Shark Bait

Knowledge Centers

Operating Systems

Networking & Internet

Mobile & Wireless

Security

Storage

Business Intelligence

Servers & Data Center

Computerworld Reports

Industry

See your link here

IT Blogwatch

A Daily Digest of IT Blogs from Richi Jennings

Microsoft capitulates on Vista (and mushroom-mushroom)

16 comments

IT TOPICS:Government & Regulation, Networking, Security, Windows & Microsoft

Badger-badger-badger-badger IT Blogwatch, in which Redmond strategically caves in to competitors' demands. Not to mention Open Source Mycology...

Peter Sayer reports:

Microsoft Corp. has agreed to make changes to its upcoming Windows Vista operating system to satisfy regulators in the European Union. Despite those changes, the company said today it will still deliver Vista on schedule. The company had earlier warned that Vista might be delayed in Europe because of regulatory authorities' concerns about the impact of the operating system on competition. Those concerns melted away following what Microsoft described as "constructive dialogue" with competition authorities.
...
Microsoft has agreed to make a number of changes to Windows Vista in response to guidance from the European Commission, the EU's competition regulator. It has also had successful talks with competition authorities in Korea who raised concerns about Microsoft's business practices. It expects to ship Vista on time in that country as well.

Todd Bishop has more:

Here's a summary of Microsoft's explanation of the changes that will be made in Windows Vista. Microsoft says the changes will apply worldwide.

The search function in Internet Explorer 7 in Windows Vista won't automatically use Microsoft's Windows Live search engine ...

Windows Security Center, a central console for monitoring the computer's security protections, will defer in cases where users have installed alternative programs from independent security vendors with similar consoles ...

Microsoft said it will offer interfaces to give independent security vendors access to the technical core of the Windows Vista operating system, known as the kernel, while still protecting the kernel in other ways ...

Microsoft will submit its new XPS document format to an international standards organization and change the terms under which it licenses the format to other software developers.

Dwight Silverman:

Antivirus vendors such as Symantec and McAfee have been upset with Microsoft about a feature in Windows Vista that locks down its kernel. The vendors wanted access to it so their products would work properly. Microsoft, on the other hand, argued that a lockdown would protect the kernel -- the core component of the operating system -- from attacks. The vendors raised enough of a stink that now Microsoft is caving in, and will create hooks into the kernel for them. Then again, if they'd just waited long enough, someone would have cracked it for them.

Ars's Matt Mondok:

Symantec and McAfee, are you feeling satisfied? ... By offering an extended, kernel-level API (Application Programming Interface), Microsoft will give anti-virus makers a way to access the Windows kernel, potentially avoiding conflicts with Vista's PatchGuard technology ... Microsoft is hoping that the APIs will dispel fears that Vista would force customers into using a Microsoft-provided security solution ... Besides presenting third-parties with the new API, Microsoft is also planning to modify Vista's Welcome Screen so that it provides links to security products other than OneCare.

Warner Crocker:

I wish Microsoft and these vendors could somehow be forced to declare how much their security products slow down a system. Granted it is still in Beta, but even Microsoft's OneCare deals you a performance hit. Is that a price we have to pay in today's world? The answer is sadly yes. But I'm guessing if we could compare these products not only by the claims of how protected we we will be, but by how much of a hit we can expect on system performance, we'd see a heck of a lot better coding going on. Sometimes I wonder if the cure isn't as bad as the disease.

Shivetya shrugs:

Sorry but I think the kernel should be off limits. Leave that to Microsoft and hold them wholly accountable to preventing issues with it. On one hand people bitch about MS's lack of security yet when they do essentially what is asked it is claimed they only did it to be uncompetitive. Make up your mind. Or is just permanent open season on MS?

UnknowingFool retorts:

Here's the crux of the complaint: In Windows, to combat viruses and add security like firewalls, these programs need kernel level access (as many APIs unfortunately do). Now with Vista, MS had decided to close off that access to all software except their commercial security apps (which they will charge extra to the customer). To some that is abusing their monopoly.

Garry Chernoff calls it a, "Lie":

Trend Micro's anti-virus and Avast both work on Vista, because their respective developers spent time developing new software to work with it. Symantec and McAfee on the other hand, rather than invest money in development for a version of their programs which fits Vista's new security model, decided to bitch and whine loudly about Microsoft's new security in Vista while doing nothing of any value
...
This should not be happening. This is BAD for security, as once you let one program bypass security barriers it's only a matter of time before others do, not all of them friendly. This is STUPID because Microsoft has kowtowed to pressure from two companies far more focused on saving money on developing their [redacted] antivirus programs than actually providing any more security.

