Instantly delete email threats for Office 365 » Free Offer
Welcome Guest | Sign In
ECTNews.com
E-Commerce Times TechNewsWorld CRM Buyer LinuxInsider
Discussions

E-Commerce Times Talkback

 
ECT News Community   »   E-Commerce Times Talkback   »   Re: Gartner Casts Doubt on MS Security Commitment



Re: Gartner Casts Doubt on MS Security Commitment
Posted by bangular on 2004-02-14 01:20:54
In reply to Robyn Weisman
Gartner is fickle. They will ride the waves. If MS is popular they will tout them as the inventors of democracy and the american way. When a new worm comes out they will shun them and say they invented tornados. It's good business for them. Almost every analyst out there today is full of crap anyway. What they want is the most print time. They say whatever is going to get them printed, because that's more money for them. The people who you should listen to the opinions of are programmers and hackers (and crackers ;) They sit in front of this code day in and day out. Without them there would be no computers. They are the most insightful people in the entire freakin industry, yet these idiot analysts get the print time.
.
Not to say I don't think MS isn't incompetent. They are in the 3rd year of their "secured computing initutive." These last years have been the worst in their history. And they don't care! It's cheaper for them to spin the stoy than it is to audit their code. If they _really_ cared about security, they could have secured windows. Something as simple as a non-executable stack and randomized memory address space would significantly slow down or even stop 99% of the buffer overflow-related worms. Instead, we see worms infecting tens of millions of computers in under five minutes.
.
I think what was found in one of the comments of the leaked source sums up their entire attitude towards security. "may be off by -1".
.
On the subject of how much of the total source code was leaked, it's 13 million lines. I don't care if that's 1% or 100%, 13 million lines of code is an obscene amount. Consider this: there is a generally accepted rule that there's about one mistake per thousand lines of code. Some idiot pundits are going around saying most of the win2k holes have been closed. This is simply not true. Some of these exploits are in code that dates back to the late '80s. Microsoft doesn't release new products, they slap new code on top of old products. So the current versions of windows share 90% of their code with each other. Much of this VERY old code. If they think most of win2k's buffer overflows have been found, I can't wait to see the look of surprise when winsock2 is pwnd and every application that uses it is pwnd along with it.
.
p.s. quit it with the flash ads. I practice what I preach and use linux on the desktop; and flash for linux is awful and uses a lot of cpu time. Especially for 5 flash ads in one page. gif animations aren't that bad. I can deal with those. What I don't want to deal with is cpu usage jumping to 30% every time I visit your site.




 * Topic  Author  Date
Re: Gartner Casts Doubt on MS Security Commitment  Robyn Weisman  2004-02-14 00:51:49
Re: Gartner Casts Doubt on MS Security Commitment  bangular  2004-02-14 01:20:54
Jump to:
Your Name: [modify]
* Subject: [edit]
Choose Icon:

Submissions containing gratuitous promotions or advertisements
will not be posted. [Message Board and Community Rules]


* Comments:

Notify me by e-mail when someone responds to my post.

How important is social media to the success of your business?
Highly -- Social media is essential to our business model.
Somewhat -- We do see benefit from social media, but without it our operations would continue.
Minimally -- We're on social media because that's expected, though it's influence on our success is negligible.
Not at All -- Social media is not useful to our business.