Symantec Updates Cause Chaos in China

Hello Kitty writes "According to Computerworld, a signature update to Symantec's anti-virus software has knocked out thousands of Chinese PCs. Apparently the latest update for the AV component of the various Norton packages mistook two system files in the Chinese edition of Windows XP SP2 for the 'Backdoor.Haxdoor' trojan. Piracy issues may complicate recovery, since once the updates are installed Symantec says the only hope for reviving an affected system is to re-copy the affected DLLs from the Windows restore disks. Everyone has their official restore disks handy, right?"

Probably not intentional

[MarkByers]

Although it seems easy to accuse Symantec of receiving bribes form Microsoft to try to make piracy in China more difficult, this is unlikely to be the case. Never attribute to malice that which can be adequately explained by stupidity.

Do you want to PAY for that level of stupidity?

[khasim]

Okay, I understand when people say that patches cannot be tested against EVERY software package out there.

But to not test against the core files of the operating system you KNOW they will be installed upon?

And people pay an annual subscription fee for that kind of "service".

Re:

[tokul]

But to not test against the core files of the operating system you KNOW they will be installed upon?

All localized Windows versions? 33 MUI versions and 27 LIPs? Original XP, SP1, SP2 and other intermediate patched up versions?

Re:

[Tony Hoyle]

Yes.

Symantec are a large and profitable company. They can afford to do that kind of testing.

Re:

[Xiaran]

I was once speaking to some people that worked as developers and QA people at McAffee... this kind of thing is their worst nightmare. They test more than you would believe(the head QA guy told me that he used to work on medical equipment testing and that McAffee tested *way* more than that). These kind of produces have user bases that most software developers in the world rarely come close to in terms of numbers... something like 50 million licenses apparently... so if something goes horribly wrong you get

Yes.

[khasim]

All localized Windows versions? 33 MUI versions and 27 LIPs? Original XP, SP1, SP2 and other intermediate patched up versions?

Yes. If they need help I'm sure that VMWare will be happy to provide them some expertise (seeing as how they seem to be sorely lacking it). And than is JUST FOR INSTALLING THE PATCH.

And you don't need to test "other intermediate patched up versions".

This is a virus scanner. Right?

So they only need to test against the various released versions of the files. All they need is a set of DIRECTORIES with the files to be scanned in them.

So one box could have ALL the various patches for that system. Based upon the variances in the files. One box for the US release. One box for the Spanish release. Etc.

And as I said, they don't have to be physical boxes. VMWare can help out a whole lot in that regard.

It's called "Computer SCIENCE" for a reason.

The pirates have the disks.

[khasim]

Oh, and who said this scenario wasn't tested?

Fascinating. So you are floating the possibility that this was PLANNED? And what possible reason could Symantic have for annoying their customers this much?

Oh, you don't happen to have a restore disk? Oh, you're running a pirated copy of Windows?

The "pirates" will have every CD and diskette ever made readily available to them.

The only people who won't have the disks are the home users who have been spending their lives doing things other than storing and tracking everything that ever touched their computer.

But they've been PAYING for the regular updates to PROTECT them from "problems".

Not to mention that many OEM's don't provide the right disks. You get a "recovery" CD which will reformat your box and re-install all the software TO THE CONDITION YOU ORIGINALLY RECEIVED THE BOX.

Too bad about all your files and pictures and such.

Oh, and who said this scenario wasn't tested?

Still waiting on the reasons why Symantec would do plan this and test it.

Re:

[Vicissidude]

So you are floating the possibility that this was PLANNED? And what possible reason could Symantic have for annoying their customers this much?

Sure. With Chinese users using pirated versions of Windows with who knows what kind of backdoor trojans built into their copies, they're lucky this hasn't happened previously.

Caveat Emptor - let the buyer beware, especially when buying from pirates.

(Personally, I think this is hilarious! The Chinese like to talk about harmony. Well, the universe has be

So Symantec did NOT fuck up their software?

[khasim]

Sure. With Chinese users using pirated versions of Windows with who knows what kind of backdoor trojans built into their copies, they're lucky this hasn't happened previously.

So what you are saying is that Symantec CORRECTLY identified those files as being infected.

