Another Misdirected Response from the Government to the Company “Not Engineered for Security”

Dr. Roy Schestowitz

2010-02-07 10:03:56 UTC
Modified: 2010-02-07 10:03:56 UTC

"Our products just aren't engineered for security."

--Brian Valentine, Microsoft executive

Summary: Another terrible month for Microsoft insecurity and the government is still unable to respond sensibly to the threat

YESTERDAY we wrote about Microsoft's lobbying for an Internet "Driver's Licence" policy. Rather than blocking the real culprit (Windows) it might only block BSD and GNU/Linux. More importantly, it would resolve absolutely nothing for the reasons just explained by Mike Masnick:

And an internet driver's license is even more ridiculous. Unlike a car, the internet is something that people have to use all the time. No driver's license is going to stop people from getting suckered by scammers.

Exactly. And what does the US government do? Rather than mimic Australia's plan to ban many Windows machines [1, 2], the US government throws some more money into "research". US taxpayers will once again pay for Microsoft's incompetence, just like in Germany.

The US House of Representatives has overwhelmingly passed a bill that would direct almost $400m toward research designed to shore up the nation's cybersecurity defenses.

Microsoft's software will never be secure. Microsoft itself has admitted that its "products just aren't engineered for security." Based on the news, there is yet another Internet Explorer flaw:

CURSED BY ITS HAIRBALL CODE, Microsoft has released another security warning relating to a bug in Internet Explorer.

There have been so many such flaws recently [1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12] that it's hard to keep track of which is which. Many are highly severe and there was also an IE flaw reported just the day after Microsoft had released an emergency IE patch (for a flaw it knew about and willingly ignored for almost 6 months, demonstrating Microsoft's negligence [1, 2, 3] and infinite arrogance).

Based on CNET, Microsoft is to bring patches for no less than 26 holes next week:

Microsoft will patch 26 holes next week, including critical ones in Windows, one affecting the kernel of 32-bit versions, and several holes in Office, the company said Thursday in a preview of its Patch Tuesday.

That's just a lower bound though. As we already know, Microsoft is patching many flaws without even telling the public in order to embellish its public record. This is a company of systematic liars, a company that is unable to make secure software, let alone patch it in a responsible (and timely) fashion. Had the government tried to resolve its security issues, then it would impose and use greater pressure to move to UNIX and Linux [1, 2]. ⬆

Comments

Jose_X

2010-02-08 03:03:56

Anyone know who is getting what fraction of the $400 cybersecurity money? If Linux is represented, then a "drop Windows wherever possible" as a solution might get proposed. Is the MS related cyberchief (iirc) in charge of accepting proposals?

