Free Republic
Browse · Search
General/Chat
Topics · Post Article

Skip to comments.

Windows Anti-Counterfeit Tool Requires Loosening PC Security
Yahoo! News! ^ | 03 May 2006 | Gregg Keizer

Posted on 05/04/2006 10:36:48 AM PDT by ShadowAce

Some system administrators are finding that Microsoft's new anti-piracy software is incorrectly labeling PCs used in public places, such as university computer labs, as counterfeits, and that the solution sidestep a basic security practice for out-in-the-open machines, according to a newsgroup discussion of the issue.

After Microsoft unveiled its Windows Genuine Advantage Notifications tool last week, a university system administrator -- who preferred to remain anonymous but took the name "GodOfLions" on the Microsoft "WGA Validation Problems" newsgroup -- said that lab PCs came back as running fake copies.

"I work at a University where we have a bunch of Windows XP SP2 machines setup in lab areas," said GodOfLions in a message on the newsgroup. "In these areas students are allowed to log on to the systems, but their accounts are restricted to what they can do. The problem with the WGA installation is that it works perfectly fine as long as you are using an account with administrative rights on the system. As soon as one of the students, or other non-administrative level account, logs on to the system it screams that it is not a valid copy of windows and it is counterfeit."

A Microsoft staffer monitoring the newsgroup intervened, eventually diagnosed the problem, and offered a fix: give everyone, including the student systems running under rights-restrictive accounts, write access to a file called "data.dat."

"Validation tool writes data to data.dat file during validation process," wrote a Microsoft staffer identified as "Satish." So 'User account' needs to have Write access to file."

The system administrator eventually gave in to Microsoft's solution, but blasted it as violating the security concept behind limited-rights accounts.

"It does not make sense to have to reduce security in order to validate the system," wrote GodOfLions. "Yes it is only allowing write to one file, but still that is another small area you can have users or viruses now write to on a system that it didn't have before."

He also pointed out that the Microsoft tech support document outlining the rights needed by data.dat were still incorrect, and needed to be updated. As of Wednesday, the document had not been modified.

"Our lead architect has been informed and we are noting the changes necessary," was the response from Philip Liu, another Microsoft staffer. "I apologize sincerely upon the WGA team for causing this inconvenience for you," wrote Liu.


TOPICS: Computers/Internet
KEYWORDS: goldeneagleisamoron; microsoft; security
Navigation: use the links below to view more comments.
first previous 1-2021-4041-6061-8081-91 next last
To: Golden Eagle
Obviously you're a hacker or a hacker wannabee

Hey Ill be the first to say I am a hacker, I am a Certified Ethical Hacker (CEH) and am working towards my forensics (CFS) and penetration specialist certification (LPTC). What you fail to grasp is the difference between hacking and cracking.

And if all you had to say in response to me pointing out that the vendor solution weakened the OS security was 'go away you icky hacker' its a safe bet to say no one with a clue would let you try to secure their system.

Nobody can build a more secure box than a hacker and people pay hackers damn good money to verify their security.

61 posted on 05/08/2006 8:46:41 AM PDT by N3WBI3 ("I can kill you with my brain" - River Tam)
[ Post Reply | Private Reply | To 59 | View Replies]

To: N3WBI3

Like I said, obviously you're a hacker or hacker wannabee, and your advice that end users rely on hacker cracks like this instead of the original vendor proves there's really no difference between hackers and crackers these days. As for your supposed certifications, based on your comments I simply don't believe you're certified in anything other than BS.


62 posted on 05/08/2006 8:57:08 AM PDT by Golden Eagle
[ Post Reply | Private Reply | To 61 | View Replies]

To: Golden Eagle
Like I said, obviously you're a hacker or hacker wannabee

Unfortunately you don't know what a hacker is.. To you hacker=bad which makes you at best a PHB

your advice that end users rely on hacker cracks like this instead of the original vendor

When the vendor advises me to do something in a public lab which will make my workstations less secure your damn right people should look elsewhere for help

there's really no difference between hackers and crackers these days

Wow not even a PHB...

