Posted on 08/10/2006 7:20:55 AM PDT by ShadowAce
File it under the category of "be careful what you wish for." In early August at the Black Hat Conference, an annual meeting of computer security experts in Las Vegas, Microsoft handed out 3,000 test copies of its new operating system, Windows Vista, and challenged attendees to help spot security glitches. A short time later, Joanna Rutkowska obliged. In a packed ballroom at Caesar's Palace, the 25-year-old Polish programming whiz delivered a devastating presentation in how to hack an earlier but similar test version of Vista. Before a crowd of fellow researchers and hackers, she bypassed security measures and implanted a potentially undetectable piece of malicious code called "Blue Pill." The presentation, titled "Subverting Vista Kernel for Fun and Profit," was rewarded with a hearty round of applause.
The exercise wasn't much fun for Microsoft security mavens. They put on a brave face: "We'll take a look and see if there are ways we can mitigate it," says Stephen Toulouse, program manager for Microsoft's 650-member Security Response Center. But Rutkowska's demo was the latest reminder of how difficult it will be for Microsoft to make the new version of its flagship product truly secure.
Microsoft went to full battle stations over PC security four and a half years ago, when Chairman William H. Gates III acknowledged in a memo to his staff that the plague of viruses and worms afflicting Windows and other products had gotten out of hand and something drastic had to be done. Henceforth, Gates decreed, security would be the top priority. All programming was temporarily halted as Microsoft embarked on an effort to make its products safe.
(Excerpt) Read more at yahoo.businessweek.com ...
Thanks to tubebender for the heads-up on this article.
I was dealing with a service call for Sallie Mae that of course ended up in India. It was one of the worst calls ever - couldn't understand the guy, and he obviously didn't know what he was talking about.
I asked him his name (knowing I would get a pseudonym) and he told me "Mac Gates". Wonder where he got that from...
Freddie Mac perhaps?????
Since I got my laptop in late August 2003, I've dowloaded over 240 "updates" or "security" patches from MS.
Is that good or bad? My Mac based friends never stop trying to give me grief over this.
When I tell them that the 2 essential stock trading and charting programs that I use only run on Windows, they stare uncomprehendingly and become silent. I stil think PC's are faster than Mac's for what I'm doing.
And my friend's Mac's still crash or freeze just like PC's.
Poland 1, Microsoft 0.
"I also like the user application level security feature which allows the admin to create a list of allowed apps for install by a user, no more granting full admin rights to local machines."
Oh boy. That means every time you want to add a program (like a small helper app of some sort) to your computer you have to get permission from the IT department.
Talk about slowing productivity to a crawl.
Macs are PCs now. Apple has switched to Intel's top-of-the-line processors, and according to their television commercials, can run Windows along with Mac OS X.
And my friend's Mac's still crash or freeze just like PC's.
Maybe your friend is running the Mac OS 9? There are still a lot of people running that old operating system. Mac OS X is rock solid, and it's extremely rare that the whole computer would crash or freeze up.
It's always been that way. Actually by allowing users to install certain programs it will make it easier for both the users, and IT people. Before if workstations were secured PROPERLY, users couldn't install ANYTHING without admin privileges.
Disclaimer: Opinions posted on Free Republic are those of the individual posters and do not necessarily represent the opinion of Free Republic or its management. All materials posted herein are protected by copyright law and the exemption for fair use of copyrighted works.