XP, Vista, 7, Server 2008-you can look ‘forward’ to being even more vulnerable to attacks. Have I mentioned lately that I tend to do most of my desktop computing with Linux? Well, I am. This exploit opens up a new and huge hole in Windows’ already vulnerable defenses.

For some of its better enhancements to security, Microsoft relies on Free software in the form of firewalls, even virus scanners.

The open source ClamAV project is often used on servers as a way to scan and secure e-mail gateways and Windows file shares. Now ClamAV is coming to the Windows desktop too, by way of the cloud.

Vista 7 is not a solution because it’s not secure either. See the links below.

  1. Cybercrime Rises and Vista 7 is Already Open to Hijackers
  2. Vista 7: Broken Apart Before Arrival
  3. Department of Homeland Security ‘Poisoned’ by Microsoft; Vista 7 is Open to Hijackers Again
  4. Vista 7 Security “Cannot be Fixed. It’s a Design Problem.”
  5. Why Vista 7 Could be the Least Secure Operating System Ever
  6. Journalists Suggest Banning Windows, Maybe Suing Microsoft Over DDoS Attacks
  7. Vista 7 Vulnerable to Latest “Critical” Flaws
  8. Vista 7 Seemingly Affected by Several More “Critical” Flaws This Month
  9. Reason #1 to Avoid Vista 7: Insecurity
  10. Vista 7 Left Hijackable Again (Almost a Monthly Recurrence)
  11. Trend Micro: Vista 7 Less Secure Than Vista
  12. Vista 7 Less Secure Than Predecessors? Remote BSoD Now Possible!
Share in other sites/networks: These icons link to social bookmarking sites where readers can share and discover new web pages.
  • Reddit
  • email

This post is also available in Gemini over at:

gemini://gemini.techrights.org/2010/03/06/windows-dep-is-broken/

If you liked this post, consider subscribing to the RSS feed or join us now at the IRC channels.

Pages that cross-reference this one

A Single Comment

  1. Needs Sunlight said,

    March 6, 2010 at 10:03 am

    Gravatar

    So this is another Windows vulnerability?

    http://www.vupen.com/english/advisories/2010/0529

    If that’s the case, then Vista and Vista7 are probably defective in the same way as XP. Wait a week or two until the so-called security sites that make their money from Windows are allowed to post about Vista and Vista7.

What Else is New


  1. Hardly Shocking and Not At All Surprising That Thugs Who Run the EPO Hired External Thugs to Help Them Oppress Aggrieved Staff

    With the EPO's management flooding the bank accounts of aggressive law firms (at our expense) we need to ask serious questions about how such a "Mafia" (what EPO staff calls the management) managed to metastasise inside Europe's second-largest institution and how to remove this "Mafia" as soon as possible (some arrests too are well overdue)



  2. [Meme] There Are No Elections in Mafia-Type Regimes; It's About Family and Friends...

    With no real concept or notion of "elections" (the so-called 'mafia' members choose their successors and colleagues) the EPO's patent examiners clearly need outside intervention, e.g. inquest by the EU authorities (the EPC died and maybe the EPO too; it's unregulated and it grants false patents that harm Europe because the courts don't function, either)



  3. Today's Linux Standing for the Opposite of What Linux Users Stand for

    The so-called 'Linux' Foundation or the "Corporate Linux Foundation" is alienating many of the original users of GNU/Linux and it still insults their intelligence; it's rewriting history, it still distorts the objectives, and before we know Linux will perish and lose momentum because all the excitement associated with the brand will fizzle away



  4. Links 14/6/2021: Kdenlive 21.04.2 and Raspberry Pi 400 Support in Linux

    Links for the day



  5. [Meme] EPO 'Lawfulness' as Crude Budget Wars

    A war of attrition against EPO staff won’t ensure justice is done; it’ll only increase the number of casualties and accomplish nothing good



  6. A Parade of 'Yes Men': EPO's Budget and Finance Committee as Rubber-stamper of the Dictatorship That Pays the Salary

    The lack of oversight at the EPO has long been apparent and it is becoming ever more problematic now that huge sums of money are passed by the EPO's management to law firms whose sole role is to fight against aggrieved EPO staff



