Linked by Thom Holwerda on Fri 14th Jun 2013 17:32 UTC
Microsoft From Bloomberg: "Microsoft, the world's largest software company, provides intelligence agencies with information about bugs in its popular software before it publicly releases a fix, according to two people familiar with the process. That information can be used to protect government computers and to access the computers of terrorists or military foes." The lid has officially been blown off.
Thread beginning with comment 564729
To read all comments associated with this story, please click here.
Wow, wow, wow...
by UltraZelda64 on Fri 14th Jun 2013 17:42 UTC
UltraZelda64
Member since:
2006-12-05

So Windows is more "secure" only if you're government. Any new government backdoors you'd like to tell us about, Microsoft?

I don't normally care a whole lot about the pros and cons of proprietary vs. open source... but Microsoft just gave free and open source software one hell of a boost. Once again, I am amazed. Government (and paying corporations/partners) above literally everyone else.

Reply Score: 13

RE: Wow, wow, wow...
by darknexus on Fri 14th Jun 2013 23:06 in reply to "Wow, wow, wow..."
darknexus Member since:
2008-07-15

I don't normally care a whole lot about the pros and cons of proprietary vs. open source... but Microsoft just gave free and open source software one hell of a boost.

Not at all. Unless you are going to examine every bit of code that goes on your machine, it's entirely possible for open source software to have these backdoors just as much as, if not more than, proprietary software. Peer code review is easy enough to slip something by, especially if it manifests no obvious symptoms and considering how many various distributions patch their software in custom ways. Are you going to examine every patch? Every update? No? Then you could be just as vulnerable as anyone running Windows.

Reply Parent Score: 0

RE[2]: Wow, wow, wow...
by Soulbender on Sat 15th Jun 2013 06:09 in reply to "RE: Wow, wow, wow..."
Soulbender Member since:
2005-08-18

Then you could be just as vulnerable as anyone running Windows.


Vulnerable but not as vulnerable.
There are more people from different parts of the world looking at the code and commits. Sure, something could slip by but the chances is pretty slim. The chances the project will keep important security issues from you in order to appease the U.S government are also much smaller.

Reply Parent Score: 7

RE[2]: Wow, wow, wow...
by cdude on Sat 15th Jun 2013 11:41 in reply to "RE: Wow, wow, wow..."
cdude Member since:
2008-09-21

Unless ... examine every ... code


What is exactly what happens. Code like those of the Linux Kernel is permanently reviewed. No single patch goes in without multiple reviews from different people, without the patch being public available.

The nature, read license, also makes sure all distributors publish there patches, even try to get them proactive upstream.

Are you going to examine every patch? Every update?


That is whats happening, yes. There are 1000 times as much reviewers as coders and not everybody needs to cross-check everything again. A chain of trust and shared work. Get used to it, its the present and future cause this days software like a Kernel is to complex for individuals.

Edited 2013-06-15 11:43 UTC

Reply Parent Score: 9

RE: Wow, wow, wow...
by BallmerKnowsBest on Sat 15th Jun 2013 18:09 in reply to "Wow, wow, wow..."
BallmerKnowsBest Member since:
2008-06-02

So Windows is more "secure" only if you're government. Any new government backdoors you'd like to tell us about, Microsoft?


This may come as a shock do you, but the term "backdoor" doesn't actually refer to selective disclosure of security vulnerabilities. But hey, don't let reality get in the way of your self-righteous posturing.

I don't normally care a whole lot about the pros and cons of proprietary vs. open source... but Microsoft just gave free and open source software one hell of a boost.


Sure, if you prefer to have your systems compromised by Russian/Chinese/Eastern European criminals:

http://arstechnica.com/security/2013/04/exclusive-ongoing-malware-a...

Once again, I am amazed. Government (and paying corporations/partners) above literally everyone else.


A company prioritizing the needs of their most valuable/important customers? SHOCKING!!!

Reply Parent Score: 0

RE: Wow, wow, wow...
by bassbeast on Mon 17th Jun 2013 05:07 in reply to "Wow, wow, wow..."
bassbeast Member since:
2007-11-11

Uhhh...if you trust ANY OS then you honestly deserve what you get, or did you forget the stink a few years back about some NSA guys working on critical parts of BSD?

The moral of this story is don't use IE, have a decent firewall, and pay attention to what is going on with your PC and network. MSFT can give first dibs to the king of the moon for all I care, they can slam into my firewall and join all the Chinese and Eastern EU hackers that slam against it every day, good luck.

Reply Parent Score: 2

RE[2]: Wow, wow, wow...
by Soulbender on Tue 18th Jun 2013 05:12 in reply to "RE: Wow, wow, wow..."
Soulbender Member since:
2005-08-18

or did you forget the stink a few years back about some NSA guys working on critical parts of BSD?


You mean the bullshit thing were they supposedly put in backdoors in the IPSEC code?
Just like how you shouldn't trust the OS you shouldn't trust anything you read on the internet.

Reply Parent Score: 2