Buffer overflow:

Around the Net

Around Computerworld

And finally... Shroomr -- Open Source Mycology [hat tip: b3ta]

Richi Jennings is an independent technology and marketing consultant, specializing in email, blogging, Linux, and computer security. A 20 year, cross-functional IT veteran, he is also an analyst at Ferris Research. Contact Richi at blogwatch@richi.co.uk.

Email this

Digg this

What People Are Saying

Add new comment

I dont know whera you all

Submitted by Honza on October 19, 2006 - 4:47 A.M.

I dont know whera you all are from, but as a Europe citizen i must say that monopoly is very bad for EU market and it is the main reason why they do that. It has nothing to do with windows security. Why they should let US firm subvert their (ok, our) economy? It is the same sample as EU penalized MS for their audio formats.

Report this comment

Symantec and McAfee have

Submitted by Rick Winslow on October 18, 2006 - 7:40 P.M.

Symantec and McAfee have never been anything more than 'good' anti-virus programs. They do nothing to catch the latest problems and only slow down a fast system with their bloat.
I've used F-Prot for years and it's not so mainstream that virus writers write for it.
It would be best for Microsoft to lock everyone out of the kernel and keep things safe and secure. One open 'Window' lets all the burglars in.

Report this comment

If these security firms were

Submitted by Anonymous on October 18, 2006 - 5:00 A.M.

If these security firms were serious about supporting the platform the way it should be then these companies they would be directly taking the initiative and developing full working x64 versions of these programs as well.

If Avast can support x64 platforms that are supposed to be functionally equivalent why can't these other companies support of fully.

Report this comment

"Symantec and McAfee and the

Submitted by Anonymous on October 18, 2006 - 1:39 A.M.

"Symantec and McAfee and the like should find an alternative business model if it means Windows being more secure"

I'm sure we all agree on that, but of course it's not actually in the interests of Symantec and McAfee for Windows to be more secure.

Report this comment

Microsoft should not have

Submitted by chris nuber on October 17, 2006 - 8:32 P.M.

Microsoft should not have caved. I think it's extremely unfair that other operating systems are able to be more secure by keeping core components closed to programmers, but Windows has to be open enough because they are a monopoly. I think Symantec and McAfee and the like should find an alternative business model if it means Windows being more secure by being more closed.

Report this comment

Switch to Apple and you

Submitted by Anonymous on October 17, 2006 - 6:33 P.M.

Switch to Apple and you won't have as many things to worry about.

Report this comment

Shivetya shows real

Submitted by Anonymous on October 17, 2006 - 4:26 P.M.

Shivetya shows real ignorance with the statement "Leave that to Microsoft and hold them wholly accountable to preventing issues with it."

If he had ever read a Microsoft EULA, he would have known that Microsoft disavows responsibility for *anything* related to its software. And Microsoft forces the user to agree to that as one of its installation requirements.

Report this comment

Africa is not a country.

Submitted by Factsstra8 on October 17, 2006 - 4:00 P.M.

Africa is not a country.

Report this comment

I love how Free Software

Submitted by Anonymous on October 17, 2006 - 2:36 P.M.

I love how Free Software advocates believe in freedom for everybody but corporations. When a company like Microsoft makes a product, they have full and final control over what to do with it, what goes in it, etc. It is the same principle that applies when I code something in my basement, or what have you, I have a right to the products of my mind. MS is in business to make a profit for THEMSELVES, not to sustain leechers like antivirus companies, etc. If MS changes their operating system, and these companies can't keep up, they should fall on their useless asses and go out of business, and let those who know what they're doing do it best. It's also funny how the EU commies like to foster competition by forcing people to compete, brilliant idea guys.

On a side note - if you're so concerned with your freedom and privacy, you're free to move to Africa or some other undeveloped country that doesn't have electricity, where nobody can track you. You're also then free to survive on whatever scraps you can find. But no, that's not what these people want, the supposed freedom advocates want technology without strings attached as if it's some communal property or natural resource that grows out of the ground when in fact it's not. That's not to say that you shouldn't try to ask for better terms if you don't like the one the company is setting. You are well within your rights to petition the company, write letters, boycott the company, etc, but the moment you clamor for government intervention, you've nullified any point you were trying to make.

Report this comment

In principle, Microsoft

Submitted by jpkotta on October 17, 2006 - 7:05 P.M.

In principle, Microsoft should have final say in their products, just like someone coding in their basement. But in practice, it is completely different. Microsoft has so much power that you really can't say it's the same thing, and they really do deserve to be treated differently. In this case, they probably shouldn't open the kernel for some AV companies, especially when others have worked around it. Personally, I think they should give away their One Care, because it's their crappy software that needs the AV bandaid in the first place. If that means all the other AV companies go out of business, then good. Their employees can get jobs writing software that does useful things.

Shut up about Africa. That is a stupid argument and you know it makes no sense.

Report this comment