Feb 10, 2012 - 05:30 PM EST — AAPL: 493.42 (+0.25, +0.05%) | NASDAQ: 2903.88 (-23.35, -0.8%)

Oxymoron: Microsoft security

Saturday, August 12, 2006 · 11:24 am · 42 Comments

“As if Homeland Security Secretary Michael Chertoff didn’t have enough on his plate. Not only has he had to deal with Katrina and Osama. Now he’s also got to whip Steve Ballmer and the crew at Microsoft into shape. If past is prologue, that last task may be the most daunting of all,” Charles Cooper writes for CNET.

:In a remarkable declaration earlier this week, the Department of Homeland Security–a bureaucracy set up to deal with stuff that generally falls under the category of national emergency–called on all users of Windows software to install a new security patch issued by Microsoft,” Cooper writes. “This wasn’t your garden variety flaw. The fear in Washington was a repeat of something like the chaos caused by the MSBlast worm in 2003.”

Cooper writes, “By now, Chertoff’s people must be thoroughly frustrated that Microsoft still turns out poorly designed products. What with terror plots being uncovered overseas and threats of airline bombings, cybersecurity obviously is not the top headline this week. But the threat of a network meltdown has not disappeared–especially when flaws so regularly turn up in Windows, the computer operating system most people in this country use.”

Cooper writes, “Defenders will argue that it’s unfair to demand perfection from Microsoft; that software is an imperfect art. And besides, they add, is the Mac operating system or Linux bulletproof? Clearly, the answer is no. But the number of security holes turning up in either operating system is a fraction of what turns up in the Windows world.”

Cooper writes, “Here’s something to consider: If bridge builders or airplane designers applied the same standards to their labors, do you believe that the public would so easily forgive the regularity with which bridges would collapse and airliners fall out of the sky?”

Full article here.

[Thanks to MacDailyNews Reader "LinuxGuy and Mac Prodigal Son" for the heads up.]

It’s really sad that so many people have to be wary about opening email, visiting websites, chatting with presumed “buddies,” or downloading music, photos, movies or other files over the Internet. No one should have to zealously guard their computers against spyware, viruses, trojan horses, or various other types of malware. Or run a bewildering assortment of (quickly obsolete) virus-protection apps. And no one should have to run a computer to a nearby computer store, so it can be “cleaned” on a routine basis. Do you know why people put up with that? If their cars didn’t drive where they wanted to go; their TVs didn’t play what they wanted to watch; or their phones didn’t connect to the party they called, how long would they keep using them? Apple provides more info online about Mac security here.

US Department of Homeland Security: patch Microsoft Windows now or risk complete system compromise – August 10, 2006
CCIA wants U.S. Dept. of Homeland Security to reconsider buying ‘insecure Microsoft software’ – August 29, 2003
U.S. Department of Homeland Security says Windows vulnerable to attack – August 01, 2003
Department of Homeland Security chose Microsoft due to time and money limitations – July 21, 2003
U.S. Department of Homeland Security awards enterprise agreement to Microsoft – July 15, 2003

Categories: MacDailyNews, News

Thank You for supporting MacDailyNews!

Apple Store Online:
• Order iPhone 4s. From $199. Fast, free shipping only at the Apple Online Store.
• New Apple MacBook Pro. Now faster than ever. Starting at $1199, plus free shipping.
• MacBook Air. Available in two utlracompact sizes. Starting at just $999. Fast, free shipping from the Apple Online Store.
• The new iMac. With next-generation quad core processor and advanced graphics. From $1199. Fast, free shipping at the Apple Online Store.
• The new Mac mini. Now up to 2x faster. From $599. Fast, free shipping. Buy now at the Apple Online Store.

Comment Feed

42 Comments

1 2 Next »

Harry

Saturday, August 12, 2006 - 11:32 am · Reply

The birdflue virus does cost less than Microsoft’s malware…
Cubert

Saturday, August 12, 2006 - 11:44 am · Reply

The bridge and airplane analogy is similar to the car analogy that I have used for years. The next time someone is bitching about how their Dull is running slow and they want to buy another one. Ask them if they bought a car from Ford and it ended up in the shop every week for repairs, would they buy another Ford? Light bulbs start turning on.
andy

Saturday, August 12, 2006 - 11:45 am · Reply

it worries me imensely that govenmentss etc use windows
theloniousMac

Saturday, August 12, 2006 - 11:49 am · Reply

HS also releases warnings about Macintosh security holes.

For some reason, those don’t get much publicity.
readerX

Saturday, August 12, 2006 - 12:00 pm · Reply

I WHOLEHEARTEDLY SECOND THE COMMENT FROM ANDY

I WHOLEHEARTEDLY THIRD THE COMMENT FROM ANDY

I WHOLEHEARTEDLY FOURTH THE COMMENT FROM ANDY

I’d like to include that it is extremely worrisome that Banking and other Financial institutions would still continue to base their online operations on a platform coded by Microsoft.
TTzz

Saturday, August 12, 2006 - 12:21 pm · Reply

“HS also releases warnings about Macintosh security holes.

For some reason, those don’t get much publicity.”

Please provide link
Chris

Saturday, August 12, 2006 - 12:36 pm · Reply

theloniousMac, security holes don’t come close to equaling exploits, and shouldn’t get the same amount of publicity.

