This week at the Black Hat Security Conference two security researchers will discuss their findings which could completely bring Windows Vista to its knees. According to Dino Dai Zovi, a popular security researcher, "the genius of this is that it's completely reusable. They have attacks that let them load chosen content to a chosen location with chosen permissions. That's completely game over."
To read all comments associated with this story, please click here.
Member since:2007-02-17
The problem with Windows security has nothing to do with the core of the OS. It has to do with the core of MS themselves. MS has trained ISVs and their users to rely on having admin rights even when those rights are not necessary and are actually a detriment to the stability of their system. Windows has a more fine grained permission system than the *nixes but no one uses them. MS tried to rectify the issue with the AUC thing but because of the type of access most application are asking due to laziness, it fails in so many ways. It becomes annoying and instead of helping security it actually hurts because now the OS has trained users to ignore warnings. I think Ubuntu and OSX handle this much better.
I'm a linux and Mac, this is just my preference. However I do think that Windows gets a lot of flack for MS lack of balls when it comes to telling 3rd party developers to get their damn act together and also for not training uses properly from the get go. Something that Apple and Linux distros have been doing for years.
Member since:2005-07-06
For those who believe Windows to be a multi-user system at the core, log into you Windows box twice as the same user - i.e., run two simultaneous sessions as the same user. Are you there yet? Even different users being logged in at the same time is done with "fast-user switching". The multi-user OS is an illusion. It is a hobby OS meant to keep track of your CD's and home checkbook. The current web-connected computer was not envisioned when it was created. Meanwhile, Unix was serving 1000's of simultaneous user sessions on a single box. Security was paramount from early on. I agree that Microsoft has done a pretty good job of bolting on fine-grained permissions, etc. with the NT kernel. But no matter how you spin it, processes in the Windows world "long to be free" and by nature tend to take over the computer. Only a massive harness-and-strap framework like we see in the Vista OS can try to prevent these processes from running wild. But just like "life" in the first Jurassic Park movie, they always find a way.
Now lets quit arguing, grab a nice BSD kernel, toss a few bucks at the kernel devs, close it all up for profit, and get to crackin' on that shiny new Winders!
Member since:2007-02-27
Member since:2005-07-06
"Windows has a more fine grained permission system than the *nixes but no one uses them."
No one?
I don't think so.
Almost all IT and system administrators apply them.
If you apply Read Write and Execute Permissions to a root folder and a user deletes it you would understand why it should be done.
There are 2 different types of permissions:
1. Share Permissions
2. NTFS (or file system) permissions
Windows has more permissions control than Unix, which is true and windows is better in this regard but windows is vulnerable (and buggy recently).
Member since:2005-07-06
The simple problem is this; when Microsoft don't even code to the standards, how can things improve? I remember when Windows Terminal Services was released and the number of Microsoft applications that broke because they were never designed to run in that way.
Office 2003 on Vista being a recent example of when the licence 'accept/decline' keeps coming up because the settings aren't saved to a global location - why wasn't the installer right at the beginning put into administration mode so that all the necessary system wide things are set - such as accepting the licence?
But this goes beyond just mere security. Windows Vista, for example, not a single application bundled with it uses the new API's like WPF. Heck, there is still the font dialogue using widgets from circa Win 3.x; not a single bundled application are using the new and safe API calls that have been known about when Microsoft did the bit Windows XP SP2 development.
Microsoft needs to lead by example and start ensuring their own products actually work properly instead of getting up and lecturing the world on how 'third parties' were 'slow to release drivers/software'. It looks pretty stupid when an operating system vendor who has the operating system at their disposal, that they can't get their middleware functioning right on it. If they can't get it right, with the Windows source code and documentation in front of them - how on earth can the third parties get it correct?
Member since:2007-09-17
Your post is very inaccurate. Windows (NT based versions) are inherently multi-user. Each user has their own home directory in windows as well. And security is also very tight because the user can only write to their home directory.
The problem is that most people are habitual of running windows as Administrator. This was the decision made by Microsoft to make Administrator as the default users for people migrating from Windows 9x.
These problems are due to business decisions as Microsoft doesn't want to alienate users by forcing them to run as limited user which would mean educating users on the difference between normal user account and administrator etc etc.
It is a tough problem to solve. You either bite the bullet and let users complain or you do something like UAC and still users complain or you do nothing and then users complain about security (or lack of it).
Member since:2006-01-11
Users aren't just running as administrator out of habit; many programs just won't run correctly otherwise.
We usually run Linux on occasion, but once in a rare while I'll boot up Windows to do something or other. For example, my daughter was given a game for her birthday, so I booted up Windows to try it out. Turns out that I had to make my six-year-old girl an administrator if she wanted to play the game!
So while the architects did a good job on the core system, common practices force users to turn off the security.
Member since:2005-11-06
Unfortunately not quite true...
Windows has permissions on several directories including the root of the disk that allow anyone to create files and folders, these are done with the so-called owner account.
I have to remove these permissions on terminal servers because they still allow users to install programs that don't use the Windows installers.
