Microsoft, Sun Reach Agreement on JVM Support
Microsoft, Sun Reach Agreement on JVM Support
by Scott Bekker
10/7/03
Microsoft will offer technical support for its Java Virtual Machine until October 2004 under a legal agreement announced Tuesday with Sun Microsystems.

The deal gives customers an additional nine months of support for the Microsoft JVM (MSJVM). The companies say they reached the deal to give developers extra time to remove support for the MSJVM from their products.

rest of article at ENT Magazine

Microsoft faces lawsuit on security breaches
Thursday October 2, 07:40 PM



Microsoft faces lawsuit on security breaches
LOS ANGELES (Reuters) - Microsoft faces a proposed class-action lawsuit in California based on the claim that its market-dominant software is vulnerable to viruses capable of triggering "massive, cascading failures" in global computer networks.

The lawsuit, which was filed on Tuesday in Los Angeles Superior Court, also claims that Microsoft's security warnings are too complex to be understood by the general public and serve instead to tip off "fast-moving" hackers on how to exploit flaws in its operating system.

rest of article at Yahoo News

Critics Pile on Microsoft Over Security
Critics Pile on Microsoft Over Security
by Scott Bekker
10/2/03 ? Critics continue to pile on Microsoft after damaging worms and viruses slammed Windows operating systems worldwide in August and September. Two massive security sideswipes hit Windows in August: the extremely successful mass-mailing worm Sobig.F and the Blaster worm that exploited a security flaw in DCOM RPC, affecting most supported versions of Windows. In early September, Microsoft warned that the underlying flaw that allowed Blaster could also permit other attacks even on machines that had already been patched. A new patch was issued.

Shortly after Microsoft CEO Steve Ballmer admitted that his company was "embarrassed" by the flaws that Blaster took advantage of, a group of seven security experts released a report asserting that the ubiquity of Microsoft's software worldwide has created a major security risk, similar to the dangers in agriculture of planting only one strain of crop.

rest of article at ENT Magazine

Phoenix, Microsoft Sign BIOS Pact for More Reliable Windows
Phoenix, Microsoft Sign BIOS Pact for More Reliable Windows
By Mark Hachman
September 30, 2003

Seeking a way to improve the reliability of Windows, BIOS maker Phoenix Technologies LLC and Microsoft Corp. on Tuesday announced an agreement to develop device-level management services for future versions of the Windows OS.
The deal will tie together the Phoenix "Core" BIOS software more closely to the Microsoft OS. These forthcoming services will deliver more, sophisticated information about the state of a system to Windows and give IT managers a clearer picture of the current state of the machine, the companies said.

rest of article at eWeek

OpenOffice 1.1.0
OpenOffice 1.1.0 has been released ... take a look it has some interesting features. And did I mention - it's free!

OPENOFFICE.ORG

The Sharer - An interview with Linus Torvalds
The Sharer - An interview with Linus Torvalds

People position you as the nemesis to Bill Gates. He started Microsoft and you started Linux, the big competition to Microsoft's dominance of operating systems. Is that an unfair or inaccurate characterization?

The thing is, at least to me personally, Microsoft just isn't relevant to what I do. That might sound strange, since they are clearly the dominant player in the market that Linux is in, but the thing is: I'm not in the ''market.'' I'm interested in Linux because of the technology, and Linux wasn't started as any kind of rebellion against the ''evil Microsoft empire.'' Quite the reverse, in fact: from a technology angle, Microsoft really has been one of the least interesting companies. So I've never seen it as a ''Linus versus Bill'' thing. I just can't see myself in the position of the nemesis, since I just don't care enough. To be a nemesis, you have to actively try to destroy something, don't you? Really, I'm not out to destroy Microsoft. That will just be a completely unintentional side effect.

rest of article at NY Times (registration required)

For the real geeks in the crowd
Implementing internet based protocols over a new form of medium - Bongo Drums

article at Click Here

AtStake fires executive over Microsoft criticism
AtStake fires executive over Microsoft criticism
By Ted Bridis, The Associated Press Sep 25 2003 1:29PM
The chief technology officer for a technology firm that works closely with Microsoft Corp. lost his job after he helped write a study critical of the insecurity of Microsoft software.
Daniel E. Geer Jr., an expert with nearly three decades studying technology and computer security, learned Thursday he was no longer employed by AtStake Inc. of Cambridge, Mass.
AtStake declined to say whether Geer resigned or was fired. Spokeswoman Lona Therrien said Microsoft did not call for Geer's dismissal, which AtStake said was effective two days ago. Microsoft also said it was not involved in the decision.
But critics said Geer's firing was reflective of Microsoft's far-reaching ability in Washington and across the technology industry to silence experts who complain about weaknesses in its software or its aggressive business practices. The Justice Department struggled years ago to find technology executives willing to testify against Microsoft in its antitrust trial.

Security Focus

Winternals aims to reverse the effects of malicious-code attacks
Winternals aims to reverse the effects of malicious-code attacks
By Dave Kearns
Network World Windows Networking Tips Newsletter, 09/22/03

...
Winternals Software, which made a nice market for itself in the crash protection and system recovery market, recently released Winternals Recovery Manager (WRM) targeted at Windows Server 2003, XP, 2000, and NT4 systems. It allows network managers to quickly reverse the effects of malicious-code attacks while helping to mitigate the risks associated with emergency installation of critical updates. That's right, it protects from both the disease (worms, viruses) and the cure (patches)! You can get all the details at http://www.winternals.com/es/solutions/recoverymanager.asp but here are the highlights:
* Recovery Manager allows you to identify and undo changes to critical system files and settings.
* The Recovery Manager Boot Client can boot infected machines to an offline environment for safe and secure access, analysis, and repair, immediately suspending newly opened security holes, and preventing systems from further infecting themselves and others on the network.
* When an infected machine would otherwise require reinstallation or re-imaging, WRM provides a fast system repair option, reducing downtime and leaving application and user data intact.
* In the event that emergency installation of a critical update causes undesired behavior (e.g., the patch crashes your system), systems can be rolled back to previous working states, whether simultaneously in large groups, or individually.
* Recovery Manager even tracks and can undo system-level changes made by anti-virus solutions. More than a few of us have been unpleasantly surprised when our AV software did more damage than it prevented.

Entire article at Network World

Reliance On Microsoft A Danger To National Security
Reliance On Microsoft A Danger To National Security

By Gregg Keizer, TechWeb News
4:14 PM EST Wed., Sept. 24, 2003 A panel of leading security experts Wednesday blasted Microsoft for vulnerabilities in its software, and warned that reliance on the Redmond, Wash.-based developer's software is a danger to both enterprises and national security.

The group, which debuted its report at the first day of a two-day conference hosted by the Computer & Communications Industry Association (CCIA), was headed by Dan Geer, the chief technology officer of @Stake, a security consulting firm.

"As fast as the world's computing infrastructure is growing, vulnerability to attack is growing faster still," said Geer.

"Microsoft's attempts to tightly integrate myriad applications with its operating system have significantly contributed to excessive complexity and vulnerability. This deterioration of security compounds when nearly all computers rely on a single operating system subject to the same vulnerabilities the world over," Geer added.

Rest of article at Computer Reseller News