Slashdot Log In
A Bad Week for Symantec
Posted by
CowboyNeal
on Thu Mar 01, 2007 07:21 PM
from the seen-better-days dept.
from the seen-better-days dept.
Evan Hughes writes "NeoSmart Technologies has published a scathing editorial regarding 3 high-profile mistakes by Symantec Corp. — all in less than a week. In what seems to be a string of stupid mistakes culminating in the infection of CNN-parent Turner Broadcasting Systems by Rinbot— a virus dedicated to the eradication of Symantec from the known world."
This discussion has been archived.
No new comments can be posted.
The Fine Print: The following comments are owned by whoever posted them. We are not responsible for them in any way.
maybe... (Score:5, Funny)
(http://www.atomjax.com/)
Maybe they're not mistakes... maybe it's just a form of viral marketing.
With all due respect... (Score:4, Interesting)
I'm so glad I moved out of software maintenance and into hardware maintentance. Now I just wipe harddrives clean as a whistle and make sure the hardware works. Such a load off!
Re:With all due respect... (Score:4, Insightful)
Re:With all due respect... (Score:4, Funny)
Reminds me of a phrase we used at a company I once worked at, to describe 'free' equipment we were given, and co-erced into using.
"It didn't cost us anything. Well, not at first."
Re:With all due respect... (Score:5, Insightful)
(http://en.wikipedia.org/wiki/)
No great loss (Score:5, Insightful)
Re:No great loss (Score:4, Funny)
(Last Journal: Monday June 05 2006, @10:46AM)
Re:No great loss (Score:4, Informative)
(http://www.fred08.com/)
While Trend Micro is known to be good, my faith in it has been shattered when I cleaned up a web server that was infected with some unknown virus. It was so nasty, that it disabled the Trend Micro services!!!
Because I use AVG Free at home (and has always prevented infections), I decided to download and install the 30 day trial of AVG for file servers. Needless to day, it found the viri and purged them.
I think I'm on day 8 of the trial period without further incident. Because the trial version of F-Prot also failed, I fairly certain we will go with AVG.
Re:No great loss (Score:5, Interesting)
Well, somewhere in 1990, Peter Norton sold things to Symantec. They (Symantec) continued to associate themselves with Peter Norton up until 2001 or so. About that time is the consensus that things went downhill. I'm not certain how much involvement Norton had with Symantec up until that point, but I'm willing to speculate that when the two parted companies, that's when Symantec began their transformation into selling the crap they do now.
Gosh, I miss the good ol' days of Norton Utilities and the like...in DOS nonetheless. Now there was a powerful piece of software that was truly easy to use. The UI actually showed you some shred of respect that you knew what you were doing.
So this is kinda obvious, but.... (Score:5, Informative)
(http://taltos.pha.jhu.edu/~tamas/)
Hmm hmm hmm people are dumb.
Re:So this is kinda obvious, but.... (Score:5, Interesting)
I don't like Symantec products because they make the life of a sysadmin *more difficult*.
not all that obvious, really (Score:4, Informative)
(http://intrinsicsecurity.com/ | Last Journal: Sunday August 28 2005, @11:11AM)
Is this guy serious? (Score:4, Insightful)
(http://justinpedia.com/ | Last Journal: Saturday August 18 2001, @12:45AM)
Furthermore, doesn't Free AVG only update once a week as well?
Re:Is this guy serious? (Score:5, Informative)
Re:Is this guy serious? (Score:5, Insightful)
(http://justinpedia.com/ | Last Journal: Saturday August 18 2001, @12:45AM)
I work for... well, it doesn't matter. In our facility absolutely NO patches or virus definition updates are applied without first being approved by another group whose sole job it is to make sure these pathces don't affect something critical to our operations. Furthermore, we only download our defs from approved (IE our own) sources so as to ensure that we are ONLY downloading what's already been tested.
