As part of its monthly patching cycle, Microsoft on Tuesday plans to release eight security alerts for flaws in the Windows operating system. They also plan to release by year’s end an initial test version of a new product to protect business desktops, laptops and file servers against malicious code attacks. “Unofficial” preview of XP SP3 pack includes log-on improvements and network fixes for Windows XP PCs. Elsewhere, on Wednesday, Neil Barrett was named trustee in the European Commission’s antitrust case against Microsoft.
Slew of Windows Patches Coming; XP SP3, Anti-Spyware
About The Author
Eugenia Loli
Ex-programmer, ex-editor in chief at OSNews.com, now a visual artist/filmmaker.
Follow me on Twitter @EugeniaLoli
I, for one, am shocked.
Is this Microsoft’s new business model? Since Windows is broken, and people have more or less accepted that, is it Microsoft’s plan to make a token effort at patching, but rather than really trying to fix the OS, rather concentrate on selling new products to protect businesses against its brokenness?
Are people not realizing how ridiculous it is that in order to run Windows they have to buy additional watchdog programs to give it a chance of staying usable? Surely it’s obvious what a waste of money and resources this is, let alone the obvious fact that alternatives exist for which this isn’t necessary. It seems like Microsoft has managed to generate an attitude in the minds of consumers that this is a normal situation; which, I suppose, it is: situation normal: all f–ked up.
Instead of modding me down, why not respond to explain why you disagree? I wasn’t trying to troll; this is really the situation as it appears to me…
The goal of any corporation is to make money. It just so happens that bugs, viruses, and malware all come together to create a thriving economy that helps feed the Microsoft machine. Remember the villain in “Tomorrow Never Dies”? All corporations have leanings toward that – it’s why they exist.
I don’t believe that the directors of the company sit down and say “We need 10% more bugs in this release”, I’m merely suggesting that the climate inside the company is such that they tend to have to push stuff out with lesser regard to quality, and more regard for shareholder happiness. They seem to be indicating that they’d like to put more effort into the quality of the software, which I commend them for, but the extent of their efforts is solely dictated by their shareholders and their revenue generating customers.
And at the moment, the same shareholders who are making money on MSFT are probably also making money on all the companies that clean up Microsoft’s messes. And the revenue-generating customers aren’t protesting loudly enough to be heard above all else.
I don’t know why you were just modded down.
Makes total sense to me.
Lunix keeps on getting buggier and XP keeps on getting better. Open Sores can never compete with Microsoft.
moron…
Better???
Oh… I realize you work for Microchaft, of cource thing are better for you… You mith get that increase in stuck you want and the salary increase to…
MMmmm… Now that I see it, Microsoft works just like the goverment… INEFICIENTLY… getting paid too much… and making life more complex…
-iMoron
FTA:
“The threats we see do need more than secure software. We need active protection against spyware, malware and viruses. For the first time, with the Microsoft Client Protection, we will deliver this kind of complete security shield for businesses,” Ballmer said at the Munich news conference. “I think we have leapfrogged Linux and other systems in helping customers maintain a secure environment. ”
———————————————————————- ———–
1) Were talking about virses?
2) In other news various projects announced competing projects to update their systems:
a) Debian announces apt-get
b) Gentoo announces emerge
c) Various other OS announce the use of CVS to update and patch source code for applications and operating systems.
So after much expense and effort in upgrading to XP SP2 we still have to patch the cr@p out of it, and then spend more money to make it safe and stable…gotta love all that innovation coming our way!!!?!!!
Anybody running a book on how long it will take before the first virus/patch/vuln is posted after Vista is released?
too late, there is five already according to http://bbc.co.uk/clickonline
So after much expense and effort in upgrading to XP SP2 we still have to patch the cr@p out of it, and then spend more money to make it safe and stable…gotta love all that innovation coming our way!!!?!!!
If you rely on the vendor to make your system secure, you are either doing it wrong or have the wrong vendor.
In the case of Microsoft, it is indeed possible to secure Windows. You do not need these patches or any others to do so. Microsoft, though, makes any serious security efforts a real PITA.
Your VERY wrong, most Windows users buy a computer and have not idea how to. You can secure any OS good but by default Windows is bad, very bad. Thats why Vista is finally using Unix like security, which shows just how bad the current setup is. Using sudo in Ubuntu is the best mix of security and ease of use, Microsoft just never seen the threat, then service pack 2 landed 5 years later, which helps alot.
Selling someone a defective product and then asking him to pay for “protection” – isn’t that called extortion and punishable by law?
