Re: Microsoft Says Recovery from Malware Becoming Impossible

Roger Abell [MVP] wrote:


"Imhotep" <imhotep@xxxxxxxxxx> wrote in message
news:vJ-dnQpNaahB59TZnZ2dnUVZ_tGdnZ2d@xxxxxxxxxxxxxxx
Michael D. Ober wrote:


The only OS that this warning doesn't appear to apply to is OpenVMS.
Linux (and by extension, Mac OS-X) and Unix are also subject to this
same problem.

Mike.

"Imhotep" <imhotep@xxxxxxxxxx> wrote in message
news:R5idnZNlU5BZ-NXZnZ2dneKdnZydnZ2d@xxxxxxxxxxxxxxx
"LAKE BUENA VISTA, Fla.-In a rare discussion about the severity of the
Windows malware scourge, a Microsoft security official said businesses
should consider investing in an automated process to wipe hard drives
and
reinstall operating systems as a practical way to recover from malware
infestation."

"When you are dealing with rootkits and some advanced spyware programs,
the
only solution is to rebuild from scratch. In some cases, there really
is
no
way to recover without nuking the systems from orbit," Mike Danseglio,
program manager in the Security Solutions group at Microsoft, said in a
presentation at the InfoSec World conference here."

http://www.eweek.com/article2/0,1895,1945808,00.asp

Imhotep


What kind of 'stuff' are you smoking???? Do you have any idea how stupid
you
sound?

I have been using Linux for 10 years, never caught anything. If I had a
dollar everytime I caught something on Windows I could retire very
wealthy.
The truth is that malware is 99.9 % a Windows problem. So stop lying
about it!

Imhotep

I would suggest that that is in fact an assessment of skill.
I have (iniitally, had to) run Windows versions for a dozen years now,
starting with NT 3.50, and have not caught anything.
I will admit that in the dozen or so years before that when I ran
*nix brands exclusively it was much easier to not "catch" anything,
but that was partly the threat level and partly the simplicity of the
user authorization model.

Roger

User authorization model weak? Not at all. I run a linux "domain" where the
back end authentication and authorization system is LDAP. It is very strong
and allows very granular configurations. For all you non technies reading
this AD IS LDAP! Roger, I think you are little out-of-the-times with
regards to the linux World, but that is ok.

With regards to crapware the FACT remains it is a Windows problem!!! I too
have been using Windows going back to DOS 2.(something) and Unix since
college and have never, let me repeat that, never had a problem with it.

The reason you have the crapware situation is:

1) Microsoft illegally dominates the PC World, why should THEY spend money
improving the software when people are stupid enough to ask for more
everytime they are spanked using it?

2) They make money by forcing you to upgrade because the latest version of
MS has "highly improved security enhancements". (hahaha)

3) Within Microsoft the Marketing has more authority then the Engineering
department.

4) Microsoft believes in the time proved lie of "security by obscurity". MS
often takes a known standard and alters it so it does not work well with
anything but MS products. This has been shown to be a fatal flaw. When
strategic marketing over rides time proven technology standards you are in
for a lot of bugs, security holes and problems. But, hey, it does help
their marketing strategy!

5) Recently, in an article I posted, you saw Microsoft basically say,
crapware is out of control and you (the customer) need to *BUY* software
that rebuilds your PC frequently. Think about that statement for a minute.
That would be like if you bought a defective car and the manufacture said
"You need to just go out an replace the engine very 5k miles". You can bet
that if a manufacturer said that to me, I would never buy a car from that
manufacturer again. But, again, people are stupid. The more MS spanks them
the more they want....it is funny in a way.

If you are up to the challenge, let do this. Why don't you get a list of all
the spyware, adware and general crapware that can infect Linux and I will
get a corresponding list for Windows. Then we can draw our own conclusions
about the percentages? Up for the challenge?

Imhotep
.

Relevant Pages

  • [NT] Cumulative Security Update for Internet Explorer (MS04-025)
    ... Get your security news from a reliable source. ... * Microsoft Windows NT Workstation 4.0 Service Pack 6a ... Navigation Method Cross-Domain Vulnerability ...
    (Securiteam)
  • SecurityFocus Microsoft Newsletter #120
    ... Strengthening Network Security: FREE Guide Network security is a ... MICROSOFT VULNERABILITY SUMMARY ... Microsoft Windows File Protection Signed File Replacement... ... PlatinumFTPServer Information Disclosure Vulnerability ...
    (Focus-Microsoft)
  • SecurityFocus Microsoft Newsletter #176
    ... MICROSOFT VULNERABILITY SUMMARY ... Microsoft Windows XP HCP URI Handler Arbitrary Command Execu... ... PHPNuke Category Parameter SQL Injection Vulnerability ... Microsoft Baseline Security Analyzer Vulnerability Identific... ...
    (Focus-Microsoft)
  • SecurityFocus Microsoft Newsletter #242
    ... MICROSOFT VULNERABILITY SUMMARY ... PostNuke Blocks Module Directory Traversal Vulnerability ... Groove Networks Groove Virtual Office COM Object Security By... ... The Microsoft Windows IPV6 TCP/IP stack is prone to a "loopback" condition initiated by sending a TCP packet with the "SYN" flag set and the source address and port spoofed to equal the destination source and port. ...
    (Focus-Microsoft)
  • [NT] Vulnerability in HTML Help Allows Code Execution (MS05-001)
    ... The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com ... Get your security news from a reliable source. ... * Microsoft Windows XP Service Pack 1 and Microsoft Windows XP Service ...
    (Securiteam)