In short, we are all professionals and we should be capable of ensuring that our defs are up to date. We don't need (nor will we allow them to in our case) Symantec to hold our fuckin' hands throughout this process. When I install a corporate virus scanner, I fully expect to have to configure the machine policies in order to match our IT policies. If somebody's only updating their definitions once a week, then that's not Symantec's fault. That's the fault of whatever sysadmin was too stupid to properly configure his software.
That said, I still think Symantec's a piece of shit and I wish we were allowed to use other solutions in its place, but that's not for me to decide. Their management software is no where near as feature rich as EPO, and I seem to have to spend more time dealing with Symantec issues than I do with EPO issues. (Because, yes, we do monitor our machines each day to ensure that they are updating properly. CNN we are not.) Please don't think for a minute that I like defending Symantec. I just believe in placing the blame properly where it belongs, and in this case it's the idiot sysadmins who weren't doing their job.
Symantec - semantics (Score:5, Funny)
(http://nedwolf.com/ | Last Journal: Friday September 30 2005, @01:10PM)
That's not a virus. That's a feature.
Why is this is only news now? (Score:5, Interesting)
(http://www.networkmirror.com/ | Last Journal: Thursday July 05, @04:34PM)
1. Estimates are 100-150 million machines are currently part of botnets
2. Loss estimates exceed 200 billion annually on a global basis
3. Over 80% of all spam comes from botnets
Yes, I can cite. Or you can Google. They are all easy to find.
This is a HUGE problem that is, in many ways, like spam was in 1996 or 1997. The technical community acknowledges it, the average consumer has no clue, and, left unaddressed the problem and associated looses will get much, much worse.
How much will it take? (Score:1, Insightful)
(http://tsfraser.googlepages.com/index.html)
Re:How much will it take? (Score:4, Insightful)
Re:How much will it take? (Score:4, Funny)
(http://johnstewien.spaces.live.com/)
Re:How much will it take? (Score:4, Funny)
(http://timgray.blogspot.com/)
when the OS let's Steve ballmer and Microsoft know when you are in the shouse so a guy can show up dressed as clippy and forcibly anal rape you.
Yes, it will have to get that bad before the sheeple out there actually switch.
Sounds as Though Turner Made One Mistake (Score:5, Insightful)
Updates (Score:5, Insightful)
(http://picknit.com/ | Last Journal: Saturday July 29 2006, @03:58PM)
People often don't update their software for years at a time. Hey, it costs. Which is why NAV is designed to update itself automatically. You just have to configure it correctly.
I'm no fan of Symantec. It's perfectly true that they're badly run. Hey, they used to be a lot more than a "security software" company, but all their other business (natural language databases, compilers, IDEs, desktop software, backup software) just died on them. But to blame them for the ineptitude of the CNN's IT department is idiotic.
A what now? (Score:2)
Just in time for us to migrate to Symantec (Score:3, Informative)
(http://slashdot.org/ | Last Journal: Monday October 29, @07:20AM)
Re:Just in time for us to migrate to Symantec (Score:4, Informative)
(http://slashdot.org/)
We've got an AV server and all of our clients are managed. We set the server up to check Symantec every two hours for updates and those updates are pushed down to the clients almost immediately.
Need to install all of your clients to the latest version (say from 9 -> 10)? Click Tools | Install Client Remotely and push it down from a central location.
We check our clients and any computer that is more than a week out of date is turned on and updated.
The only reason I can think of that so many people are complaining is because they've only used the consumer version. When we get student laptops we immediately remove it and install the corporate version that is free for them. I've never had a problem uninstalling the trialware version of the AV that ships with so many laptops.
Astroturfing (Score:4, Interesting)
I have to wonder how much of it is simply astroturfing by disgruntled former employees? When there's a negative op/ed piece on a "software development and security research" website where none of the SQL even works, I just have to wonder if some no-talent assclown is pissed off because he lost his helpdesk or HR job.
Re:Astroturfing (Score:4, Interesting)
(Last Journal: Monday May 05 2003, @06:46PM)
But at the same time, I have to ask how incompetent a company that writes security software can be, when their own code is written so as to allow this type of exploit.