“I think we have leapfrogged Linux and other systems in helping customers maintain a secure environment.”
do people actually believe guys like Steve Ballmer and Rob Enderle?
if yes, then it reflects extremely poorly on their judgment and education.
unreal.
do people actually believe guys like Steve Ballmer and Rob Enderle?
if yes, then it reflects extremely poorly on their judgment and education.
Nope, some people think Microsoft made their computers and Microsoft must supply all the programs that get put on their computers.
People used to think it was because Microsoft forced Windows on OEMs to include with all new PCs, but that is only part of the story….
The main culprit is a flawed education system. This is teaching children “computing” by training them in how to use Microsoft Office… What good is that to anyone ?
Imagine how much more money your kids schools would have to spend on the kids, if it did not have to send money to Microsoft… and even with a vast discount, it is still money that all schools need.
While reading your comment I was thinking, well, you have a point.
But after reading it I was like, sounds like socialism.
I wonder which part sounded like socialism?
I’m a libertarian and since IT is a part of education in schools (from 3rd grade) they might as well learn something useful rather than become educated to be another MS customer.
Education is about knowledge, so you can figure out the truth yourself.
So they shouldn’t use proprietary products in schools, at the very least not in public schools.
Anyway, it’d be cheaper for the taxpayers meaning lower taxes so I’m all for it
Socialist ? Hardly
It is a simple fact that education authorities have better things to do with their money than to blindly give it by the barrow-load to Microsoft.
I take it you have no kids of your own ?
for all you lazy people out there:
[ http://www.xp-sp3.com/sp3/XPSP3_EN_PREVIEW_2.zip ]
Or you could just use your handy dandy ‘bugmenot’ extension in Firefox…
Good to see MS is finally getting into the security dance. People find a hole, you fix it, shuffle, repeat.
There’s just more and more exploits everyday on Lunix.
Fortunately, I run Linux, not Lunix.
go back to slashdot, or register a nickname, so we can give you some abuse.
we can still see your IP address – idiot
No, lunix is more worried about source code then taking security seriously. Thankfully, we have Solaris for grownups that take security seriously.
what is lunix o.O;
…..
can’t even spell linux right…
>Is this Microsoft’s new business model? Since Windows is >broken, and people have more or less accepted that, is >it Microsoft’s plan to make a token effort at patching, >but rather than really trying to fix the OS, rather >concentrate on selling new products to protect >businesses against its brokenness?
I assume you’re not being forced to use windows, if you aren’t then don’t use it. Just be happy and use Linux.
I’ve been running Ubuntu at home for the last 6 months and the update manager tells me at least once every 2 weeks that there is an “update” (read: patch) to the system. The last update I remember applied 18 different patches.
The pathces are typically bug fixes, but they also include security fixes, just like the Windows updates. How come nobody starts complaining when their Linux system needs an update?
1) when Microsoft releases a fix it advertises it (more or less, depending on the fix). When it doesn’t work or is buggy itself, it raises some questions. For what are people paying for?
2) when GNU/Linux get’s patched, it’s usually Linux that gets patched it’s a component of the whole system thus you can’t really blame it on Linux or the whole system. With Microsoft.. There’s usually only Microsoft to blame.
3) the option to do otherwise. With Ubuntu for example, you are free to remove those which requires a lot of patching. Sure, it will probably mean that your system will be totally different what you wanted but atleast you have the freedom to do so. With Windows, that probably means violating license or breaking up your system so that it doesn’t work.
4) it’s false to say that GNU/Linux doesn’t have security problems but by default most security updates are not critical as in “surf or keep Inet open and you’ll get viruses”. With Windows, there’s too many critical updates that truely effect the whole system security.
I really should register..
2) when GNU/Linux get’s patched, it’s usually Linux that gets patched it’s a component of the whole system thus you can’t really blame it on Linux or the whole system. With Microsoft.. There’s usually only Microsoft to blame
should read as
2) when GNU/Linux get’s patched, it’s not usually Linux that gets patched, it’s a component of the whole system thus you can’t really blame it on Linux or the whole system. With Microsoft.. There’s usually only Microsoft to blame
when GNU/Linux get’s patched, it’s usually Linux that gets patched it’s a component of the whole system thus you can’t really blame it on Linux or the whole system. With Microsoft.. There’s usually only Microsoft to blame.
Erm, yes you can blame Linux or the system. In the time I’ve been running Ubuntu I’ve had to patch the kernel and applications numerous times. I don’t go blaming Linus every time I need to update the kernel! When I install a distro I’m not interested in the fact that it’s been put together from software developed by hundreds of different groups of people, I just want it to work!
