Windows 7, Vista zero-day flaw reported

Microsoft said on Tuesday that it is investigating reports of a zero-day vulnerability affecting Windows 7 and Vista.

The flaw in Windows 7 could allow an attack which would cause a critical system error, or "blue screen of death," according to researcher Laurent Gaffie.

Gaffie wrote in his blog that the flaw lies in a Server Message Block 2 (SMB2) driver.

"SRV2.SYS fails to handle malformed SMB headers for the NEGOTIATE PROTOCOL REQUEST functionality," wrote Gaffie in a blog post Monday.

Gaffie said he had contacted Microsoft. Comments on his blog by other users said that the flaw could lead not only to denial of service, but could also lead to remote code execution.

Microsoft said in a statement on Tuesday that it was investigating, but said it is "currently unaware of any attacks trying to use the claimed vulnerability or of customer impact."

Computer security publication "The H" wrote on Tuesday that its German sister publication had tested the proof-of-concept code, and that while the exploit had caused a reboot on Vista, the exploit had not worked on Windows 7.

Metasploit creator HD Moore said in a tweet on Tuesday that an SMB bug appeared to have been introduced into Vista SP1. Coder Josh Goebel said in a blog post that he had added the exploit code to Metasploit.

Tom Espiner of ZDNet UK reported from London. CNET News' Ina Fried contributed to this report.

[rmva]

This is great for college students. Because you have to be inside the local LAN for this to work, it means students recovering from the swine flu can blow up each other's computers for fun and profit.

[fc11]

What this article did not say is that the attack is on server side of the SMB transfer. So, a college being attacked have to turn off firewall or explicitly enable "file sharing" on their laptop to be attcked. This reminds people of the importance of firewall.

Also, I turn off "server" service on my laptop to save memory, because Vista is too memory hungry, so I am not vulnerable here.

Most vulnerable is file servers, but Windows 2008 server should have very little deployment in colleges.

Also note that "blue screen of death" is much less sever than " remote code execution" if you follow computer security in addition to just reading CNET news.

[cosuna]

Not really @fc11. Firewall won't protect you if you added the exception for File Sharing. Almost all Windows users share drives and folders thru SMB and since Windows Vista seems to have trouble with XP shares, most people using Vista have opened their machines so they can get software from other machines.

BTW. This flaw kicks every MS fanboy that assured us that Vista/7 was bulletproof. Sorry, no software is nor will be.

[ddesy]

To those who keep insisting that Vista is secure, let this be a reminder that it isn't.

[shellcodes_coder]

What about OS X? It gets knocked down by hackers each and every year very easily within seconds and they have admitted that Vista is much tougher to exploit than crap os x. Oh yeah, no OS is 100% bullet proof. [CNET editors' note: Prohibited content deleted.]

[Gromit801]

Shellcodes.

If you ever read about those supposed hacks, you would have read that in each and every case, the rules of the hack were altered so the OSX could be hacked. Usually by turning off the firewall, and the hacker going to a malware site they'd already had planned.

If you change the rules by unlocking and opening up the front door with a sign ENTER HERE, doesn't really make it a hack now, does it.

[shellcodes_coder]

Gromit801: Firewall was not turned off

Anyways you should have read what Miller recently said about the security of Snow Leopard and 7. He said 7 is more secure than SL. Just google or bing it!

[seven7dust]

What's funny about this whole hacking competitin busness is that
Windows was hacked too , and so were other Linux based operatng systems
So it doesn't really proove anythng other than the fact that
hackers can hack into any human made piece of software

also
All these so called hacks or vulerabilities have never lead to any widespread damage
Intact there has yet to be a major outbreak of any kind on the mac platform
A few Trojans here and there but nothng like say a confiicker or a iloveyou virus
And most mac users don't even bother with securty related software too
So until the mac platform has say atleast 5-6 real security related threats
There's nothng to worry about !

Wndws users OTOH needto suffer av software and constant updates/maintanence
Pretty sad really !!!

[Jamasama]

seven7dust: There's more that 5-6. It's just many Mac users are stupid enough to think their OS is immune, don't install AV software, and are then unaware about how many viruses, trojans etc. are circulating on their system.