Furthermore, I've had quite a bit of experience with Symantec over the past few years. I've been using Veritas products for a decade and change (Netbackup and Volume Manager primarily), and know them very well. Once in a while, I'll come up against a bug and phone Veritas for support/workarounds/whatever. For years they weren't top notch, but they were decent and consistent.
Since Symantec took over, support has fallen through the bottom of the toilet. Their help desk is driven by 'time-to-close,' and actual technical experts are no longer brought in for difficult cases. Bug reports are not even accepted anymore! (Well they'll _take_ the bug report, but won't give you a bug ID to track it with.)
Furthermore, they've started to crank up the version release numbers so that they can promise support for two versions, but only support products for two years from initial release. TWO YEARS FROM RELEASE!!! That's completely unacceptable even in the home PC marketplace, let alone in an enterprise environment, where a product rollout may take over a year.
So yesterday I went to install the newly-free version of Storage Foundation, because I needed to migrate some data from an old system (flawlessly running vxvm 3.5) to a new one, where we'd then move it to ZFS and be done with Veritas for good. The installer put 40 packages on my newly built Solaris 10 system (11/06 release), but failed to actually install the volume manager! After screwing around with it for a while, I gave up and went to uninstall it. The uninstaller hung in kernel space, and for twelve hours did nothing but couldn't be killed.
I don't care about any axes that people have to grind. Symantec is an incompetent company, and DESERVES all of those people holding grudges against them. I'll be glad to see them die horribly.
Re:Astroturfing (Score:4, Funny)
Personally I'm surprised that he hasn't broadcast it on the news as a terrorist attack and recruited the Boston police and bomb squad to deal with this threat...
Re:Astroturfing (Score:4, Insightful)
(Last Journal: Monday May 05 2003, @06:46PM)
First of all, I may have misstated Symantec's support policy, but that is verbatim what I was told by a support engineer. (I even have the email to prove it.) Maybe some internal training is in order?
"...you've downplayed the fact that two years is a long time in the world of security software."
Did I mention the "Veritas products" part of the equation? Two years is barely time to get one's feet wet with most (former) Veritas products. There's also support from other vendors to consider: Sun didn't actually provide support for Volume Manager 4.0 until after 4.1 was released. Already we're into the two year window, and we haven't even started a cluster OS upgrade!
And that's just volume manager. A full-blown enterprise Netbackup installation is a MAJOR event. Here's one scenario I dealt with recently:
NBU 5.0 gets released. After six months of waiting for it to become stable enough to actually use, the company started the implementation. This involved $980k of new hardware (and they already had the tape library and infrastructure in place). The planning, architecture, implementation, cutover, and validation took a total of roughly eight months. That's 14 months after initial release, and we've just gone live with the product. At that point, after over a million dollars of gear and time and effort, I am NOT planning on a major version upgrade in ten months or twenty or thirty. I want a MINIMUM of three years of full support after that point, and five is much more reasonable. We shouldn't be forced to upgrade our software until we've outgrown our infrastructure, which is about a 3.5-4.0 year turnaround for most big companies.
Furthermore, service packs or not, the very WEEK that NBU6.0 was released, we were told we couldn't get any more NBU 5.x client licenses. That's it, no more, thanks for coming out. Suddenly, regardless of bug support, we're left without any legal means of growing without upgrading to 6.0.
That is, in a word, crap.
This isn't a $100 anti-virus package for a PC that's going to be chucked in two years, this is software that runs enterprise installations. We don't spend $5k per client machine for a product that's obsolete almost as soon as we install it.
Now you can say that Symantec doesn't operate like this, that my details are all incorrect. That may be, but that is what we were told by our local sales guys, our regional managers, and the other end of Symantec's international support group.
So on the one hand, we have the model you describe, which is crap. On the other hand, you have the reality that I've described which is rancid festering crap. Add to this the fact that VxVM5.0 Basic (the freebie package) simply doesn't work, and you've got a company that is either too incompetent to survive, or trying very hard to destroy the Veritas products/division they bought a few years ago.