First, a hole can let you past one level of security, but not the next, so it may not be possible to do anything meaningful with the hole. Second, exploiting a hole may require one or more non-standard setups in order to be useful to a hacker, as we’ve seen with the unsuccessful trojan released last spring that required a specific Bluetooth setup in order to propagate. And finally, a hole may require sophisticated techniques, extensive knowledge of the OS, and a great deal of work to be exploited.

All of these help to explain why OS X has had holes discovered, but no successful exploits. The fact that Windows has had so many successful exploits suggests that: 1) Once you get past Window’s front line security, you’re in control. 2) Many Windows holes do not require non-standard setups. 3) Many Windows holes are relatively easy to exploit.
S. Russell

Saturday, August 12, 2006 - 12:38 pm · Reply

I think we should start writing and calling our financial institutions, governments, etc, and start asking why #1 they are gambling with OUR security/money/livelihood by using Windows, and #2 request (not demand like the obnoxious Mac Users we’re so branded for being) that they CEASE and DESIST immediately considering what issues even NON-Mac users will admit to having and dealing with on the M$ side.

I’ve already dropped one bank for having horrible online GUI’s that don’t jive with Safari (or Firefox !!) well and for having their ‘brand new HP’s’ seize up during simple queries!

Does anyone else not see the way to Apocalypse (the death of our online-existing global persona) by way of the Gates and Ballmer squad?

MDN-W – ‘meaning’ as in appreciate the ‘meaning’ of our existence and choose a better platform!
S. Russell

Saturday, August 12, 2006 - 12:42 pm · Reply

Just wanted to add this –

‘livelihood’ is defined as “The means of SECURING the neccessities of life” – something I think everyone using a beige box should consider. Kind of fits considering how many of us make rent staring at a screen all day.
Metryq

Saturday, August 12, 2006 - 12:48 pm · Reply

“Ballmer squad” — I like that!
strong sell

Saturday, August 12, 2006 - 1:12 pm · Reply

It’s about time more people recognize that:

1. Windows is completely unsuitable for any kind of networking.

2. Windows is completely unsuitable for any “mission critical” service.

Scary indeed to consider how much of our economy and government is based on such a fragile, unsecure platform. Cray to think it makes pen-and-paper look good in comparison.

Here’s to the day businesses & institutions demand real IT security from each other, they same way they demanded Y2K preparedness.
banker's hours

Saturday, August 12, 2006 - 1:19 pm · Reply

I’ve already dropped one bank for having horrible online GUI’s that don’t jive with Safari (or Firefox !!) well and for having their ‘brand new HP’s’ seize up during simple queries!

My experience is online banking stinks.

Poor security, lousy UI’s, snail-slow performance (when there aren’t server errors). It’s more effective to bank in person or over the phone.

Heh maybe Apple should get into banking. We need something that “just works”.
RePlay

Saturday, August 12, 2006 - 1:36 pm · Reply

To top it off: check out the Security Now! podcast concerning the new Vista networking stack; all new, completely rewritten—including all the old bugs that have been fixed since Win95. Scary for Windows users!
Jim - the independent voter

Saturday, August 12, 2006 - 1:55 pm · Reply

Bankers Hours….

You might wanna give Washington Mutual a try.

I’ve been banking online with them for years now, using safari… no problems other than they use Sunday night to do their web page updates, and that’s when I used to want to pay my bills.

I don’t even use paper checks anymore, or cash. Just the online bill pay and the atm card.
macadoo

Saturday, August 12, 2006 - 2:30 pm · Reply

I have been using Sun Trust for several years with Quicken and no problems.
neomonkey

Saturday, August 12, 2006 - 2:45 pm · Reply

Jim, WaMu is a Windows monoculture, but Safari works, and so does Camino, otherwise I would switch banks.
microsoft flaws

Saturday, August 12, 2006 - 3:09 pm · Reply

if it wasnt for microsoft flaws, we’d have the cure for cancer long time ago.

microsoft made the world a stupid place.
Fanatic Realist

Saturday, August 12, 2006 - 3:50 pm · Reply

Go here and download Episode 51.

BTW, if you’re going to listen to this while drinking fluids make sure that no sensitive electronics are in the line of fire.
JEG

Saturday, August 12, 2006 - 4:24 pm · Reply

It is scarey that US government is so dependant on MS. However we should all direct our anger to the application/web site developers that are MS only. That is where the real problem is.

Governments/biz don’t have a choice since the day to day software they need is only available in windows. Even if they were to put macs they would still have to run Windows. They just can’t get away from it. Some companies are never going to port their software to OSX….unfortunately.
Frank

Saturday, August 12, 2006 - 4:24 pm · Reply

Liberals are pussies.
Ampar

Saturday, August 12, 2006 - 4:30 pm · Reply

And all people that make generalizations are idiots.

Oxymoron: Ballmer’s innovations.
Security Pro

Saturday, August 12, 2006 - 5:34 pm · Reply

netstat -w 1 is your friend
Fanatic Realist

Saturday, August 12, 2006 - 5:51 pm · Reply

JEG >

Trust me, if the Federal government said it was switching to Macintosh from 2008, there would be a growth in Macintosh app porting and development that would make the Apollo programme look like a weekend hobby in someone’s garage.
Chris

Saturday, August 12, 2006 - 6:09 pm · Reply

“And all people that make generalizations are idiots.”
Ampar, I’ve never seen you be so self effacing!
Chris

Saturday, August 12, 2006 - 6:11 pm · Reply

… and Frank truly is an idiot.