Another Misdirected Response from the Government to the Company “Not Engineered for Security”

Dr. Roy Schestowitz

2010-02-07 10:03:56 UTC
Modified: 2010-02-07 10:03:56 UTC

"Our products just aren't engineered for security."

--Brian Valentine, Microsoft executive

Summary: Another terrible month for Microsoft insecurity and the government is still unable to respond sensibly to the threat

YESTERDAY we wrote about Microsoft's lobbying for an Internet "Driver's Licence" policy. Rather than blocking the real culprit (Windows) it might only block BSD and GNU/Linux. More importantly, it would resolve absolutely nothing for the reasons just explained by Mike Masnick:

And an internet driver's license is even more ridiculous. Unlike a car, the internet is something that people have to use all the time. No driver's license is going to stop people from getting suckered by scammers.

Exactly. And what does the US government do? Rather than mimic Australia's plan to ban many Windows machines [1, 2], the US government throws some more money into "research". US taxpayers will once again pay for Microsoft's incompetence, just like in Germany.

The US House of Representatives has overwhelmingly passed a bill that would direct almost $400m toward research designed to shore up the nation's cybersecurity defenses.

Microsoft's software will never be secure. Microsoft itself has admitted that its "products just aren't engineered for security." Based on the news, there is yet another Internet Explorer flaw:

CURSED BY ITS HAIRBALL CODE, Microsoft has released another security warning relating to a bug in Internet Explorer.

There have been so many such flaws recently [1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12] that it's hard to keep track of which is which. Many are highly severe and there was also an IE flaw reported just the day after Microsoft had released an emergency IE patch (for a flaw it knew about and willingly ignored for almost 6 months, demonstrating Microsoft's negligence [1, 2, 3] and infinite arrogance).

Based on CNET, Microsoft is to bring patches for no less than 26 holes next week:

Microsoft will patch 26 holes next week, including critical ones in Windows, one affecting the kernel of 32-bit versions, and several holes in Office, the company said Thursday in a preview of its Patch Tuesday.

That's just a lower bound though. As we already know, Microsoft is patching many flaws without even telling the public in order to embellish its public record. This is a company of systematic liars, a company that is unable to make secure software, let alone patch it in a responsible (and timely) fashion. Had the government tried to resolve its security issues, then it would impose and use greater pressure to move to UNIX and Linux [1, 2]. ⬆

Comments

Jose_X

2010-02-08 03:03:56

Anyone know who is getting what fraction of the $400 cybersecurity money? If Linux is represented, then a "drop Windows wherever possible" as a solution might get proposed. Is the MS related cyberchief (iirc) in charge of accepting proposals?