As for you liking your job, that's great. I really am genuinely happy every time I hear about someone enjoying their work, because we spend a lot of time at it. (random aside: Until recently I hated my job although I love my work, so I quit--now I'm working for a better company for less pay, and loving it.) Unfortunately, that doesn't change the fact that your company doesn't even have the vaguest understanding of what enterprise computing is really about.
First thing I Uninstall is Symantec (Score:4, Interesting)
No sweat off my nose.... (Score:5, Interesting)
(http://www.gotsheep.com/ | Last Journal: Wednesday August 13 2003, @11:49PM)
I substitute Free-av.com for Norton- better infection detection, less memory overhead, free (with the option of buying a license- I usually guilt them into doing it), and nightly upgrades.
Deepest Hater--The Ex-Employee (Score:1)
(http://freejavalectures.googlepages.com/)
That makes sense... (Score:1)
(http://localhost/)
Can you say AVAST? (Score:5, Interesting)
No, I don't work for them, or own stock. They've even updated it for Vista. The cost? Register for a free serial number every 14 months.
Comodo firewall http://www.comodo.com/ [comodo.com] is nice free step up for those who think they need something more than Windows firewall.
In the year 2007, there is really no need for a consumer to pay for a product from Symantec/Norton, McAfee, or any other security software vendor that has been fleecing us for the last several years.
Webster University as well (Score:1)
(http://www.nocturnal.org/)
Eradication? (Score:2)
(Last Journal: Monday December 22 2003, @01:52PM)
We can only hope.
... ti-Virus - Virus - Anti-Virus - Virus - An ... (Score:1)
If I wrote viruses and wanted to make a living from it, subscription-model anti-virus software would do me very nicely, thankyou very much.
WELL (Score:2)
Ahh, feel the love here.........
Firewall and A/V products (Score:1)
Switch to AVG (Score:1)
Still, just in case:
Symantec's AV is, IMHO, a terrible product. I have a parttime job working on a university heldesk in their central computing facility. We see this AV appear on user's machine regularly, and the first thing we do is get the user to uninstall it [if they can!], and to then install AVG Free Edition. I've never know a user to *not* come back and thanks us, and to report that their machine is running better after they've done this.
Re:AVG (Score:5, Funny)
(http://www.kfu.com/~nsayer/)
Since we're talking about Windows machines, I can tell you for certain which comes first.
Re:AVG (Score:5, Insightful)
(http://www.civilwar.org/ | Last Journal: Tuesday September 05 2006, @07:45PM)
In fact, I'll get you the data.
Main server has rebooted twice in the last four months for security patches, total ~19 minutes downtime.
Re:AVG (Score:4, Informative)
Re:Dont Blame Symantec (Score:1)
Re:Not nearly as bad as the week was for the BBC: (Score:1)
(Last Journal: Thursday June 28, @08:26PM)
Re:Dont Blame Symantec (Score:2)
(http://vftp.net/ | Last Journal: Saturday December 09 2006, @09:52PM)
Re:Not nearly as bad as the week was for the BBC: (Score:1)
(http://marp.retrogames.com/)
For some reason this isn't newsworthy.
Re:AVG (Score:3, Interesting)
(Last Journal: Thursday November 11 2004, @12:40PM)
Re:Dont Blame Symantec (Score:1)
Re:Not nearly as bad as the week was for the BBC: (Score:1)
demolished by explosive within mere hours. It can't be done in one sunny afternoon, it takes
at least a week of careful planning and preparation.
Great post! Very interesting.
Personally I find it fascinating to see the lengths that some Americans will go to in order to explain away one simple fact - that a bunch of Arabs put together a terrorist outrage right under your noses. And weren't even very clever about hiding it. But it didn't matter due to the incredible ineptitude and complacency of your security services.
And I'm sorry to nitpick such a great post, but have you realised that you forgot to blame the Jews? What sort of conspiracy theorist are you?