Saying that Windows users suffer from AV software and updates - We don't suffer from AV software, it's just we're smart enough to use it. And saying we suffer from updates is a bit hypocritical, seeing as on the Apple site, one of the "advantages" of having a Mac were the constant updates.

We're not the sad ones. People paying 3x more for a computer or laptop because of the logo are.

[BingItOn]

CRAPple is less popular than PC and it 20.25 avg flaws per month and Vista 1.67 flaws

http://blogs.zdnet.com/security/?p=758
http://www.internetnews.com/security/article.php/3586416

[Random_Walk]

This always gives me a good laugh...

You see, A/V software is reactive, not proactive.

Folks who claim they are "smart enough" to use A/V software often do not realize two rather important problems that A/V software presents:

1) If your A/V app doesn't have a signature for it, it will often go undetected. Often the signatures come out long after the threat becomes present and virulent.
2) At least half the A/V packages out there will miss a given emerging virus threat, mis-identify it as safe, or worse - even months after the fact in some cases.

Also, a rootkit will render all but a small handful of A/V solutions completely ineffective, and a "Blue Pill" hypervisor-like bit of malware will be completely invisible in most cases.

Long story short, you don't know if you are infected or not either. Now if you have a transparent proxy that keeps tabs on outbound traffic, and you have an idea of which port numbers tie to which common malware types, keep up on the latest security news, etc... then maybe you have an idea. Otherwise you're just as clueless and blind as someone who uses no A/V software. Likely worse actually, since you have an even larger false sense of security than the guy who runs no A/V solution; at least someone who runs none knows the possibility is always there.

At least on the *nix side of things, the very structure of it is built with safety in mind (it wasn't always this way, mind), and not just some afterthought that contributes to bloat and more flaws.;)

[cosuna]

So know we must believe ZDNET which says "Enterprises push Snooze button on Mac"... "Windows 7 bigger than Jesus Christ" (that's pun on the Beatles quote)...

[solitare_pax]

The greatest weakness of any OS is the idiot sitting behind the computer keyboard, reading this post right now.

And yes, that includes me too. :)

[santuccie]

PART 1

@ddesy:

There are hundreds of flaws in Vista; that's old news. However, reliably exploiting these vulnerabilities is another story. There's a reason (at least two reasons, actually) why we have seen no Vista-targeted exploits since 2007. Just for the record, the notorious Conficker and Gumblar exploit vulnerabilities that exist on Windows Vista. However, neither of them work on Vista because of ASLR and DEP, neither of which are effectively implemented on OS X Leopard (and Snow Leopard adds only ASLR, not DEP).

@Penguinisto:

'You see, A/V software is reactive, not proactive.

'Folks who claim they are "smart enough" to use A/V software often do not realize two rather important problems that A/V software presents:

'1) If your A/V app doesn't have a signature for it, it will often go undetected. Often the signatures come out long after the threat becomes present and virulent.
'2) At least half the A/V packages out there will miss a given emerging virus threat, mis-identify it as safe, or worse - even months after the fact in some cases.

'Also, a rootkit will render all but a small handful of A/V solutions completely ineffective, and a "Blue Pill" hypervisor-like bit of malware will be completely invisible in most cases.'
>>>>Actually, modern AV products are both reactive AND proactive. In response to point #1, you're only partially right. Indeed, a threat will often go "undetected," but what you don't realize is the difference between "detection" and "protection." These days, "detection" generally describes one of two things: either post-mortem "detection" of an infection during an on-demand/scheduled scan; or "detection" of spyware, backdoors, and/or rootkits packed into a downloaded software installer or data file (e.g. Word document, PowerPoint slideshow).

However, modern AV products also include some form of Web "protection," designed to block drive-by downloads by means of rulesets, rather than heuristics and black-and-white signatures. I can tell you offhand that three of the most widely-used products, including Norton, McAfee, and AVG, all have Web protection. One example I will break down for you is McAfee's ScriptScan. It sits between your browser and Windows Script Host, admitting ordinary items like Google ads, YouTube videos, and Flash games unrestrictedly. However, whenever a script tries to create, copy, or modify any file on your system, or open the registry, McAfee jumps in and blocks it without querying the user. All you see is a single alert to INFORM you that the attack was blocked.