63 posted on 05/08/2006 9:13:23 AM PDT by N3WBI3 ("I can kill you with my brain" - River Tam)
[ Post Reply | Private Reply | To 62 | View Replies]

To: Golden Eagle

The issue isn't whether or not N3WBI3 is a hacker...it's whether or not it's appropriate for Microsoft to introduce a program that incorrectly identifies it's own legally installed software as pirated, and can only be disabled by reducing security, BY THE VENDOR'S OWN INSTRUCTIONS.

So, quit obfuscating by shooting the messenger.


64 posted on 05/08/2006 12:08:15 PM PDT by FLAMING DEATH
[ Post Reply | Private Reply | To 62 | View Replies]

To: Golden Eagle
Obviously you're a hacker or a hacker wannabee, you created a username using hacker codes! Go push your crap somewhere else.

Sometimes Iggle I am absolutely amazed at the amount of stupidity you put into your posts.....but THAT statement MIGHT just be the FUNNIEST thing I've ever seen.
65 posted on 05/08/2006 5:45:58 PM PDT by MikefromOhio (aka MikeinIraq)
[ Post Reply | Private Reply | To 59 | View Replies]

To: FLAMING DEATH

Is your brain even capable of logic? It sure doesn't look like it!

Changing your settings to something the vendor recommends that may sometime somewhere expose you to hackers, is nowhere near as dangerous as going straight to a hacker site and running their executables.

But what do you imbeciles do? Send them straight to the hackers, without even a warning of what you are doing to them.


66 posted on 05/09/2006 5:35:32 AM PDT by Golden Eagle (Buy American. While you still can!)
[ Post Reply | Private Reply | To 64 | View Replies]

To: MikefromOhio

Stupidity is defined by someone who actually gets enjoyment out of listening to the barbarians rant on Jim Rome's smack off. No wonder you sound just like them LOL!


67 posted on 05/09/2006 5:40:52 AM PDT by Golden Eagle (Buy American. While you still can!)
[ Post Reply | Private Reply | To 65 | View Replies]

To: Golden Eagle
Changing your settings to something the vendor recommends that may sometime somewhere expose you to hackers, is nowhere near as dangerous as going straight to a hacker site and running their executables.

Remember Kids the vendor is mother the vendor is father...


68 posted on 05/09/2006 8:03:07 AM PDT by N3WBI3 ("I can kill you with my brain" - River Tam)
[ Post Reply | Private Reply | To 66 | View Replies]

To: ShadowAce
The problem with the WGA installation is that it works perfectly fine as long as you are using an account with administrative rights on the system.

This is exactly the Microsoft mindset: everybody runs as admin. It is the major reason their security sucks.

69 posted on 05/09/2006 11:32:04 AM PDT by antiRepublicrat
[ Post Reply | Private Reply | To 1 | View Replies]

To: Golden Eagle
Typical BS, when you should be apologizing for recommending that people run illegal versions of their software

Yet this entire article is about how legal copies of Windows are getting hit with this, and ways to get around it so that people can use their legal copies of the software they purchased.

70 posted on 05/09/2006 11:39:24 AM PDT by antiRepublicrat
[ Post Reply | Private Reply | To 30 | View Replies]

To: MikefromOhio; Golden Eagle
If he doesn't his supervisors at Micro$$$$$$$oft HQ

Do you really think Microsoft would be stupid enough to employ GE to troll? GE is a discredit to whatever he represents, and Microsoft can ill-afford more damage to its reputation, much less pay for the damage to be done.

71 posted on 05/09/2006 11:43:47 AM PDT by antiRepublicrat
[ Post Reply | Private Reply | To 44 | View Replies]

To: Golden Eagle
No, I'm obviously recommending they report it to the vendor, and resolve it properly and responsibly, so that others might not face the same problem.

And what do we do when the vendor fix isn't a fix, but instead instructs you to damage the security of your systems? Self-help for OS screw-ups, or seeking a fix from the OS community, is at least as old as UNIX.

72 posted on 05/09/2006 11:47:25 AM PDT by antiRepublicrat
[ Post Reply | Private Reply | To 48 | View Replies]

To: antiRepublicrat

Work it out with the vendor, obviously, instead of turning your computer(s) over to anonymous hackers, like you idiots keep recommending.

You're a disgrace and a disservice to those in need of actual help, it's like someone screaming for help because they're drowning, and you throw them an anchor instead of a life preserver.


