| Forum Home | ||||
| PC World Chat | ||||
| Thread ID: 75384 | 2006-12-27 04:55:00 | Vista + Security = 0 | SurferJoe46 (51) | PC World Chat |
| Post ID | Timestamp | Content | User | ||
| 509962 | 2006-12-27 04:55:00 | Seems that Vi$ta has been popped open like a soccer ball with all sorts of places for hackers and malfits to lay waste to the new, secure system . :D There are some reports by computer security researchers and hackers that they have begun spotting serious flaws in Micro$oft's Windows Vi$ta system that was just released to corporate licenses late last month . Oh No! :eek: Two of these flaws are potentially fatal if inflicted . Seems that a Russian programmer posted a script of a flaw Dec 15th, showing an increased users' privileges on all of Micro$oft's recent operating systems, including, but especially Vista . . . . and in case you didn't read it here, on a totally secure system according to M$ . Now . . . . . right after Christmas weekend, a Silicon Valley-based security firm who shall be nameless for a short time, but the name starts with "S ( . google . com/url?sa=t&ct=res&cd=1&url=http%3A%2F%2Fwww . symantec . com%2F&ei=X_mRRZf3N4z-gwOc6rW4Dw&usg=___oEsa8Ljvv62Tu75OsG1zDLsHPw=&sig2=GhOL8scoK9YIJgyheFW0ew" target="_blank">www . google . com)", told Micro$oft about another flaw it found, plus five other vulnerabilities, including one serious bug in the software code underlying that newest bastion of security: IE 7! Don'tcha just love it? And you thought IE7 was so kewl too! That abovementioned-yet-technically-unnamed-firm :waughh: said the browser flaw will result in web users getting infected with malicious software simply by visiting booby-trapped websites . Then another California-based vendor of anti-software (this time with a name that they aren't afraid to post: Determina (http://www . determina . com/)) added more bad news that the browser flaw makes it possible for attackers to inject rogue software into all those spanking-new Vi$ta-based computers . At this time Micro$oft, (on it's website), said the company (Micro$oft) is closely watching the "vulnerability" pointed out by the Russian programmer and gently pooh-poohed it . In a website statement, Micro$oft said that as of now they have not observed any public exploitation or attack activity based on this flaw basically because the "public" does not know of this problem anyway . I guess ignorance is sorta blissfull . . . right? Micro$oft's spokesperson said that the company is "investigating the browser flaw, and that as of now, they are not aware of any attacks attempting to use this weakness . " Sounds kinda like a woman was set up here to take the inevitable fall when the wheels fall off if you connect the gist of the phrase there: "spokesPERSON" . Yet sources at Determina again have said the browser flaw, by itself, permits damage such as information theft, etc . . . . . this flying directly in the face of that "spokesperson" at M$ . Count that as the first, non-lethal shot across the bow of M$'s spokesPERSON . Accordingly . . . . . there is a designed-in "safety net" or "sandbox" software in the newest version of IE 7 that might be able to control damage even if a malicious program were to zombie the operation of the browser, but don't count on it if the hackers get to it too . . . or maybe they are already there! Now, and according to Determina, this second flaw when coupled with the ability of the first flaw, makes it possible to circumvent the "sandbox" controls, quietly alter files and permanently and quite possibly, fatally infecting the targeted computer . Determina warns people not to get complacent with it (M$/Vi$ta) as the company expects a rash of Vi$ta bugs to pop up in the next six months or so . "There's always the shake-out period when we see all the mistakes and the promises as they fall apart for Micro$oft: they have many times in the past" . Saluting it's own majesty here . . . . . . . . M$ has spent hundreds of millions of good faith dollars branding Vi$ta as the most secure product ever produced . . . . . . . and is depending on Vi$ta to help generate new revenues and sales to help staunch the flow of blood in a tsunami of software attacks now plaguing Windows-based systems . Sales of the inevitable new hardware will also prop-up sagging sales of desktop computers as companies will have to seriously upgrade all that olde stuff now too . :rolleyes: Talley-ho Silicon Valley! :p |
SurferJoe46 (51) | ||
| 509963 | 2006-12-27 06:02:00 | ....M$ has spent hundreds of millions of good faith dollars branding Vi$ta as the most secure product ever produced.......It may be the most secure Microsoft OS product, but nowhere does it say it is 100% secure. No OS system, whatever flavour it may be, is. They know that, we know that. Pretty unrealistic for people not to expect bugs and security flaws to be found. That is just part of any products ongoing development. The problem is with the people who willingly exploit them. What is with the use of the $ symbol in MS Joe? If you hate Microsoft that much, then you do have the choice to change 100% to something alternative. |
Jen (38) | ||
| 509964 | 2006-12-27 06:23:00 | I reckon the emphasis should be on identifying and targeting (preferably with an M82) the bastards that do the exploits. If MS ever did that they'd get a lot more respect from many. Bill G has more money than any/all of the scummy bastards that do the scams/exploits/viruses - why can't he just hire the help to do the dirty unto them! |
Greg (193) | ||