It is because of technologies such as these, as well as sandboxing and "techy" tweaks like those at Invincible Windows, that the numbers of XP machines infected with the Conficker worm numbered somewhere between 3 and 15 million, rather than 750 million. Get the picture?

'Long story short, you don't know if you are infected or not either. Now if you have a transparent proxy that keeps tabs on outbound traffic, and you have an idea of which port numbers tie to which common malware types, keep up on the latest security news, etc... then maybe you have an idea. Otherwise you're just as clueless and blind as someone who uses no A/V software. Likely worse actually, since you have an even larger false sense of security than the guy who runs no A/V solution; at least someone who runs none knows the possibility is always there.'
>>>>I can't really disagree with this. In most cases, anyone who is infected with Mebroot, Conficker, Gumblar, etc. will not know they are infected. That's why there are free, "transparent proxies" like Trend's RUBotted, as well as tools like GMER and HJT, between which most infections (excluding bona fide viruses, which are pretty rare) can be located fairly quickly.

[celticbrewer]

what would be the value of this exploit? "an attack which would cause a critical system error." It's safe to say most servers aren't using Vista or Windows 7. There's minimal distruption potential to a business (most are on XP anyways). Most DOS or other attacks are contracted out for financial or political gain directly or indirectly (botnets). I just don't see what use there'd be in having a system (a non-critical system) blue screen.

[Random_Walk]

Ouch. So much for the masses looking to Windows 7 as their security savior.

Well, at least this one only affects users in the same LAN... as far as we know for now.

[T_Hoff]

Did you even read the story past the headline? When tested by a computer security publication, the proof of concept code did not work on Windows 7.

[Vegaman_Dan]

And as the article clearly states, it was demonstrated NOT to work on Windows 7. Perhaps the story was edited to add this after you posted.

"Computer security publication "The H" wrote on Tuesday that its German sister publication had tested the proof-of-concept code, and that while the exploit had caused a reboot on Vista, the exploit had not worked on Windows 7. "

[Random_Walk]

The proof-of-concept as posted was stated to not work - the article said nothing about the flaw not being present (and it very likely can be exploited).

[Vegaman_Dan]

@Random_Walk:

Good point to make. The flaw was there, and nobody has been able to exploit it even after specifically targeting it.

Care to try again?

[Random_Walk]

"and nobody has been able to exploit it"

...as far as you know. ;)

Care to try again yourself?

[kojacked]

Random_squawk: I thought you said it was fine for OSX to have known exploits as long as no one actually wrote something to use it. I guess you have different standards based on who made the OS. Do you work for Fox News? Fair and balanced 4sure!

[JoeF2]

"When tested by a computer security publication, the proof of concept code did not work on Windows 7"

And? It is probably pretty trivial to get it to run on Win7. Proof of concept is just that. It provides a starting point.
You can be sure that by now a number of people have working code. They may not be so nice as to tell you, but you will find out the hard way...
That's why even proof of concept, even if it is not working due to some relatively minor oversight, is taken seriously by security experts.
And the finder of the exploit insists on his blog that it works with Win7. It may be in some specific situations only, but it still is a vulnerability.

[Windows7user]

As a member of the IT department of our company, I can assure you that we have a full lab environment and have thoroughly tested the exploit. Our finding were as follows:

Windows Vista is vulnerable, we were able to cause a blue screen with no effort at all.
Anything based on the Vista Kernel is also vulnerable, i.e. Windows Server 2008 (also able to crash within seconds)

Windows 7 is not vulnerable. We attempted the perscribed script, altered for a range of target memory locations and several configurations on the target. I watched in wireshark while SMB refused thousands of attempts.
We applied these same tests to Windows Server 2008 R2 (also based on Windows 7 core) also with no ill affects.

I can only assume that the verified crash of windows 7 was attempted on Windows 7 RC (the beta version), not Windows 7 RTM (the release version). Some other sites have verified that they were able to crash the RC, and not the RTM.

The RC of Windows 7 is not final, should not be considered stable, and is by no means a real test of OS security.

I am fairly disappointed at most news sites for not fact checking their sources, not performing real testing, and relying on anecdotal evidence while spreading "New zero day vulnerability in Windows 7" news all over the internet.

