Apache Shows Why GNU/Linux is Safer Than Microsoft Windows; Microsoft Makes Batteries Dangerous

Dr. Roy Schestowitz

2010-03-08 17:41:13 UTC
Modified: 2010-03-08 17:41:13 UTC

Summary: Windows shows that it not only brings security problems to Apache but also to battery chargers

THE thing about Windows is, the underlying operating system is less secure than UNIX and Linux. Here is nice new proof of this, straight from the news. Our reader renamed it (the headline) "Windows bug prompts Apache update advice"

"The vulnerability means that you can take complete control of the web server remotely with system privileges — which is the highest privilege on Windows," Edelstein told ZDNet.com.au. "An attacker could gain access to, modify and take away data."

Edelstein advised users running Apache on Windows platforms to upgrade immediately as users have no way of knowing if their web servers have been compromised. The company's security advisory can be accessed here.

[...]

"A proof of concept remote exploit has been written by Sense of Security, and it is feasible that others could write a similar exploit to completely compromise a Windows system," said Brett Gervasoni.

As most Apache users run it on UNIX and Linux, the above is probably nothing to panic or worry about.

Charged With Malware

"Microsoft, the company that made battery chargers dangerous," called it the reader who sent this next item from the news:

The United States Computer Emergency Response Team (US-CERT) has warned that the software included in the Energizer DUO USB battery charger contains a backdoor that allows unauthorized remote system access.

In an advisory, the US-CERT warned that he installer for the Energizer DUO software places the file UsbCharger.dll in the application’s directory and Arucer.dll in the Windows system32 directory.

When the Energizer UsbCharger software executes, it utilizes the UsbCharger.dll component for providing USB communication capabilities. UsbCharger.dll executes Arucer.dll via the Windows rundll32.exe mechanism, and it also configures Arucer.dll to execute automatically when Windows starts by creating an entry in the HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run registry key.

"The danger of Open Source software is that you don't know if it contains malware," jokingly said our reader. ⬆

Comments

Needs Sunlight

2010-03-09 10:53:55

@your_friend : it did not go undetected for three years, Microsoft did not publicly acknowledge it for three years, or more. There is a lot of difference there.

Wipe and reload becomes popular when Microsoft needs to sell new versions of Windows or when third party packages, of any kind, become too popular. Wipe and reload ensures that the 3rd party packages are knocked down at least a couple points in marketshare. It is to Microsoft's advantage that they are so many decades behind Linux, OS X or even Solaris in regards to package management.
your_friend

2010-03-09 02:55:15

Ha ha, it went undetected for three years. The Windows version of that Energizer Bunny has been pulled from the market.

Regardless of when it was created, its discovery prompted Energizer to announce March 5 that it was discontinuing the sale of the product and removing the site from which the software could be downloaded. In addition, the company is urging consumers who downloaded the Windows version of the software to uninstall it.

It's amazing how popular the wipe and reload becomes when Microsoft needs to sell a new version of Windows. Thanks for all the nice links.
uberVU - social comments

2010-03-11 22:51:48

Social comments and analytics for this post...

This post was mentioned on Identica by schestowitz: #Apache Shows Why #GNU #Linux is Safer Than #Microsoft #Windows http://boycottnovell.com/2010/03/08/battery-chargers-and-malware/...

A Week of Sunlight: They say transparency is like sunlight to a vampire
"Linux" Sites That Went Astray: there are even worse things than shutdowns
Links 16/06/2025: Climate, Wildfires, Breaches, and Monopolies: Links for the day
Links 16/06/2025: Summer in Finland and Misunderstandings: Links for the day
Over at Tux Machines...: GNU/Linux news for the past day
IRC Proceedings: Sunday, June 15, 2025: IRC logs for Sunday, June 15, 2025
Gemini Links 15/06/2025: Rainy Season and OpenDocument Format (ODF): Links for the day
Links 15/06/2025: Military Games, Parade, and Actions: Links for the day
Links 15/06/2025: Windows TCO, Openwashing, and Wars: Links for the day
Gemini Links 15/06/2025: "AI Fatigue and Crappiness": Links for the day
When Abusive Law Firms (Working for Microsofters Against Us) Assert That Someone Writing in Social Media About Himself is Confidential Information: There was no reason to throw "GDPR" into 2 SLAPPs; they know it, but the goal was to increase the cost of a Defence and lessen the incentive to challenge the SLAPPs
Microsoft Attack Dogs Against Watchdogs and Guard Dogs in Software: Last year Microsofters hired attack dogs or "guns for hire"
Slop Cannot Replace Domain Expertise: All this "AI" hype (it's not even intelligence, it's all a misnomer, as many of us have insisted all along) will fizzle and be written off as a failed experiment
IBM's Fresh 'PIPs' (Action Before Layoffs): At times like these, even once-reputable employers resort to PIPs and other procedures/tricks for denial of workers' rights
Microsoft is a Problem Not Just for Denmark: Every country should consider what Denmark is doing, why Denmark is doing it, and then do the same
The Slopfarms' Self Detonation: If more sites like BetaNews go under, then maybe we can still salvage some of the Web
Over at Tux Machines...: GNU/Linux news for the past day
IRC Proceedings: Saturday, June 14, 2025: IRC logs for Saturday, June 14, 2025
Links 14/06/2025: FDA Changes Priorities, Cassette Data Storage From The 1970s: Links for the day
Gemini Links 14/06/2025: Steam Next Fest and Thoughts on Gemini: Links for the day
Site/Datacentre Maintenance Next Week: speed things up
Bulgaria: GNU/Linux Near 10%: The Bulgarian market seems to be changing
I Never Spoke to BetaNews. But BetaNews Wants to Ensure I Never Will, Either.: Sometimes just the reluctance to talk about it can say a great deal
Throwing Money at Lawyers Can't Stop Us (It Never Did): Even just trying to censor things can result in the opposite of the desired outcome
Online Search or Large Search Engines Aren't Working Anymore: business models that directly compete with interests of Web users
Holidays and Breaks: I've hardly taken any long breaks since I got married
Danish OpenDocument Freedom: "year of Linux"
Links 14/06/2025: Wars and L.A. Distortion Effect: Links for the day
BetaNews Has More or Less Died After Experiments With LLM Slop, Is Linuxsecurity Next?: It doesn't seem like BetaNews knows what it's doing, let alone what it talks about
Gemini Links 14/06/2025: Historic Ada Design and GeminiSpace.Club to Expire: Links for the day
Links 14/06/2025: India Plane Crash and Middle-Eastern War: Links for the day
Over at Tux Machines...: GNU/Linux news for the past day
IRC Proceedings: Friday, June 13, 2025: IRC logs for Friday, June 13, 2025

Apache Shows Why GNU/Linux is Safer Than Microsoft Windows; Microsoft Makes Batteries Dangerous

Charged With Malware

Comments

Recent Techrights' Posts