Only after this is done can users forget about writing anywhere but their own profile directory.
Member since:2006-10-10
Member since:2008-07-27
Member since:2005-11-10
Member since:2005-07-06
"This is my NeXTstation Turbo Color booting the Mac System 7.1 Operating System using a hardware add-on called 'Daydream'. The Daydream has a Mac ROM and a few custom ICs in it and hooked up to the NeXTs DSP port. Turns your NeXT into a full fledged 68k powered Mac." So cool.
"The NetBSD Project is pleased to announce NetBSD 6.1, the first feature update of the NetBSD 6 release branch. It represents a selected subset of fixes deemed important for security or stability reasons, as well as new features and enhancements. Please note that all fixes in the prior security/bugfix updates (NetBSD 6.0.1 and 6.0.2) are also in 6.1."
"At the end of a week in which Electronic Arts confirmed it wasn't developing a thing for the Wii U, one of the software engineers in EA Sports' Canada studio, in a series of since-deleted tweets, disparaged the console as 'crap' and suggested Nintendo should give up on hardware altogether. 'The Wii U is crap. Less powerful than an Xbox 360. Poor online/store. Weird tablet', tweeted Bob Summerwill, listed as a senior software engineer at EA Canada, in a reply to a tweet posting a link about EA's no-Wii U news. 'Nintendo are walking dead at this point'." The Wii U is turning into the 21st century's Virtual Boy.
"In NixOS, the entire operating system - the kernel, applications, system packages, configuration files, and so on - is built by the Nix package manager from a description in a purely functional build language. The fact that it's purely functional essentially means that building a new configuration cannot overwrite previous configurations. Most of the other features follow from this." Interesting approach. A Linux distribution, sure, but with some very refreshing ideas about system configuration.
Appfour added, among other features, C/C++ support to its new version of AIDE. From Android-IDE, "Now you can write parts of your app or your whole app in C/C++ on your device. AIDE supports the Standard Android NDK toolchain (GCC 4.6 + Bionic, STL, ...). No changes are necessary if you want to build an app developed on a PC with Eclipse. C/C++ development is fully integrated: Build errors appear in the error list and files can easily be navigated to with Go to file. The editor supports C/C++ syntax highlighting."
Ars nails it: "The answer is that Google did announce what amounts to a fairly substantial Android update yesterday. They simply did it without adding to the update fragmentation problems that continue to plague the platform. By focusing on these changes and not the apparently-waiting-in-the-wings update to the core software, Google is showing us one of the ways in which it's trying to fix the update problem."
"It is good for programmers to understand what goes on inside a processor. The CPU is at the heart of our career. What goes on inside the CPU? How long does it take for one instruction to run? What does it mean when a new CPU has a 12-stage pipeline, or 18-stage pipeline, or even a 'deep' 31-stage pipeline? Programs generally treat the CPU as a black box. Instructions go into the box in order, instructions come out of the box in order, and some processing magic happens inside. As a programmer, it is useful to learn what happens inside the box. This is especially true if you will be working on tasks like program optimization. If you don't know what is going on inside the CPU, how can you optimize for it? This article is about what goes on inside the x86 processor's deep pipeline."
"It was the only moment I heard regret slip into Otellini's voice during the several hours of conversations I had with him. 'The lesson I took away from that was, while we like to speak with data around here, so many times in my career I've ended up making decisions with my gut, and I should have followed my gut,' he said. 'My gut told me to say yes.'" The world would've been a much different place - Apple would have been less dependant on Samsung for its chips, which probably would've meant less money for Samsung to develop its Galaxy business.Glass is getting some love at Google I/O as well. New applications have been released - Facebook, Twitter, Evernote, Elle, Tumblr, and CNN. Perhaps more interesting: the newly announced Google Glass Developer Kit will allow offline applications and direct hardware access - great for hacking and expanding Glass' potential. This kit will really allow hackers to put Glass through its paces."But Beck and Merrill decided that simply banning toxic players wasn't an acceptable solution for their game. Riot Games began experimenting with more constructive modes of player management through a formal player behavior initiative that actually conducts controlled experiments on its player base to see what helps reduce bad behavior. The results of that initiative have been shared at a lecture at the Massachusetts Institute of Technology and on panels at the Penny Arcade Expo East and the Game Developers Conference." Absolutely fascinating stuff. I'm a League of Legends player, and to be honest, the community isn't nearly as bad as some make it out to be. I'm happy Riot games has the guts to employ science to address the issue.
Member since:
2005-07-06
Windows is fundamentally a single-user, "I own the computer" operating system with multiple layers of kludges piled on top of this core. Unix-based OS's are fundamentally multi-user operating systems where "I only own my home directory". Any layers built on top of Unix-like OS's fundamentally secure core are "tightening" and "strengthening" measures. The layers built on top of Windows' insecure core are mere prayers.
It is time to do what Mac did, and bite the bullet and replace the insecure core.
All else is FUD and Flame.
EDIT: Punctuation
Edited 2008-08-08 13:59 UTC