[The_happy_switcher]

Microsoft needs to tear down windows and start over. Adding to the same cracked foundation year after year is a waste of time and resources and just results in a bigger building built on the same flawed foundation.

[shellcodes_coder]

Before reading this article you should have read and tried to fix the headaches that endangered os--snow leopard is giving to mac users like kernel panics, grey screen of death, application incompatibilities and so on. [CNET editors' note: Prohibited content deleted.]

[Vegaman_Dan]

Unfortunately Microsoft is not a niche market player like Apple is and cannot afford to shun millions of customers by forcing everyone to start over with a new OS with no backwards compatibility. It simply isn't an option when your customers keep holding you to legacy applications.

Now they are doing a lot with moving that compatibility to a virtual machine or compatabilty mode, and that should let them finally move on to WinFS or similar, but there are limitations in what they can realistically do without alienating their existing customers.

[ballmerisanape]

Vegaman_Dan,

Apple didn't "force anyone".. remember the Classic environment.

[shellcodes_coder]

@Vegaman_Dan: Not millions, it's billions!!

[Vegaman_Dan]

@Ballmerisanape:

"Apple didn't "force anyone".. remember the Classic environment."

Which doesn't work in Snow Leopard, nor does any PPC-based applications. Yes, they did abandon earlier OS verions completely and as a smaller market, they could do so with a minimum of disruption.

[BingItOn]

@The_happy_switcher CRAPple is less popular than PC and it 20.25 avg flaws per month and Vista 1.67 flaws

http://blogs.zdnet.com/security/?p=758

With just 4.67% of CRAP user and 20.25 threat per month, CRAPple should go back to drawing board and look at DOS 3.1 to get some encouragement to write better code.

[Dalkorian]

by Vegaman_Dan September 8, 2009 11:46 AM PDT
@Ballmerisanape:

"Apple didn't "force anyone".. remember the Classic environment."

Which doesn't work in Snow Leopard, nor does any PPC-based applications.

-------------------------------------------------------------------------------

Sigh. Ever heard of Rosetta? Installed by default? No, but Snow Leopard will happily download it for you if you need and want it.

I really wish you would stop with all the lies about stuff you obviously have no idea about.

[WinNoMo]

Each day, my decision to abandon the Windows platform is justified. Each and every day. It's been less than four months, but I am already seeing signs that my decision was a sound one financially.

[shellcodes_coder]

Dude, name one OS that's will always be bug free and will have no security holes...

[WinNoMo]

No need to name any that will ALWAYS be bug free. I need only name the ones that have none or less NOW. The answer is all. All alternatives to Windows currently have less or no security holes. All alternatives are currently being exploited less. ALL

[WinNoMo]

There are no operating systems being exploited more often in the wild than Windows currently. None. Being that as fact, any operating system you use other than Windows will be less likely to be exploited. Perhaps they are just as vulnerable or even more, but that changes nothing. Argue if you must. But you will be spitting into the wind.

[shellcodes_coder]

WinNoMo: Ever heard of market share? That's the reason there are more applications, games for Windows...

[WinNoMo]

What do I care about market share? I am just protecting myself from Windows exploits by switching platforms. For what I do, there are alternatives that are being exploited less. Why wouldn't I choose different platforms if they do the same job with less risk?

[Jamasama]

They don't do the same job. They run millions less applications, and none of the games that Windows can run.

Care to try again?

[WinNoMo]

@Jamasama

They absolutely do MY JOB the same. Since you have no idea what that is, your comment is misplaced and irrelevant. Care to try again?

[BingItOn]

Just repeating here (sorry for copy paste) but wanted to emhasize to WinNoMo how secure CRAPple is.

@WinNoMo CRAPple is less popular than PC and it 20.25 avg flaws per month and Vista 1.67 flaws

http://blogs.zdnet.com/security/?p=758

With just 4.67% of CRAP user and 20.25 threat per month, CRAPple should go back to drawing board and look at DOS 3.1 to get some encouragement to write better code.

[Random_Walk]

"They don't do the same job."

Really? Mine does all the jobs that I need it to do, and if I find one that it cannot, I can fire up a Parallels instance and keep the new app nice and sandboxed.