Yet that does not seem to be what TFA stated. In fact, let's take a look at what, exactly, TFA stated, okay?

The Cupertino, Calif.-based security vendor also said that only Simplified Chinese versions of Windows XP SP2 that have been patched with

Re:

[Vicissidude]

Me: The Chinese like to talk about harmony. Well, the universe has become a little more balanced and harmonious now.
You: Yeah, why let the facts get in the way of disparaging an entire nation.

Hey, China pirated 9 out of 10 movies, music, and software products for the last 15 years. THOSE are the facts. They'd have their restore disks had they bought legitimate copies.

Re:

[1u3hr]

They'd have their restore disks had they bought legitimate copies.

They can use their pirated discs to restore their systems. You can buy them for about 50 cents in China if you misplace them. A lot less hassle than if they were using legit OEM versions.

Actually, according to TFA, it's corporate users with Symantic accounts who are being fucked up. Home users will just shrug and reinstall.

Re:

[dwater]

> 50 cents

Last I looked it was 5rmb for MS Windows XP, same for MS Office XP. Not far off 50 cents (if you're using USD) I suppose.

> Home users will just shrug and reinstall.

Na. Home users won't be buying Symantec s/w...they'll not bother at all or use some free version. I think I saw a Chinese AV app somewhere.

Re:

[dwater]

> Hey, China pirated 9 out of 10 movies, music, and software products for the last 15 years.
> THOSE are the facts.

Pulled out of thin air, I presume...

> They'd have their restore disks had they bought legitimate copies.

What makes you equate restore disks with legitimate copies?

In any case, IMO, the people who don't pay for MS Windows don't pay for their AV s/w either, and so don't use Symantec. No problem for most people. In fact, it's only the people who *did* pay (for both) that have the problem.

Re:

[mcmonkey]

Hey, just use your restore disk to replace the files.

When was the last time you saw an OEM computer come with restore disks? For me, it was about 6 years ago.

Nowadays, computers with Windows pre-installed come with a restore image on the hard drive. Pirates are the folks most likely to have Windows on CD.

Re:

[Vicissidude]

When was the last time you saw an OEM computer come with restore disks?

I don't know about Chinese computers, but my laptops from HP and Dell both came with restore disks. I bought my HP in 2005 and bought my Dell a few months ago.

Re:

[jZnat]

Were these business or home machines? Dell and HP are a lot nicer to their corporate customers than their individual ones.

Re:

[X-rated Ouroboros]

When was the last time you saw an OEM computer come with restore disks?
About a week ago when my wife bought a replacement laptop for the one murdalized by the small child.

Re:

[RobertLTux]

whats funny is all the folks that have a Windows Vista "anytime upgrade" disc i think have a Vista install disc (or at least a disc with the install image on it)
personally i think that a computer should come with a set of discs that have
1 just the OS
2 base software preload
3 bonus software preload
4 trial software preload
(of course the trick of having a seperate / and home partition is a good idea

Re:

[1u3hr]

Hey, just use your restore disk to replace the files. Oh, you don't happen to have a restore disk? Oh, you're running a pirated copy of Windows? Wow, then I guess you're shit out of luck.

Actually, if you're using a pirated Windows install, you WILL have a restore CD, unlike many of those with OEM versions.

And by the time you read this, I'm sure the necessary files will be available on web sites and BT all over China, and in the friendly neighbourhood bootleg software store for 5RMB (about 50 cents).

Re:

[MillionthMonkey]

You know, I have to wonder on this site sometimes, when I see a headline "Tech Company X Snafu Causes Widespread IT Disaster" or "Tech Company X Announces Plans for Evil" posted on the front page, and then I open the comment threads, how many comments were actually posted by employees of X.

Re:

[Vicissidude]

Yeah, and how many of the hate comments are actually filled out by competitors?

Re:

[MillionthMonkey]

I think most hate comments are from users, not competitors. So posts by competitors are harder to identify.

I've never seen any competitor of any employer of my own on here. My Slashdot conflicts of interest are all of a more common type- I invest a few days of my life studying some technology which then suxxor rulez.

Re:

[BCW2]

"Although it seems easy to accuse Symantec of receiving bribes form Microsoft "

You write that like you don't think Gates & Balmer would do something like that. Based on their normal business practices I'd say it was very possible. They have no respect or consideration for paying customers anymore than they do for other sortware companies.