73 posted on 05/09/2006 12:14:55 PM PDT by Golden Eagle (Buy American. While you still can!)
[ Post Reply | Private Reply | To 72 | View Replies]

To: Golden Eagle
Work it out with the vendor, obviously

They did work it out with the vendor, who said to damage the security of their systems as a fix.

instead of turning your computer(s) over to anonymous hackers

The fix does not involve turning your computer over to anyone. It involves taking various steps that disable the offending Microsoft code.

it's like someone screaming for help because they're drowning, and you throw them an anchor instead of a life preserver.

In this case, Microsoft is the lifeguard who gave a swimmer an anchor and as a solution to drowning suggests the swimmer try cutting himself to see if the sharks will come around and finish him off before he drowns.

Meanwhile, a fellow "hacker" swimmer simply suggests the drowning swimmer drop the anchor. That is our stance -- drop the anchor, because it doesn't look like Microsoft wants to turn the anchor they created into a life preserver.

74 posted on 05/09/2006 1:01:52 PM PDT by antiRepublicrat
[ Post Reply | Private Reply | To 73 | View Replies]

To: antiRepublicrat
The fix does not involve turning your computer over to anyone

Yes it does, he linked to some hacker site where they required you to run some .exe that did no telling what. Whatever it wanted to, since you couldn't stop it after you launched it, including deleting all your data files if it wanted to. Even the hacker himself had more responsibility than you bozos, as even he said use it at your own risk.

75 posted on 05/09/2006 1:41:23 PM PDT by Golden Eagle (Buy American. While you still can!)
[ Post Reply | Private Reply | To 74 | View Replies]

To: antiRepublicrat; Golden Eagle
Do you really think Microsoft would be stupid enough to employ GE to troll? GE is a discredit to whatever he represents, and Microsoft can ill-afford more damage to its reputation, much less pay for the damage to be done

Good point. They probably wouldn't let shill without knowing anything, which he has proven over and over again on this forum....
76 posted on 05/09/2006 1:50:35 PM PDT by MikefromOhio (aka MikeinIraq)
[ Post Reply | Private Reply | To 71 | View Replies]

To: Golden Eagle
he linked to some hacker site where they required you to run some .exe that did no telling what

It was a script that performed certain steps that could be done manually, but are packaged for convenience. The nice thing about the hacker community is that all sorts of alarms would be raised if the script did anything bad, and the hacker's reputation would be ruined.

And don't think we've forgotten that you in your paranoia panic at the idea of going to the site of one of the world's most famous white hat hackers.

Even the hacker himself had more responsibility than you bozos

Interestingly, the hacker has more responsibility than Microsoft, which rarely makes such disclaimers before screwing up your computer.

77 posted on 05/09/2006 1:52:46 PM PDT by antiRepublicrat
[ Post Reply | Private Reply | To 75 | View Replies]

To: MikefromOhio
They probably wouldn't let shill without knowing anything, which he has proven over and over again on this forum....

I have never met a dumb Microsoft rep. They actually tend to be pretty cool guys.

78 posted on 05/09/2006 1:53:52 PM PDT by antiRepublicrat
[ Post Reply | Private Reply | To 76 | View Replies]

To: antiRepublicrat
LOL

Oh I know. I just think it's a sinister double cross because he denies it so vehemently.

who all have Linux/Solaris on their machines at home :)
79 posted on 05/09/2006 1:55:55 PM PDT by MikefromOhio (aka MikeinIraq)
[ Post Reply | Private Reply | To 78 | View Replies]

To: antiRepublicrat

There's no easy way to know what that .exe file does for sure. You anarchists just like anything that's nonconformist, no matter how dangerous it may actually be.


80 posted on 05/09/2006 2:42:17 PM PDT by Golden Eagle (Buy American. While you still can!)
[ Post Reply | Private Reply | To 77 | View Replies]


Navigation: use the links below to view more comments.
first previous 1-2021-4041-6061-8081-91 next last

Disclaimer: Opinions posted on Free Republic are those of the individual posters and do not necessarily represent the opinion of Free Republic or its management. All materials posted herein are protected by copyright law and the exemption for fair use of copyrighted works.

Free Republic
Browse · Search
General/Chat
Topics · Post Article

FreeRepublic, LLC, PO BOX 9771, FRESNO, CA 93794
FreeRepublic.com is powered by software copyright 2000-2008 John Robinson