'course, unless you run all of your Windows apps in VMs, you really cannot say the same thing, can you? ;)

[cosuna]

@Jamasama:

Invalid assumption. OS/390, OpenVMS and IBM i (OS/400) have far more applications than Windows, e.g. all Visa and MasterCard transactions run on S/390 (zSeries) machines. That doesn't mean that Windows is useless, since it garners less developers.

For a long time, Macintosh had the dominant spot on Desktop Publishing, which was next to impossible on DOS. Later on Silicon Graphics and Sun workstations dominated the crowd in CGI and finite-element analysis.

Today, neither Mac nor SGI or Sun dominate any of these fields. Alas, iPhone commands the landscape in mobile applications, easily surpassing Windows Mobile and Symbian, even though both had years on the market.

Reasoning: Platforms dominate until the apps written for them are eclipsed by "paradigm shifts" in the way people work with computers.

One could say that Chrome OS would dominate the landscape in the post Facebook era.

But then again, only time will tell.

[murbo]

"an attack which would cause a critical system error." It's safe to say most servers aren't using Vista or Windows 7" ?
of course!! they aren't using windows at all. they "run" linux.

and even though 7 wasn't effected by this yet, it will be since its nothing but a visual upgrade... a theme pack if you will.

[schan1123]

it isn't in win7 because the bug was introduced in vista sp1. read the article please.

[Random_Walk]

Microsoft itself says the bug is in Windows 7 (can't anyone read anymore?)

[JoeF2]

@schan1123:
IMaybe you should practice what you preach...
It is in SMB2 handling, which is supported in both Vista and Win7. And Win2008 Server.
How about reading the actual post to Full Disclosure? Oh, I forgot, you don't even know what "Full Disclosure" is, right?

[knowles2]

No they said they are investigating, which probably mean they do not know themselves.
An yes they aware it exist but works but they did not say which systems were vulnerable.
Considering the concept so far have not work on Windows seven I am going take a wild guest and say that they will have a fixed out before anyone does make it work on windows 7, that of cause presuming that same bug cause the same problem.

[vamman]

Yay the Mac users are here! Hurray for hippy chips and saving the kids in Bosnia.

[TheRealCombatCarl]

What are hippy chips?

[TheRealCombatCarl]

What are hippy chips?

[shycelticwitch]

Hippy chips are intelligence food. They keep you from making uninformed decisions when buying computers. They also help you understand the difference between "market share" and "quality manufacturing/programming".

Dippy Chips are ignorance food. They make you think you're superior because you like the same stuff billions of others do. They also help you understand the difference between "their' and "there", a major accomplishment for most dippy chippers.

If you crave Hippy Chips you're most likely a Mac user. If you crave Dippy Chips you're most likely a W---- user.

@ vaman... how many children have YOU saved today? Run home to mommy, your CrackerJack box is empty and you got no prize.

[GO ILLINI]

"your CrackerJack box is empty and you got no prize."
Not that I support the OS flaming wars, or your statement in general, but that was hilarious!

[shellcodes_coder]

Windows 7 is not affected

[Random_Walk]

"Microsoft said on Tuesday that it is investigating reports of a zero-day vulnerability affecting Windows 7 and Vista."

...so Microsoft is lying? Say it isn't so!

[Vegaman_Dan]

@Random_Walk:

""Microsoft said on Tuesday that it is investigating reports of a zero-day vulnerability affecting Windows 7 and Vista."

They are investigating reports. Does it say anywhere in that line that there are such flaws existing? I think you may need to brush up on your reading skills before making such assumptions.

I could say that I'm currently investigating reports of Sasquatch camping out in your living room. If you deny it... does that mean you're lying?

See, that's the deal- you can't make assumptions like that. It's a report and not confirmed. Once MSFT confirms it, THEN you can crow all you like, but before that, you're just... well, jumping to conclusions.

[Random_Walk]

Well, you apparently seem to know more than Microsoft does... the flaw exists in both OS variants - the only ones arguing otherwise are the Windows fanboys.

[JoeF2]

@shellcodes:
The author of the exploit says otherwise.
Vista, Win 7, 2008 Server.

[sebastien.kalonji]

And you pay how much for that crap? My upgrade costed ?9 and it delivered me a speed bump and a leap in to the future. Looks like Windows 7 is only a vista upon the past.

