Trend Micro Bug Hits Several Important Computers 221
dmarx writes "The Japan Times reports that a bug in Trend Micro's antivirus software has caused the CPUs of several important computers, including those at East Japan Railway, to grind to a halt. A bug free version was released on noon Saturday." From the article: "Kyodo News experienced LAN access failure from around 8:20 a.m. to shortly before noon. The Asahi Shimbun and Yomiuri Shimbun also had trouble with their LANs at their Tokyo and Osaka bureaus, but the problems did not affect editing or printing of their evening editions."
Before the flury of obvios train crash jokes start (Score:5, Informative)
Re:Before the flury of obvios train crash jokes st (Score:2)
Sounds familiar. (Score:5, Interesting)
Sounds like every interactively-scanning antivirus program I've ever installed. I wonder, when Microsoft releases server benchmarks, if they run them with antivirus software running in the background? I think this would give a 10%-15% edge to operating systems that don't require such measures of protection.
Re:Sounds familiar. (Score:2)
Re:Sounds familiar. (Score:4, Funny)
Re:Sounds familiar. (Score:5, Funny)
No users either...
Re:Sounds familiar. (Score:5, Funny)
Re:Sounds familiar. (Score:3, Funny)
Lack of apps just makes it even easier to admin. None of the non-existant users will be asking for any of the non-existant applications to be upgraded. Nor will they be getting any of the non-existant viruses.
The big problem with being a BeOS admin is there is no money in it. Otherwise it is perfect.
Re:Sounds familiar. (Score:2)
Isn't that because they're all dead? Oh wait, thats the OS...
(I kid! I kid!)
Re:Sounds familiar. (Score:3, Insightful)
Re:Sounds familiar. (Score:2)
Or many of the other secure operating systems.
Re:Sounds familiar. (Score:4, Funny)
Re:Sounds familiar. (Score:2)
Re:Sounds familiar. (Score:2)
I hope people don't think I'm being mean about BeOS, I love it. Just can't resist an obvious joke.
Re:Sounds familiar. (Score:1)
The obvious reference here is everything else. While viruses do exist for them, a good firewall and a smart user is enough to ensure security for them. And in the rare occasion of an infection, it's better to restore from a backup then to run an AV program all the time.
Re:Sounds familiar. (Score:2, Informative)
Re:Sounds familiar. (Score:3, Informative)
Re:Sounds familiar. (Score:5, Informative)
You just need mod_php compiled in to Apache (the equivilent of ISAPI), *not* all of PHP, for this to work.
Re:Sounds familiar. (Score:2)
Re:Sounds familiar. (Score:2)
I write a database that sorts the search using BubbleSort. Only. Nothing else.
There's a competing database where I can use arbitrary plugin for sorting, be this quicksort, bubblesort or bogosort. There are many. Most people use the fastest ones, but sometimes they use some odd sorting methods and replace the default quicksort plugin with their own.
So I start the benchmark, my database vs the other one. - set up to run on bubble sort.
Whoa, my database sorts data faster than the other one! I won! My data
Re:Sounds familiar. (Score:2)
Re:Sounds familiar. (Score:2)
Re:Sounds familiar. (Score:2)
Re:Sounds familiar. (Score:2)
Now I'm gonna go try shove Apache onto my graphical calculator.
Re:Sounds familiar. (Score:1)
I couldn't figure it out - had to boot to safe mode just to backup my files before I re-installed the OS.
It should be part of the TCO (Score:4, Interesting)
Re:Servers do not need real time virus protection. (Score:2)
Your SQL server is infected with a trojan. Nevermind how, it's not important. Your manager wants to know why it wasn't protected.
You are building yourself into a glass house. Mistakes happen. They are made by your or others on your staff. You should plan for those mistakes, life has a way of teaching these kind of lessons on it's own. Typically painfully.
Re:Servers do not need real time virus protection. (Score:2)
You and I have differing definitions of "locked down", and in any case, I wasn't specifically referring to trojans, I was simply using them for the example.
Shit happens. As network admin, it's your job to limit the damage using every available mean. By not using AV on all machines ( yes, virginia, linux boxes t
Re:Servers do not need real time virus protection. (Score:3, Insightful)
This would frighten me, were I your manager. People who are this sure of anything have been, in my experience, zealots for that OS or so egotistical that I don't want them making decisions.
Crap breaks, people make mistakes. I believe this to the core of my being, and I plan on it. Sure, I lose some performance, but given I can throw more hardware at that particular problem, I don't worry about it.
Re:Servers do not need real time virus protection. (Score:2)
Yes, it is.
Are you 100% sure you will not be targeted for assassination by a rouge government agency
I think we will both agree that a computer on a network with other computers is at higher risk of catching something than your statement.