  7. Links 14/6/2021: Linux 5.13 RC6, Psychonauts 2 for GNU/Linux

    Links for the day



  8. Conveniently Conflating Vaccination With the Surveillance Business of IBM/Linux Foundation

    The way some media handles COVID-19 can be described as self-serving, especially Microsoft-connected sites looking to make “Linux” sound bad (or like property of Microsoft); the video above discusses this past weekend’s media coverage about “Linux”



  9. [Meme] Microsoft Stooping Down Low in Search of Vapourware With a Superficial Version Bump

    Instead of trying to actually fix its broken (and self-breaking) operating system Microsoft has decided to sell mythology and false promises, as usual



  10. [Meme] Illegal Location, Illegal Methods (Haar ViCo)

    EPC denial is more lethal than anything which the the EPO says may merit 'urgency' (as if having discussions about patents will save lives)



  11. The 'Fixer' of António Campinos Taints G1/21 (ViCo Hearing)

    The meeting which is set to resume at the start of next month includes the 'Fixer' of António Campinos; what sense of impartiality might one expect?



  12. IRC Proceedings: Sunday, June 13, 2021

    IRC logs for Sunday, June 13, 2021



  13. Virtual Injustice -- Part 6: Best Buddies With António

    Benoît Battistelli, António Campinos, and the Hungarian link of the EPO



  14. Classic: Old EPO Strike

    2008 EPO video, predating the Benoît Battistelli EPO regime



  15. Links 13/6/2021: Linux 5.14 Work, Lots of Patent News

    Links for the day



  16. Update on Gemini, IPFS, and IRC

    "The video which was supposed to be a few minutes long ended up taking a lot longer, but it does cover a broad range of topics that are relevant and very recent (based on recent developments)."



  17. IRC Proceedings: Saturday, June 12, 2021

    IRC logs for Saturday, June 12, 2021



  18. Virtual Injustice -- Part 5: Benoît's “Friends” in Budapest

    "Battistelli went to considerable lengths to secure the support of the Hungarian delegation."



  19. Links 13/6/2021: KDE Frameworks 5.83.0 and helloSystem 0.5

    Links for the day



  20. The Story of Techrights, in Banners...

    A look back at site banners from 2006-2021; they help illuminate or show our changing focus over the years



  21. With KDE Plasma 5.22 Having Just Been Released It's Time to Give KDE a Try (or Move to GNU/Linux, Leveraging the Best Features of Any Operating System Out There)

    A quick recommendation of KDE based on a reasonably recent (but not latest) build; there's this myth about KDE being difficult and flaky, but for a number of decades it has been the most advanced desktop (on any operating system) and its developers managed to hide the complexity while offering users all the power they may want/need



  22. Open Letter to the FSF About Taking Control of the FSF's (and GNU's) IRC Channels

    The FSF should have seized the opportunity, in light of self-harming IRC infighting (instability and unpredictability), to create its own IRC network and then help this new (or "GNU") network flourish



  23. EU Already Captured by -- and Lying for -- Corrupt EPO Officials, Team UPC, and Lobbyists of Multinational Corporations

    12 pages of lies; is the European Parliament reduced to a mere marionette of corrupt officials who run the EPO into the ground?



  24. [Meme] Virtual Code of Conduct (ViCoC)

    Cheapening of basic concepts and principles like "right to be heard" or "access to justice" is an international trend; we need to push back in the direction of justice, not fake 'innovation' or 'tech' (where it clearly does not belong)



  25. IRC Proceedings: Friday, June 11, 2021

    IRC logs for Friday, June 11, 2021



  26. Virtual Injustice -- Part 4: Mihály Ficsor, the EPO's Hungarian “Fixer”

    One key operative of António Campinos, who is fiercely in favour of software patents, has quite a colourful past and background



  27. Conversation With Richard Stallman in Brazil, May 31st 2021

    At the end of last month Richard Stallman had a 2-hour (and beyond, considering some of the afterthoughts) conversation, which is now available online



  28. Links 11/6/2021: Nginx Rising and SteamPal Rumours

    Links for the day



  29. New Introduction at Gemini

    As part of ongoing improvements to our capsule we have a new introductory text, reproduced below



  30. Links 11/6/2021: A Torvalds COVID Rant and RISC-V Risk of Takeover

    Links for the day


RSS 64x64RSS Feed: subscribe to the RSS feed for regular updates

Home iconSite Wiki: You can improve this site by helping the extension of the site's content

Home iconSite Home: Background about the site and some key features in the front page

Chat iconIRC Channel: Come and chat with us in real time

Recent Posts