Microsoft's Mass Layoffs Very Wide-Ranging, Media Focused on Gaming Though Microsoft Mass-Firing Lawyers and "AI" Staff (Contradicting Its Supposed "Investment" in "AI"): Microsoft plans to fire almost half a thousand people in legal roles
2012 Article About the Free Software Foundation Blasting Canonical/Ubuntu Over Adoption of "Secure" Boot (Microsoft's Remote Control Over GNU/Linux Since PCs' Power-on): By Katherine Noyes (article has since then became 404, not found)
Debian Can Dump Blind Users Because I am Not Blind: the sort of mentality we're up against
The European Patent Office Cannot Attract Proficient Patent Examiners Who Master Their Domain: They are enablers and facilitators of corruption
What Wayland and Microsoft/IBM systemd Have in Common: focus on what IBM (Red Hat) is pushing while running over critics.
Linux Already Has About 60% of the "Market": "When mentioning the client side," opines an associate, "it is essential to recite the list of other markets where Microsoft is negligible or a no-show. It is repetitive to do so, but it needs saying -- often."
In Norway, Android/Linux Has Just Hit All-Time High (First Time Since 2020), GNU/Linux Already Very Prevalent: Despite its small population size, Norway gave us Qt and many other things
Finland (and NATO) Must Move to GNU/Linux and Dump Microsoft Even Faster: "Microsoft is not a technology problem, it is a staffing problem."
The Microsofters We Sued Helped Microsoft Make GNU/Linux 'Expire' This Year: "Linux and Secure Boot certificate expiration"
linuxconfig.org Joins linuxtechlab.com and Others, Becomes a Slopfarm With Fake Linux 'Articles' (LLM Slop): They contain "linux" in their domain names, but they are just slopfarms
Links 19/07/2025: Microsoft Cuts in China and Wall Street Journal Sued for Reporting on Jeffrey Epstein: Links for the day
Fascistic Policies Got 'Normalised' in 'Public Office'. Let's Not Let the Same Happen in 'Tech'.: Political discourse typically guides what's "normal" and what "good citizens" should believe/feel
Yes, Your Mastodon Instance Will Also Shut Down: Few people run a one-person instance in the Fediverse
The Demise of GAFAM Necessitates Greater and Broader Awareness: Morale at Microsoft is really bad
Free Software Foundation Reaches 75% of Funding Goal: Not bad for this "Fosschild"
Slopwatch: 7 New Examples of Fake 'Linux' Slop Pieces (Plagiarism With Misinformation): Serial Sloppers need to be shunned
Links 19/07/2025: Kapo-berg Settles, Software Patents Challenged: Links for the day
Over at Tux Machines...: GNU/Linux news for the past day
IRC Proceedings: Friday, July 18, 2025: IRC logs for Friday, July 18, 2025
Links 18/07/2025: Peace With PKK and Connie Francis Dies: Links for the day
Gemini Links 18/07/2025: Alhena 5.1.8 and Bornhack 2025: Links for the day
How to Top Up a "Limited Liability" With Even More Limitations (Dodging Accountability in the UK): Some people call it a "shell game". Sometimes it's done for tax evasion purposes.
Free Software Foundation, Inc. (FSF) Inches Towards 75% of Fund-Raising Target: Will the cutoff date be extended again?
Gemini Space (or Geminispace) Grows, But Usage of Certificate Authority Let's Encrypt Drops Further: Ideally, all Gemini capsules should use self-signed certificates
Links 18/07/2025: More Microsoft Layoffs in Activision, The New Stack (Sponsored by Microsoft) Complains About Openwashing: Links for the day
Gemini Links 18/07/2025: OCC25 Gnus for Reading Usenet and RSS Feeds, Small Web Updates: Links for the day
[Meme] 9AM Meeting at Brett Wilson LLP: Brett Wilson LLP in space
Listing as Staff People Who Left the Company More Than Six Years Earlier: There are apparently no laws against that
Brian Fagioli Shovels Up LLM Slop (Plagiarism) Onto Slashdot, Then Uses Slashdot for Affirmation or as Badge of Honour: Notice how some of his latest slop is presented ("as featured on Slashdot")
Social Control Media Productivity: Snapping photos of the bone
The Law Firm SLAPPing Us For the Microsofters Lost 72% of Its Tangible Assets in the Past Year, According to Its Own Reports: That might help explain why they're willing to tolerate serial stranglers from Microsoft as clients
Slopwatch: LinuxSecurity.com Slopfarm and Slopfarms Propped Up by Google News: "As LLM slop is foisted onto the WWW in place of knowledge and real content, it now gets ingested and processed by other LLMs, creating a sort of ouroboros of crap."
Links 18/07/2025: Weather Events and Health Hazards: Links for the day
Microsoft's All-Time Low in Finland: Microsoft is in a freefall
Security: Shane Wegner & Debian statement of incompetence: Reprinted with permission from Daniel Pocock
Over at Tux Machines...: GNU/Linux news for the past day
IRC Proceedings: Thursday, July 17, 2025: IRC logs for Thursday, July 17, 2025
Gemini Links 17/07/2025: "Goodreads for Gemini" and Defence of "The Small Web": Links for the day
Links 17/07/2025: Anger and Morale Issues at Microsoft, Wars and Conflicts Get Digital: Links for the day
CALEA / CALEA2 is the Real Problem, Not Chinese Operatives Exploiting CALEA / CALEA2 (as Any Other Nation Can): CALEA / CALEA2 is more of a front door than a back door
99.99% Uptime in First Half of 2025: Since January there was only one noticeable outage
Nils Torvalds and Anna "Mikke" Torvalds (née Törnqvis) Hopefully Use GNU/Linux by Now: "Torvalds Family Uses Windows, Not Linus’ Linux"
Attack of the Slopfarms: FUD-amplifying bots with slop images, slop text (LLM slop)
When People Call a Best/Close Friend of Bill Gates a "Serial Rapist": Good thing that the Linux Foundation keeps the "Linux" trademark ("Linux Mark") clean
Not My Problem, I Don't Care: Context/inspiration: Martin Niemöller
Honest Journalism About the European Patent Office Ceased to Exist After SLAPPs and Bribes to the Media: The EPO is basically a Mafia
Microsoft Bankruptcy in Russia, Shutdown in Pakistan, What Next?: It seems possible that in 2025 alone Microsoft will have laid off over 50,000 workers
Life Became Simpler When I Stopped Driving and I Don't Miss Driving When I See "Modern" Cars: Gee, wonder why car sales have plummeted...
Why I Believe Brett Wilson LLP and Its Microsoft Clients Are All Toast: So far our legal strategy has worked perfectly
EPO Jobs Are Very Toxic and Bad for One's Health: Health first, not monopolies
Response to Ryo Suwito Regarding the Four Freedoms: the point of life isn't to make more money
Microsoft's Morale Circling Down the Drain: Or gutter, toilet etc.
What Matters More Than "Market Share": The goal is freedom, not "market share"
Tech Used to be Fun. To Many of Us It's Still Fun.: You can just watch it from afar and make fun of it all
Links 17/07/2025: "Blog Identity Crisis" and Openwashing by Nvidia: Links for the day
Greffiers and the US Attorney of the Serial Strangler From Microsoft: The lawsuit can help expose extensive corruption in the American court system as well
Credit Suisse collapse obfuscated Parreaux, Thiébaud & Partners scandal: Reprinted with permission from Daniel Pocock
The People Who Promoted systemd in Debian Also Promote Wayland: This is not politics
UK Media Under Threat: Cannot Report on Data Breach, Cannot Report on Microsoft Staff Strangling Women: The story of super injunction (in the British media this week, years late)
Victims of the Serial Strangler From Microsoft, Alex Balabhadra Graveley, Wanted to Sue Him But Lacked the Funds (He Attacked Their Finances): Having spoken to victims of the Serial Strangler From Microsoft
Links 17/07/2025: Science, Hardware, and Censorship: Links for the day
Gemini Links 17/07/2025: Staying in the "Small Web" and Back on ICQ: Links for the day
Over at Tux Machines...: GNU/Linux news for the past day
IRC Proceedings: Wednesday, July 16, 2025: IRC logs for Wednesday, July 16, 2025

Another Misdirected Response from the Government to the Company “Not Engineered for Security”

Comments

Recent Techrights' Posts