The reward, in terms of dollars and performance, is worth the miniscule risk we take by not running the real time protection.
Do yourself a favor, and ask this question to any manager type:
"Would you prefer to have a high perf
Re:Servers do not need real time virus protection. (Score:2)
File servers. You know, machines whose sole purpose is for end-users to stow files on them.
If your end users are keeping all of their critical files on their workstations you need to fire your admins and get some new ones who have a clue about disaster recovery.
Who's to blame (Score:4, Insightful)
I understand software is a tad more complex than your average TV, but cars are not exactly simple either and they seem to work quite well (most of the time). Will we ever get software that just works or will we always have to buy something in the good faith that it will work, but if it does not, it is our tough luck?
BTW, I hope slashdotting another japanese server won't cause much additional damage...
Re:Who's to blame (Score:5, Informative)
Car manufacturers fight really hard to stop this from getting more of media attention, but modern cars are known to have SERIOUS software bugs. Just google car software bug or similar for stories and references - running 100MPH down a motorway and have the engine switched off, everything shut down (and even the steering wheel blocked), or having the central lock imprison you in the car, so you can't get out, or having random pieces of equipment (wipers, windows, chair adjustment) to start at random... These are real stories. Cars aren't what they used to be...
Re:Who's to blame (Score:2, Insightful)
And that is a good thing...despite these software glitches cars are SIGNIFACTLY safer today due to computers:
If cars are going to go fly by wire they need to be tested and maintained like airplanes instead of like disposable consumer electronics...but in balance computers have made cars safer.
that's the problem (Score:4, Insightful)
No easy choices for joe consumer and land transportation. It's not like you can go buy a brand new cheap car that isn't infested with all sorts of electronic stuff that isn't really necessary. It may be useful, but it's not exactly necessary. You can get older cars of course, but even then it's a high cost to restore them and in a lot of cases they have to be modified to pass emissions, which lowers their actual practicality value by introducing complexity. More stuff bolted on = more stuff to break, simple as that. I mean, new cars now cost what houses used to cost not that long ago, and they still drop in value the same as they always did, drive off the lot, whoops, several thousand gone, then it goes downhill from there. It's a cost/benefits/practicality issue that's quite complex, I don't think it can be really stated that cars are that much more of a deal now just because of all the electronic controls, which are consistently the number #1 consumer complaint with cars and repairs, the electronic control systems nowadays. Blackbox voodoo stuff that even the dealer factory trained guys have a hard time dealing with once they develop bugs.
Re:Who's to blame (Score:2, Interesting)
I'd MUCH rather trust a reasonably engineered computerized system than the thousands of other drivers around me on my way about town.
I didn't post there, but my very first reaction on reading was:
"And just where the hell do propose to find one of those?"
This story illustrates my reaction. Imagine thousands of cars around you on your way about town that have suddenly lost all control.
Without the introduction of computers cars are
Re:Who's to blame (Score:2)
Re:Who's to blame (Score:2)
1998 GMC SONOMA SLS
Driving 70mph in heavy rain and my whipers quit. I quickly hit the brakes and drove off the road. I'm glad I had a little Rain-X left on the windshield. Otherwise I would have been about 20 feet down in a ditch.
The other time that truck tried to kill me was when the butterfly in the throttlebody stuck wide open. That was a hell of a ride!
Re:Who's to blame (Score:2)
And the wipers: was it the motor or a problem with the controller that made them stop? My family has been using GM trucks for a while, and we've had to replace a few failed/failing wiper motors, though I think a 1992 wa
Re:Who's to blame (Score:2)
The wiper problem was definitely the controller. They worked after I pulled the battery negative for 5 minutes, then reattached, started the truck and went driving.
Re:Who's to blame (Score:3, Funny)
You never drove a 1967 Jaguar. Electrics by Lucas -- the Prince of Darkness.
Re:Who's to blame (Score:2)
At least some Honda Civics are designed with a deadlock mode you can activate (from the outside only!) in which you can't open the car from the inside. Stops someone smashing a window and unlocking the door that way, I assume.
Besides, that doesn't help the failure mode where you're on your own on a quiet road at night miles from anywhere, you go outside t
Re:Who's to blame (Score:2)
For this reason, when you are connecting up jump leads to a modern car, it's quite useful to have the keys of both cars in your hands to avoid this embarassing problem.
I think it may be that a flat battery in the second car produces a prolonged rapid surge which the ECU just wasn't designed to deal with.