Re:

[vertinox]

Never attribute to malice that which can be adequately explained by stupidity.

Always attribute to stupidity which could be adequately explained by malice? ;)

Sometimes it is pretty malicious to remain so willfully stupid.

Although, I don't think Symantec is on good terms with Microsoft these days.

Re:

[jZnat]

Although, it sounds like a good majority of Chinese people don't even pay the MS tax due to the helpful pirate bazaars or whatever.

Its not as bad as we think!

[NETHED]

Microsoft to Symantec: "Its OK, its not like there are many pirated versions, remember we have Windows Genuine Advantage!"

How Long

[TheUni]

...until some jackass posts a link to the files netapi32.dll and lsasrv.dll under the guise of a fix for these systems, but he has ACTUALLY infected with the backdoor.haxdoor virus?

Re:

[insecuritiez]

Haxdoor is not a virus, it is a Backdoor/Trojan.

Re:

[26199]

Hmmmmmm. What gave it away?

Pre-pwned windows

[sakdoctor]

Not a false positive. The Chinese pirated copies of windows probably come pre-installed with Backdoor.Haxdoor

Symbiant software

[goombah99]

This is no longer trojan but a full symbiant in china. If you kill the virus you kill the host.

Re:

[Anonymous McCartneyf]

The fine summary seemed to suggest that all Chinese XP SP2 installations got hosed by this Symantec update. Therefore, if this update is killing an actual backdoor, then all Chinese copies of XP SP2 have the backdoor...
Just what we need: an official Microsoft backdoor (other than WGA)!

Re:

[Xemu]

Not a false positive. The Chinese pirated copies of windows probably come pre-installed with Backdoor.Haxdoor

Of course the do, courtesy of CIA and the NSA. That's why symantec had to back down and quick...

Hypocrisy

[Romwell]

I guess this thread is going to become full of posts in the spirit of "they got what they deserved", as if this was an anti-piracy measure. Of course, piracy of IP is only legitimate when commited within USA, otherwise it is "OMG commies are stealig our moneyz". This was an effing software bug, which casued trouble to everyone, legitimate users too, and I don't see how piracy talk could be relevant. As a side note, having recovery CD's does not have to do anything with piracy. If you pirate Windows, you have all the CD's you need.

Re:Hypocrisy

[grommit]

I do it. They got what they deserved. Not for pirating Windows but for installing Norton/Symantec products. Anybody that willing installs any product from that company deserves any bad thing that happens to their computer.

Re:

[grommit]

Whoops, meant to say "I'll do it."

let's hear it for editing... or not, in this case.

Blue Screen Of Effection

[chromozone]

"CISRT said. "This issue has made a huge effection to Chinese people." I knew Symantec was effectionate because it wanted to screw my computer all the time. It's hard to decide what's worse - an infection or an "effection".

Radical change imminent

[Howitzer86]

China is quick to legislate change. I believe after this, all of their social organizations will adopt Linux for the sake of national security.

Re:

[Tuoqui]

Here's hoping. At least with Linux you can have those army of Chinese coders examine each and every part of that 50mb kernel for exploits and flaws :)

Re:Radical change imminent

[1u3hr]

This is also a common cause of famine in China: the central planners tell each region how much rice they will grow in a season, and the beauraucrats tell them that's how much rice was grown. When that fails to be the case, people starve

Yes, that did happen, during the Great Leap Forward, about 40 years ago. These days provincial governments still bullshit about economic growth statistics, but not so grievously.

And of course it's not just a communists who try to save face and walk into disaster. "Mission Accomplished!"

Time for a Change

[Thumper_SVX]

Sounds to me like it's time for a change. The Chinese have already demonstrated that when something from Western corporations runs amok they are quite willing to force a change on their people. I'm not saying it's right, it's just so.

Now, this problem has actually highlighted a bigger problem; that Windows is Western software controlled by Western interests. Even the ancillary software you need to run Windows effectively (read: anti-virus) is from third parties in the West who obviously wouldn't necessarily have the desires of the Chinese government in mind. Now, at best I can see the Chinese government is going to realize that their reliance on Western anti-virus solutions may be a flawed dependency and they will write their own Chinese-specific AV solution. At worst... this might just highlight to the Chinese government how vulnerable they are to a "cyber attack", either malicious or accidental that could potentially cripple them.