| 509965 | 2006-12-27 07:07:00 | It's this way Jen . . . I see the bloat and the absolute hording of money that could be used for purposes much more noble than building a small . . . make that: large country called Billyland . His wealth is so enormous that it sickens me . Now I know that he gives to charity . . . but it's just the crass amount of wealth he hides and hordes that I decry in the hands of any single person or family . His "gifts" to charity are another man-behind-the-curtain too . . the US gov't lets him write the whole amount off as a loss and he gets off of paying taxes on that amount . . . it's a scam that the peons (read: taxpayers) have to cover and make up . He is leaveraging his "charity" as a tool to escape paying into the general coffers . . . suppressing funds for healthcare and medical assistance to the poor, elderly and ill, schools, highways and infrastructure and actually raising taxes to the worker drones in the form of higher taxes to make up the difference . It is likely that the Social Security Fund will be depleted in another 6 to 8 years when the baby-boomers will all be retiring and need to withdraw the money the paid into the system . . . and it will be gone having not been refueled by current employees or large corporation tax exemptions . We pay for his mansions, cars, swimming pools, turtleneck sweaters and personal staff by our taxes . The US is in a sad state of repair from these gilded individuals who suck the (money) well dry and leave nothing but scorched earth . Our highways are all in sad repair . . our bridges are old and falling apart while Nero fiddles . You just don't know . . . . . . the US has been showing feet of clay for a while now . . and now the world's beginnning to see lingerie, staring up under it's skirts . My little dig at his funds and stature are not supposed to be taken as sarcastic . . . . . . . just a political statement . Yes . . . I am trying to learn Mepis . . as I know that's where you were going in your comment . . but I still have a great dislike for someone building a dynasty in the US . . . and I know there are countless others . . . but his is new money . . . and it doesn't appear to be earned with skill . . . just timing and a very powerful lobby backed up and paid for by personal fortunes . Try to remember that I still smart over losing the CBM system to Big Blue too . . and I see M$ as an extension of mafia-like death committed by an inferior but well-monied OPSYS . I also hate the stranglehold on industries and governments around the world at the whim and fancy of M$ . . ergo, my "$" . Since M$ controls over 80% of the computers in the world by their system's broad and blind acceptence (and didn't the EU do something about that with fines and court orders to make M$ comply with decency statutes?), and as it is the biggest gorilla in the room . . . I resent that . That's my story and I'm sticking with it . :D I would, however, think any person from NZ (no . . . . not a political statement here) would see the rugged individualism and pioneer spirit that says one cannot be a king or kingmaker in a society that decries individual freedoms that allow one to swing their fist . . . . up to the point where it actually hits a nose or pocketbook of another person . I appeal to your rugged individualism as a pioneer-type in a land of fair-manship and decency to see the crass-ness and snotty attitude of someone so monetarily endowed as Mr . Bill and see what he is really like/about . There are constant reminders of the attitude of the US bullying the world and it's affairs . . well this is one example of the reasons why the US is so powerful . . . lobbies and political simony and nepotism backed up with a tax dodge and a powerful PR department . Methinks he beats a drum loudly to wow the natives and they trade away their land, money and toss their first-born children into a volcano to appease a god who has an icon on every desktop . . . . just for some shiny beads . It's just not right! |
SurferJoe46 (51) | ||
| 509966 | 2006-12-27 07:59:00 | In my view vista is very secure having used Rc1 of vista, its only those who go looking for problems within the program that feel insecure. I have used ms operating systems for ten years now and not once have i ever had any real major problems with security of ID theft and soforth. Sure you get viruses and spyware now and then but it has been nothing so major that i havent been able to get my pc operating again. To the average jo bloggs vista nd xp and me and 98 are as secure as the person who maintains the health of the pc. So for those who deliberately go looking for flaws in ms systems are naturally going to be worse off. | Hitech (9024) | ||
| 509967 | 2006-12-27 09:11:00 | C'mon youse guys..no OTHER comments? OH....and BUMP! |
SurferJoe46 (51) | ||
| 509968 | 2006-12-27 09:43:00 | Bill Gates gives away more money than he would have had to pay in tax. | Greven (91) | ||
| 509969 | 2006-12-27 09:47:00 | I reckon the emphasis should be on identifying and targeting (preferably with an M82) the bastards that do the exploits. If MS ever did that they'd get a lot more respect from many. Bill G has more money than any/all of the scummy bastards that do the scams/exploits/viruses - why can't he just hire the help to do the dirty unto them! if it wasn't for the scummy bastards doing this and notifying MS the holes wouldn't be patched. and the the real scumbags would start exploiting the flaws, The hackers actually are doing a good thing I think |
plod (107) | ||
| 509970 | 2006-12-27 09:55:00 | There's only one reason for Vista security . Unfortunately you'll have to do a little reading to get to the punchline . Peter Guttman's Analysis of Windows Vista Content Protection ( . cs . auckland . ac . nz/~pgut001/pubs/vista_cost . txt" target="_blank">www . cs . auckland . ac . nz) . Read it and weep . Gamers, read it and bawl . Movie and music lovers, read it and wail unashamedly . Anyone who has recently purchased hi res/def hardware, read it and know apoplexy . Consumers', pfffffssssst! |
Murray P (44) | ||
| 509971 | 2006-12-27 10:22:00 | Peter Glutmann rather. could some kind soul edit the post above to correct the man's name. Ta. | Murray P (44) | ||
| 1 2 3 | |||||