Re:Who's to blame (Score:2, Interesting)
Many comp
Re:Who's to blame (Score:2)
My family rented a 2003 Suburban for a vacation (family-sized vehicle was in the shop after a large tree-branch fell on it, distorting the roof and breaking windows) a couple of years back, and one scary "convenient" automation was that the doors unlocked when the vehicle was shifted into Park. That
Re:Who's to blame (Score:2)
RIch
urban legend? (Score:2)
Updated 14 May 2003
http://aardvark.co.nz/daily/2003/n051301.shtml
Thailand's Finance Minister Suchart Jaovisidha had to be rescued today from inside his expensive BMW limousine after the onboard computer crashed, leaving the vehicle immobilized.
Once the computer failed, neither the door locks, power windows nor air conditioning systems would function, leaving the Minister and his driver trapped inside the rapidly heating vehicle.
Despite the pair's best efforts, it
Re:Who's to blame (Score:2)
Re:Who's to blame (Score:4, Interesting)
Given time software will reach a point where it's about as reliable as concrete buildings, but in the mean time we'll be stuck with the many kinds of blue screens.
Re:Who's to blame (Score:2)
And cars certainly don't get something additional forcefully installed into them via a backdoor every time they visit some company's parking lot.
That would be novel, wouldn't it -- free parking, as long as we can secretly install a tracker that lets us know which drive-thrus and coffee shops you go to th
A lesson here. (Score:3, Insightful)
New sales slogan (Score:5, Funny)
LPT$VPN.594? (Score:2, Interesting)
The large bookseller I work for (think "Stables and Lords") got hit with that on Friday. All the XP machines (basically, the Manager's computers in the stores) and even a few of the XP computers in the Helpdesk (where I work) would lock up and freeze during boot.
Deleting the offending file fixed the issue.
Re:LPT$VPN.594? (Score:1, Informative)
Bug free? (Score:4, Funny)
They can prove that there are no bugs can they? That would be a neat trick.
And what's "on noon"?
How about: A fixed version was released at noon on Saturday.
Re:Bug free? (Score:2)
As usually, there's a hook. Proving correctness of anything more complicated than 2-3 nested loops and a handful of conditional statements would require more computational power that exists in the whole world.
Not quite useless - 20-line routine about mixing fuel in a jet engine is something worth proving, and these things are subjected to this technique. But 3 megabytes of an a
Re:Bug free? (Score:2)
As usually, there's a hook. Proving correctness of anything more complicated than 2-3 nested loops and a handful of conditional statements would require more computational power that exists in the whole world.
It'll need significantly more computational power than that. After all a program unintentionally entering an infinite loop is a bug. And since the Halting Problem is unco
Re:Bug free? (Score:2)
Why? Not at all.
The process checks ALL branchings and ALL possible combinations of states of the program (that's why it's so computationally intensive), and once entering endless loop, the program will keep cha
Re:Bug free? (Score:2)
The process checks ALL branchings and ALL possible combinations of states of the program (that's why it's so computationally intensive), and once entering endless loop, the program will keep changing its state in a closed cycle - Pretty simple autocorelation analysis of the time-state function of given branch will reveal it's an endless loop and terminate analysis of the branch.
Well, for a computer with finite space you could analyse all possible states - but then again to do so you would
Re:Bug free? (Score:2)
Three outcomes are possible:
- Proven incorrect
- Proven correct
- Unprovable using available system.
You just treat "unprovable" as "proven incorrect" for mission-critical pieces. Sanity checks for running out of -its own- space on the proving system are quite simple. Yes, you need a large system, MUCH larger to that.
With t
Re:Bug free? (Score:2)
xn_plus_yn_equals_zn_satisfiable simply returns whether x^n + y^n = z^n is satisfiable for n with some value of (bignum) integers x, y and z.
In other words the program halts if Fermat's Last Theorem is true and infinite loops if it is not.
Of course if you take "the prover couldn't find a problem after running for 3 days" as meaning the "code is invalid" then you can "prove" the corr
Can anyone explain? (Score:2, Funny)
Does it like sushi?
Re:Can anyone explain? (Score:1)
The problem with AV (Score:4, Insightful)
Oddly, my Solaris and/or Linux and/or OSX servers are able to get by without any sort of AV protection (other than promptly installing patches). And, oddly enough, they are more stable.
Go figure. :)
Re:The problem with AV (Score:3, Interesting)
Re:The problem with AV (Score:3, Interesting)
Using SysInternal's Process Explorer, I was ultimately able to see that a module (running as a part of the "system" process) called "TmXPflt.sys" was running 4 simultaneous threads each using about 25% of the CPU. Since the "system" process is given higher priority than all other processes, the s
Re:The problem with AV (Score:2)
Antivirus software on mission critical computers? (Score:5, Insightful)
Auto Update of Antivirus IS a secuirty risk (Score:5, Insightful)
Re:Auto Update of Antivirus IS a secuirty risk (Score:2)
Then you could have people automatically downloading malicious code with a program that is meant to protect against that very possibility.