With Ubuntu for example, you are free to remove those which requires a lot of patching. Sure, it will probably mean that your system will be totally different what you wanted but atleast you have the freedom to do so.
It’s not much use having a system that doesn’t do what I want it to do, is it? Sure I’ve got freedom of choice, but is the system doesn’t do what I want then what good is it to have that choice?
For one, you dont have to, Also it’s nice of Ubuntu to give us free updates on a free OS with thosands of packages.
With MS Windows you pay for it, you expect security updates, but the amount of updates is aweful considering you only get IE and WMP, Outlook. It’s worth saying that the Linux kernel because of it’s nature has more security issues, much more code but gets fixed fast. On top of security patches with Windows you have service packs 1 & 2 & another, Office patches and service packs, need I go on?
Don’t generalize all Linux distributions as being the same. First Linux is the kernel which developers such as Novell, Red Hat, Mandriva, etc obtain and tweak to suit their customers needs. Some just use the same vanilla kernel and others improve on it. Also some developers package their own additional security tools into the distribution. Novell for example has an integrated firewall and included security software such as AppArmour with SUSE Linux 10.0.
Unfortunately for Windows users when it comes to viruses, trojans and spyware they need to spend even more money on securing their network. Something which Microsoft appears to be trying to resolve. Though I’m sure third party security companies like Symantec and McAfee won’t be impressed with their actions.
It should be clarified that the majority of security patches released by Linux developers are for issues they found, not ones that have been actually comprimised by a third party. This is typical for even Windows and OSX. The differance being that with Microsoft they are less forth coming with information regarding security holes. What tends to happen is a third party security firm will notify the public of a Windows hole which puts pressure on Microsoft to fix the issue in a timely manner. Novell’s turn around for security related issues is usually 2-24 hours where as with Microsoft in the past was a week to several months.
It’s disappointing that Windows is a bag of bolts by design and that their solutions often cover up problems they created but, to give credit where it’s due, they are doing something about it and getting the message out.
Where, I think, the Linux crowd could learn from this is that the average person looking on gets a click-and-go message all the way down the line from Microsoft but Linux is all over the place. True or not, that’s the perception.
I know this is heading off-topic, but as much as I dislike Microsofts products, their presentation is good and their products usable. Linux? Better by design, perhaps, but the presentation and usability has room for improvement.
The bottom line here is that neither Microsoft and closed source, or Linux and open source are perfect, but both are doing something right. I hope people can consider this and move more away from opposing to building something better.
Maybe it’s just the internet or age, but I’ve got sick and tired of seeing people knock chunks out of each other. It’s a total waste of resources and does more damage than good. Customers, like voters, want solutions not grandstanding.
All hail the incompetent server admin!
All hail the idiot user!
For where would be the ‘computer security’ industry (ie. anti-virus,anti-spyware) be without them.
– Jesse McNelis
All hail the incompetent server admin!
All hail the idiot user!
For where would be the ‘computer security’ industry (ie. anti-virus,anti-spyware) be without them.
Software is supposed to complient human intelligence, not replace it.
– Jesse McNelis
…Neil Barrett is going to be objective or not. I have my doubts (go read at groklaw) considering the fact that he’s been rather friendly towards MS.
I don’t think it really matters, because things will happen no matter what is decided “higher up”.
I see the changes in Microsoft and their business model as a by-product of the growth, strength & popularity of OpenSourse Software and Linux in general.
For quite a long time, many years in fact, Microsoft Windows was pretty much the only game in town if you weren’t a Macintosh user.
If you’re the only player (or biggest by far) on the field, you’re in the enviable position of being in control and being able to make/remake the rules to suit your own needs. When others want to play, you’re able to tell the new players that they can play by your your rules or not at all.
When OSS and Linux came to play, they didn’t play by the rules that MS set down. They didn’t even play in the same field. They made their own field and played the game differently.
While it’s taken time due to the tremendous head start that MS had, the effects are now being seen in the way MS does business. Instead of OSS & Linux having to keep up with Microsoft, Microsoft in now feeling the pressure to keep up with OSS & Linux.
OSS and Linux have made amazing strides & advances in recent years. Advances that MS has to acknowkledge and compete with to stop losing Desktop Marketshare.
http://hld.c64.org/poldi/lunix/lunix.html
and on a more humorous note:
http://www.adequacy.org/public/stories/2001.12.2.42056.2147.html
(yes, it’s a joke. Please dont start a flamewar about this article)
Remember folks, planted backdoors are only considered to be remote exploit bugs and patchable when they’re discovered by someone else.
Windows XP Service pack 3 Download updated: http://windows.czweb.org/show_article.php?id_article=18