OSNews is Exploring the Future of Computing

Microsoft: 'Malware Will Thrive, Even with Vista's UAC'

Linked by Thom Holwerda on Fri 27th Apr 2007 18:23 UTC, submitted by dylansmrjones

Despite all the anti-malware roadblocks built into Windows Vista, a senior Microsoft official is lowering the security expectations, warning that viruses, password-stealing Trojans and rootkits will continue to thrive as malware authors adapt to the new operating system. "There is no guarantee that malware can't hijack the elevation process or compromise an elevated application," Russinovich said after providing a blow-by-blow description of how UAC works in tandem with Internet Explorer (with Protected Mode) to limit the damage from malicious files. Even in a standard user world, he stressed that malware can still read all the user's data; can still hide with user-mode rootkits; and can still control which applications (anti-virus scanners) the user can access.

0 61 Comment(s)

http://osne.ws/dq0

Permalink for comment 234704
To read all comments associated with this story, please click here.

RE[2]: Idiots

by kaiwai on Sat 28th Apr 2007 00:58 UTC in reply to "RE: Idiots"

Member since:
2005-07-06

I have to agree with you. MS needs to break backwards compatibility. I mean what IS there anyway in terms of software that one needs to run? Ok Photoshop....if MS says they are bringing out a new OS which will be brand new all new with no backwards compatibility...do you not think they could convince Adobe to make a version of Photoshop to work with that new OS? It aint rocket science. It is MS's reluctance to break backwards compatibility. THey could have done it with Vista and it would have been MUCH better off for it but they dropped the ball as usual...

Well, the thing is, they have the marketing muscle and in alot better position than Apple when they bought out MacOS X. The fact that these companies don't have Linux versions of their applications makes the situation even easier.

Strip this backwards compatibility, then simply drag these companies through the mud who refuse to provide free updates and make their next versions based around these superior secure API changes - basically make the market and consumers know that these companies are refusing to update because they put their sort term profits ahead of doing things to benefit their end users.

Microsoft will come off as the concerned company who has moved mountains to make their system secure, and basically those companies who software refuses to run are simply money hungry organisations who don't have the interests of the end user at heart.

As for corporate's, they'll eventually move, even if it is 6months later than what they do today; but ultimately if Microsoft provides all the tools necessary, offer free upgrades and documentation for companies to port their internally written applications and provide free upgrades for those third parties who refuse to maintain their software.

Hence the reason I don't sit in the same pool as those who think that Windows is so broken that the whole thing needs to be thrown out and started again; Windows technologically has a better footing than most operating systems, what holds it back is the layers of crap they've kept holding onto for the sake of compatibility.

Years and years ago, they might have had a valid reason, but now they have a valid reason to get rid of it - for security reasons.

Reply Parent Score: 2

News

NeXTstation Turbo Color booting MacOS System 7.1

Linked by Thom Holwerda on 05/19/13 23:15 UTC

"This is my NeXTstation Turbo Color booting the Mac System 7.1 Operating System using a hardware add-on called 'Daydream'. The Daydream has a Mac ROM and a few custom ICs in it and hooked up to the NeXTs DSP port. Turns your NeXT into a full fledged 68k powered Mac." So cool.

2 11 Comment(s)

NetBSD 6.1 released

Linked by Thom Holwerda on 05/19/13 23:11 UTC, submitted by Drumhellar

"The NetBSD Project is pleased to announce NetBSD 6.1, the first feature update of the NetBSD 6 release branch. It represents a selected subset of fixes deemed important for security or stability reasons, as well as new features and enhancements. Please note that all fixes in the prior security/bugfix updates (NetBSD 6.0.1 and 6.0.2) are also in 6.1."

2 Post Comment

EA Sports developer calls Wii U 'crap'

Linked by Thom Holwerda on 05/18/13 21:06 UTC

"At the end of a week in which Electronic Arts confirmed it wasn't developing a thing for the Wii U, one of the software engineers in EA Sports' Canada studio, in a series of since-deleted tweets, disparaged the console as 'crap' and suggested Nintendo should give up on hardware altogether. 'The Wii U is crap. Less powerful than an Xbox 360. Poor online/store. Weird tablet', tweeted Bob Summerwill, listed as a senior software engineer at EA Canada, in a reply to a tweet posting a link about EA's no-Wii U news. 'Nintendo are walking dead at this point'." The Wii U is turning into the 21st century's Virtual Boy.