Why AntiVirus? (Score:4, Interesting)
Re:Why AntiVirus? (Score:2)
Re:Why AntiVirus? (Score:3, Interesting)
Even if a computer system isn't connected to the Internet, you can guarantee that -- if it's connected to any kind of network infrastructure -- some idiot is going to jack their laptop into it, or plug a USB key into one of the PCs.
This is how viruses can get onto supposedly 'private' networks.
It takes a significant amount of effort from the IT guys to harden a system against this -- managed switches, Windows group policy. They're guaranteed to forget something.
The right thing to do is to disable the
Re:Why AntiVirus? (Score:2)
Re:Why AntiVirus? (Score:2)
Fatal train wreck a result? (Score:2)
MindStalker asks and states:
What I want to know is why do the computers controlling the train system in Japan need antivirus. ... connecting a control system like that? Running it on windows? Silly.
I agree and wonder if the ensuing chaos had anything to do with this unusual and fatal accident. [bbc.co.uk] The engineer, of course, is being blamed for speeding. You have to wonder what was making him speed. Japanese trains usually run like clockwork.
Fifty two people died and hundreds were injured. You can see the
A disassemble of this virus (Score:2, Funny)
This crash brought to you by the letter 'P' (Score:2)
In case anyone forgot this one:
Trend Micro Quarantines Letter P [slashdot.org]
We had the same problem (Score:4, Insightful)
*They wanted me to give them my root password before they would turn on my network connection. I told the nice woman that if ITS expected me to trust them with my password, surely they would trust me with the password to one of the servers. She rolled her eyes and activated my connection.
Re:We had the same problem (Score:4, Insightful)
I use TM's enterprise stuff at a number of clients, and I've found it to be far more reliable than anything else. Most of my clients were using other products before I moved them over to TM, and nearly all of them were having problems with client interaction, updates not working, etc. And despite updating regularly, I've never been hit by any of the bugs reported.
Helpful, NOT... (Score:2, Informative)
So dual CPU makes sense... (Score:3, Interesting)
It seems it is not so bad idea after all (at least, for Windows users).
Info on Full-Disclosure list (Score:4, Informative)
There was discussion on this on the Full-Disclosure mailing list [grok.org.uk] when posters suspected [grok.org.uk] that the 100% CPU usage on their computers was because of some new unknown virus.
A repesentative of Trend Micro Germany made a post to the thread [grok.org.uk] where he explained the situation, apologized for it and offered pointers to their support database so that people could get the malfunctioning virus signatures uninstalled.
OS should provide protection (Score:3, Interesting)
Re:OS should provide protection (Score:2)
Trend Micro (Score:2, Informative)
Since my office was so seriously affected by this problem, it would be great if people could post other embarassing Trend Micro stories too!
Not the first time (Score:2)
But then so has McAfee [scmagazine.com] and CA [scmagazine.com], (though the last was a licensing component at fault).
There definitely does seem to be an increasing trend in vulnerable AV software at the moment.
ANd these guys got a certification recently (Score:2, Interesting)
Down with antivirus software (Score:2)
Re:Down with antivirus software (Score:2)
This was bound to happen, and it will happen again (Score:3, Insightful)
antivirus idea in general (Score:2)
people are looking at the new intel dual core setups for among other things, dedicating one core to their antivirus checker, as norton lately has been bogging down the CRAP outta pc's
how hard is it to make a PCI/ISA/ slot card that is the CPU for antivirus.. yes- I propose someone build an anti-virus processor, and mount it on a card.. let it do everything that gets
I expect 100 posts like this. (Score:5, Informative)
Still, the coincidence in time makes me wonder. I sure hope they don't use Windows in the train system I use... just read the EULA. My life is pretty "mission-critical" to me.
Re:I expect 100 posts like this. (Score:1)
Re:I expect 100 posts like this. (Score:3, Informative)
However, I admit that it was more likely due to his youth and inexperience. He was 23 and had less than a year handling the trains--but they also need to reconsider any external factors that may have helped pressure him to
Re:Tragic. That's the word to describe this (Score:4, Informative)
Re:Tragic. That's the word to describe this (Score:2)
The train systems are becoming increasingly automated however. For example, the older lines have open platforms, but several of the newer lines have a wall at the edge of the platform, with elevator-style doors that align with
Re:Tragic. That's the word to describe this (Score:1)
No shit! I wasted several hours trying to get my computer running again. How come they didn't?!
though I had nothing better to do anyway
Re:Tragic. That's the word to describe this (Score:1, Funny)
You want me to trust one of those finicky and new-fangled mainframes, when my slide-rule works perfectly reliably????? WTF?
Re:Not just corporations got hit by this (Score:2)
Apple's coming out with a really great one this Friday.