The Register MS is Still Being Paid to Participate in the "AI" Ponzi Scheme Which Will Crash the Economy: The Register MS is hoping to get lucky by tricking people into a scam
Evidence Contradicting Microsoft's Non-Denying Denials and Expectation of Many Layoffs Soon: "Microsoft has had this constant drip of layoffs for months."
At Least 3 Richard Stallman Talks in Europe Confirmed So Far, Next Week in Rome There's Another: Dr. Stallman has not announced this yet
Links 07/10/2025: EU' Chat Control is Back, US Cracks Down on Democracy: Links for the day
Techrights Pursues Justice and Truth Because, Without Those, Society Descends Into Chaos: most people reject dogma and pseudoscience
Upcoming Talks by Richard Stallman in Helsinki, Göteborg, and Rome: Join with him and share the software
Something Bad is Happening in the Open Source Initiative (OSI): The latest OSI blog post is from a Microsoft operative and a few weeks ago the Executive Director left
TLS 1.3 Dominates Geminispace (99% of Known Capsules): it's nowadays safe to assume almost every capsule can handle TLS 1.3
Why soylentnews.org Has Been Having Technical Difficulties Lately: The network has been going up and down quite a lot this past week
A Statement Against Violence: The facts are on our side
They've Run Out of Things to Rebrand or Label as "AI": The next few years will be interesting because if Microsoft lays off tens of thousands of workers each year, there won't be much left except mountains of debt and dying brands
Richard Stallman Confirms His Talk in Göteborg This Coming Friday: "The hosts say that the list will not be given to the state"
Most of the "Linux" Results This Morning in Google News Are LLM Slop From the Same Slopfarm, Plagiarising Phoronix: The main question is, does Google even care at this point?
Gemini Links 07/10/2025: Civil War and "Goodbye Web": Links for the day
Over at Tux Machines...: GNU/Linux news for the past day
IRC Proceedings: Monday, October 06, 2025: IRC logs for Monday, October 06, 2025
The "AI Revolution" is Going Very Well, Right?: money that does not exist and alleged potential that is pure fiction
Links 06/10/2025: Scam Altman Himself Admits He Runs a Scam Based on a Bubble, US Administration Adopts “War From Within” Narrative to Crush Opposition/Dissent: Links for the day
Slopwatch: Fake Ubuntu 'Articles' and Google News Helps People Who Plagiarise Phoronix Using LLMs: Michael Larabel can't possibly be happy about that
6,000 Pages/Articles a Year: Today in one month from now the site turns 19
When Things Become So Ubiquitous That They're Almost Nameless: The notion or the concept of software freedom isn't tied to any particular brand or project, so it should still resonate
IDG Seems to Have Abandoned Sandra Henry Stocker's UNIX/Linux Column: Unless we hear otherwise or see some update/s, this may mark another death blow from IDG
Gemini Links 06/10/2025: Winter Nights and "Virtue Signaling": Links for the day
Links 06/10/2025: Scientific Awards and Typhoon Matmo: Links for the day
IP Kat Gone Bonkers, Pushing Slop in Patents (Likely Illegal, With Severe Consequences): AstraZenecaKat: "Last time, this Kat covered some practical steps on how to ensure client confidentiality when using AI tools (IPKat)."
Links 06/10/2025: Grokipedia as Malicious Slop, US 'Martial Law' a "New Normal": Links for the day
Fake Economics and Clown Computing Circuses: who's gonna pay for these scams?
Nobel Prize in Economics Does Not Exist, It's Propaganda From Sveriges Riksbank: "It is that time of the year when it is important to remind people that there are no Nobel Prizes for professional wrestling, astrology, or economics"
Rust is Eating Linux: That's a recipe for problems
Cindy Cohn (Executive Director of EFF) is a Millionaire, Earned Almost $30,000 Per Month Before Departing While the EFF Lost Money: EFF is "Big Business"
Non-Denying Denial From Microsoft (Again) Regarding the End of XBox Consoles: It's kind of hilarious that even the site chosen by Microsoft to relay its BS, based on past loyalty, isn't quite buying it
Bringing Back Lost Articles From the 1990s: Microsoft Products Leave Door Open to NSA: Nothing has changed since then
When the Slop Bubble Pops People Will Say Richard Stallman Was Right (Again): What was once known as Computer Science turned into "IT"
Over at Tux Machines...: GNU/Linux news for the past day
IRC Proceedings: Sunday, October 05, 2025: IRC logs for Sunday, October 05, 2025
Links 06/10/2025: Science, Hardware, and Andrej Babis Making a Comeback: Links for the day
Links 05/10/2025: Slow News Day and Wondering About the Canada Post Walkout: Links for the day
Gemini Links 05/10/2025: Telnet Debugging and The Programmer’s Brain: Links for the day
More Than "Just a Rumour": XBox Seems to Have Just Died: At this point, why would any studio out there target or partner with XBox?
How to Tell Your Community, Project or Company is Being Infiltrated by Saboteurs: How to identify nefarious social engineering
The Fortieth Birthday of the FSF Made Us Extremely Happy: It feels like the 'hacker community' is regrouping to discuss things and prepare for the next Big Challenge
Chat Control 2 Them, Not 2 U: Follow the advice of Dr. Patrick Breyer
Mozilla: Throw Away Your "Old" PC and Enable "Digital Rights Management (DRM)": This is heading in a bad direction
Controlling Our Computing for Another Forty Years: 40 years of freedom
Motivational Small Place to Run Large Sites: We deem this scenery motivational and inspiring
Techrights' Text Version (Daily Bulletin) Turns Five This Month: our plain-text bulletins are turning 5 this month
We'll Continue Covering the Moribund OSI and Other Dysfunctional if Not Hostile Institutions: Stefano Maffulli's departure is due to his defection and due to him failing the mission in pursuit of money (his salary)
Microsoft XBox is Dying as More Retailers Stop Stocking It and Massive Layoffs Planned Again: Microsoft is circling down the drain
Links 05/10/2025: Lufthansa Layoffs (4,000) and More Spotify Woes (Aside From Massive Debt): Links for the day
The Free Software Foundation's Livestream Has Ended, Video/s Might be Online Next: I've asked whether they'll upload video of some of the event; I still wait for an answer
The Register MS Does Not Know the Difference Between Microsoft GitHub and GitLab: At the time of writing (October 5) the article from "Thu 2 Oct 2025" remains uncorrected
Linux and the Freedom Paradox: Linux is losing freedom if some external actors who only use Microsoft tools for development wrest control
"Bullshit Generators" (What RMS Calls LLMs) and Fake Images Already Target the FSF: Why does Google News promote fake articles about the FSF while omitting all the real ones?
Software Patents as a Bubble: Don't invest resources in hype; if you detect a bubble, run away from it
Links 05/10/2025: Political Leftovers, Climate Change, and Security Incidents: Links for the day
Over at Tux Machines...: GNU/Linux news for the past day
IRC Proceedings: Saturday, October 04, 2025: IRC logs for Saturday, October 04, 2025

Another Misdirected Response from the Government to the Company “Not Engineered for Security”

Comments

Recent Techrights' Posts