0 56 Comment(s)

NixOS

Linked by Thom Holwerda on 05/18/13 7:37 UTC

"In NixOS, the entire operating system - the kernel, applications, system packages, configuration files, and so on - is built by the Nix package manager from a description in a purely functional build language. The fact that it's purely functional essentially means that building a new configuration cannot overwrite previous configurations. Most of the other features follow from this." Interesting approach. A Linux distribution, sure, but with some very refreshing ideas about system configuration.

3 7 Comment(s)

AIDE v2 adds C/C++ support

Linked by fran on 05/18/13 1:38 UTC

Appfour added, among other features, C/C++ support to its new version of AIDE. From Android-IDE, "Now you can write parts of your app or your whole app in C/C++ on your device. AIDE supports the Standard Android NDK toolchain (GCC 4.6 + Bionic, STL, ...). No changes are necessary if you want to build an app developed on a PC with Eclipse. C/C++ development is fully integrated: Build errors appear in the error list and files can easily be navigated to with Go to file. The editor supports C/C++ syntax highlighting."

0 14 Comment(s)

How Google updated Android without releasing version 4.3

Linked by Thom Holwerda on 05/17/13 23:35 UTC, submitted by kragil

Ars nails it: "The answer is that Google did announce what amounts to a fairly substantial Android update yesterday. They simply did it without adding to the update fragmentation problems that continue to plague the platform. By focusing on these changes and not the apparently-waiting-in-the-wings update to the core software, Google is showing us one of the ways in which it's trying to fix the update problem."

0 11 Comment(s)

A journey through the CPU pipeline

Linked by MOS6510 on 05/17/13 22:22 UTC

"It is good for programmers to understand what goes on inside a processor. The CPU is at the heart of our career. What goes on inside the CPU? How long does it take for one instruction to run? What does it mean when a new CPU has a 12-stage pipeline, or 18-stage pipeline, or even a 'deep' 31-stage pipeline? Programs generally treat the CPU as a black box. Instructions go into the box in order, instructions come out of the box in order, and some processing magic happens inside. As a programmer, it is useful to learn what happens inside the box. This is especially true if you will be working on tasks like program optimization. If you don't know what is going on inside the CPU, how can you optimize for it? This article is about what goes on inside the x86 processor's deep pipeline."

2 15 Comment(s)

Intel CEO on not getting Intel inside the iPhone

Linked by Thom Holwerda on 05/17/13 22:15 UTC, submitted by Tom

"It was the only moment I heard regret slip into Otellini's voice during the several hours of conversations I had with him. 'The lesson I took away from that was, while we like to speak with data around here, so many times in my career I've ended up making decisions with my gut, and I should have followed my gut,' he said. 'My gut told me to say yes.'" The world would've been a much different place - Apple would have been less dependant on Samsung for its chips, which probably would've meant less money for Samsung to develop its Galaxy business.

0 9 Comment(s)

Glass gets new applications, developer kit

Linked by Thom Holwerda on 05/16/13 21:41 UTC

Glass is getting some love at Google I/O as well. New applications have been released - Facebook, Twitter, Evernote, Elle, Tumblr, and CNN. Perhaps more interesting: the newly announced Google Glass Developer Kit will allow offline applications and direct hardware access - great for hacking and expanding Glass' potential. This kit will really allow hackers to put Glass through its paces.

0 8 Comment(s)

Using science to change player behavior in League of Legends

Linked by Thom Holwerda on 05/16/13 17:04 UTC

"But Beck and Merrill decided that simply banning toxic players wasn't an acceptable solution for their game. Riot Games began experimenting with more constructive modes of player management through a formal player behavior initiative that actually conducts controlled experiments on its player base to see what helps reduce bad behavior. The results of that initiative have been shared at a lecture at the Massachusetts Institute of Technology and on panels at the Penny Arcade Expo East and the Game Developers Conference." Absolutely fascinating stuff. I'm a League of Legends player, and to be honest, the community isn't nearly as bad as some make it out to be. I'm happy Riot games has the guts to employ science to address the issue.

1 13 Comment(s)

OSNews

More News »