[shellcodes_coder]

Yup a future for hacker invitations. Enjoy :)

[Vegaman_Dan]

To Windows users the upgrade is worth what they paid for it. For Mac users, their upgrade is worth what they paid for it. Trying to compare the two is just down right silly.

[Michichael]

Um... let's see here... requires an SMB tramission, which is never open to the internet unless you're a retard... so this is a LAN only vulnerability. Most companies have bypassed Vista because of it's horrible reputation and high TCO and low ROI. The hardware reqs for it are too high. Soooooo.... yeah. Windows 7 isn't affected by it, not sure why they have such a misleading article title...

Either way, hows that spinning wheel of death working out for ya? Best 26$ service pack you ever bought? :)

[schan1123]

"Windows 7 isn't affected by it, not sure why they have such a misleading article title..."

Because more people will read the article.

[Vegaman_Dan]

Be nice now. Each OS has its own issues that are challenging for the OEM's.

No OS is perfect by any means.

[JoeF2]

"Um... let's see here... requires an SMB tramission, which is never open to the internet "

Were do you see things about the Internet???
Think about LAN instead.

"Windows 7 isn't affected by it"
Except that it is, according to the author of the exploit. And even if it is only under specific circumstances, it is still bad.

You failed Security 101.

[knowles2]

Vegaman_Dan

Dan if we all admitted that there would not be fan boys/girls commenting on this blog and life would be boring and dull. An we all agree all the time.

[danielj1987]

You know, yeah, there are tons of issues with Windows, but I wonder what would happen if a hacker simply sat down and looked for vulnerabilities through Linux. Mac was already proven.

[Vegaman_Dan]

Been done. All of them have serious issues. The Mac and Linux boxes were the most vulnerable to physical access if you have a keyboard and USB drive handy, you could gain root access in less than 30 seconds, go in, make your changes and get out without the owner ever knowing.

I've used it to reset the admin password on my MacBook once after doing an upgrade hosed the OS (yeah, it can happen even on a Mac....) and the admin account got locked out entirely. I was rather surprised how easy it was and that there is no defense for it, but then again for physical access to a machine, there rarely is much you can do to prevent it.

Windows with Bitlocker seems to be about the best for physical access to a system, but even that can be hacked with time.

[ralfthedog]

Vegaman_Dan,

The solution is the same for all Operating systems. Just encrypt your drive.

[shellcodes_coder]

Vegaman_Dan: BitLocker uses hardware based encryption so cracking it wouldn't be easy. It hasn't happened till now and is very likely to happen

[Vegaman_Dan]

@shellcodes_coder:

Bitlocker can use either TPM hardware for encryption or completely software key based using an key on an external USB drive if you want.

Its a pain in the rump as I have to deal with it daily when hard drives fail or an end user does something silly like delete the Bitlocker partition on their system. Heh.

[GO ILLINI]

"The Mac and Linux boxes were the most vulnerable to physical access if you have a keyboard and USB drive handy"

I actually have three usb drives (and corresponding CDs) like that, one for each system: Linux, Mac, Windows.
I repair computers and i don't bother getting passwords from my customers, I simply pop in the CD and reset the password.

[gertruded]

Windows needs to be completely rewritten.

[WinNoMo]

+1

[ballmerisanape]

Key point here... .....tested the proof-of-concept code, and that while the exploit had caused a reboot on Vista, the exploit had not worked on Windows 7. "

You could probably write new article every day to cover new vulnerabilities in the Mac, Windows, and Linux OSs.. lf you look hard enough.. you will find a hole. It's good that people are finding these though.. before they are exploited.

[webdev511]

This flaw will be nothing more than a short term annoyance. It relies on an infected host and open port 445 (File and Printer sharing) and it will have to be executed inside a firewall.

From the machines I've seen, the file in question is a different size and version on each "effected" os, so it looks like a Vista only bug to me.

[Vegaman_Dan]

These two lines are contradictory:

Title: "Windows 7, Vista zero-day flaw reported"

Claim: " and that while the exploit had caused a reboot on Vista, the exploit had not worked on Windows 7"

It would appear the title is misleading. Vista, not Win7 was affected. That may change, but at this time, there is evidence demonstrating that it doesn't affect Win7 as was suggested by the title.

SMB is an internal network resource sharing method and unless you have access to the internal LAN, it really means nothing. It's easy to screen out as well. Gaining internal access to the network has been and will always continue to be the tricky part. Once you're in, there's all sorts of things you can do that are a heck of a lot easier than this.

[shellcodes_coder]

Agree with you

[ralfthedog]

One organization reported that the exploit worked on 7, the other did not.

[Vegaman_Dan]

I have to restate things a bit- while there is no successful test of the exploit, that does not mean there is not a security issue there. A vulnerability is still a vulnerability that needs to be addressed.

The likelihood of this happening since it requires internal access is pretty low however. It's also easy to screen out at the router.

[ZuneorIpod]

Listen I think we all know that anything related to apple making software is going to suck and in that case if you people dont lke Vista then just go back to Windows XP, to me they both run very smooth.

[ralfthedog]

Microsoft products are ok if you are playing games or doing basic office stuff. They don't hold up well for high performance computing. Linux or BSD are the best for serious number crunching. The more stripped down the build the better. My favorite configuration as a cluster of computers running a very stripped down version of CentOS with a Mac as the front end.

Macs make great front end computers. They are basically Unix boxes with a bit of bloat code strapped on for the UI (not as bloated as Windows). TCO is very low. They are almost as easy to maintain as a Linux box.

[rapier1]

Ralf,

To be honest the Windows HPC Server clusters are actually pretty good. They don't have a lot of traction in the academic HPC market for a number of reasons, some dealing with scale on the largest machines, but more often than not its explained by organizational biases. It will be interesting to see how it plays out over the next couple cycles but I wouldn't be surprised to see more Windows HPC in corporate HPC environments.

[ralfthedog]

I don't see an advantage to Win HPC. I don't think it gives you any better performance. Most projects have their code optimized for GCC. $475 per computer * 1,000 or so sounds a bit more expensive than $0.00 per computer * 1000.

Microsoft will need to significantly outperform Linux or Unix before they can take any part of the market.

[rapier1]

You might not see an advanatge but you probably aren't a CTO. I'm not saying I really see an advantage either but I know I'm not a CTO. Someone, however, must see an advanatge because they have 5 spots on top500.org. Not a huge amount but 1% of the top 500 fastest machines in the world still ain't nothing to laugh at. You do have a point on the pricing *but* I know we shelled out a couple million for the software licenses for the Crays we used to run. If its what you need then you pay the price.

[rmullen0]

Woohoo! Three cheers for insecure crap Microsoft OSes. Microsoft really does need to come out with an altogether new OS IMHO. There is just too much crap in there. Every new version of Windows has a new API or a new way of doing things. They never remove anything because it would break backwards compatibility. There is just too much BLOAT. I am already disappointed in Windows 7. As far as I'm concerned, it is just Vista 2.0. i.e. 700+ MB RAM in use right after startup. That is ridiculus. What is all that crap running in the background. Useless crap. XP had like 10 processes running in the background after startup. Vista and 7 have like a hundred. Windows IMHO is too big and unwieldy. It still is and to say that 7 is so much better than Vista is just marketing spin as far as I'm concerned.

[rmullen0]

Oh yeah, and don't get me started on Office 2007. They got rid of all the menus. *** is the problem with menus!!!!??? Not going to upgrade to this crap. PERIOD.

I don't care about games, don't want a thousand wordprocessors (where just one good one will do) or a million apps, mostly for cleaning up a bloated OS from malware, DLL hell or to get rid of the *other* million of crapware apps.

Now you try again.

So you're calling Mac users crap ? tsk-tsk. Not very nice of you. You must be very a frustrated man ! Maybe you should get away from that Windows-box and get a life, maybe ? Hmm ? ...

[shinkukage09]

But they ARE crap. CRApple. Besides, like many others, you haven't realized yet that it's a proven fact that Windows is more secure.

But no, you'll say, it's got so many more viruses! Know why? Because most of the people who use a computer...run some Windows OS or another. Be it 98, 2000, ME, XP, Vista, or 7. Windows holds the most computer users, Thus it's going to get more viruses because more people are going to target Windows. Now, if you were to switch Mac and Windows in the past to where Mac's would have the most users, the Mac would have the most viruses. It's basic common sense. That which has the most people, will be the most targeted.