Microsoft might want to start "spinning", and quick. Chinese people are well aware there are better solutions out there than Windows for an operating system. It's only a matter of time before someone in power starts talking about "Red Flag Linux" and how it's openness can help prevent problems exactly like this... then it's all over for Microsoft in that market.

Yes, I realize the pirated Windows market is huge in China as well... but it's still a massive market for Microsoft to lose because of the accidental actions of one of their "trusted third parties".

Re:

[Vicissidude]

Why should Microsoft spin anything? Microsoft gets almost no money from China because piracy is so rampant there. It wouldn't be worth it to Microsoft to yet again lay down more money, except for maybe in the far distant future when China actually takes intellectual property seriously. Their government "crackdowns" on piracy are a joke, especially in a government that is extremely efficient when it actually wants to crack down - they just don't want to.

Woe is Symantec

[rueger]

For years I always installed Symantec products, and before them Central Point [wikipedia.org] and Norton products. [wikipedia.org]

They worked, they worked well, and I could see how they helped me.

Somewhere along the line though they became first large, then irritating, then expensive to keep updated (pay for virus signature updates?), then finally began actually damaging systems.

And somewhere along the line I stopped buying their products, installing their products, and recommending their products.

I've come to view Microsoft the same way. Between excessive DRM, excessive hardware demands, and a generally customer hostile attitude I find it hard to think that I would ever move to a Vista machine. Thus far Windows 2000 still does everything that I need with a lot less hassle.

Someday though I will need to upgrade. The question is what will fill the gap? Linux still isn't there, nor are most Open Source replacements for common Microsoft and Adobe applications.

Is there a company that can step in with a viable replacement for Photoshop or MS Office? Can OpenOffice or GIMP make the final leap to become a reasonable and reliable alternative to those tools? I don't want something that sort of does everything that Photoshop does, I want a professional tool that does everything, and does it equally well.

The door is open, we're just waiting someone to step through.

Re:Woe is Symantec

[whoever57]

And somewhere along the line I stopped buying their products, installing their products, and recommending their products.

I went through the same process, although I now recommend Linux when appropriate. The experience that turned me off Symantec was installing a new version that required activation, but would not activate. Support was hopeless -- asking the same question over and over ("do you have a firewall?"). Why the vendor of a security product should suggest that I turn off my firewall to activate their product, I just don't know -- anyway, I could see the queries in my squid logs.

Since then, I've seen machines crippled by malfunctioning Symantec rootkits. Yes -- I refer to them as rootkits since they have made un-installation impossible in some cases. For example, their uninstall program refuses to run in safe mode.

Re:

[cybereal]

I recently asked the same questions as I decided my system was beginning to age. I wanted to look forward and Windows Vista was not on the... vista.

The only difference here is that I wasn't concerned that my software be free. I don't mind paying a few bucks here and there if it's good quality software.

So after spending several weeks trying to pin down a comfortable desktop linux distribution, and learning no such thing exists yet (close, seriously, but linux will need to get over its anti-cooperative atti

Re:

[jZnat]

By the sounds of it, you haven't used Linux in several years. Try out Ubuntu [ubuntu.com] for the "Just Works(R)(TM)(SM)(C)" experience. Pretty much any complaint people normally have about Linux (since they haven't used it since the 20th century) have been solved for quite some time in distributions like Ubuntu. There are also some other more proprietary-friendly yet still "Just Works(R)(TM)(SM)(C)" like Linspire, Mandriva, etc.

Re:

[Dan Ost]

Linux still isn't there

What, in your opinion, is missing?

Re:

[Buran]

"Is there a company that can step in with a viable replacement for Photoshop or MS Office? Can OpenOffice or GIMP make the final leap to become a reasonable and reliable alternative to those tools? I don't want something that sort of does everything that Photoshop does, I want a professional tool that does everything, and does it equally well.

The door is open, we're just waiting someone to step through."

Apple stepped through that door years ago. You can run every one of those applications on a Macintosh. Ph

Re:

[garett_spencley]

I despise AV products as well, and have never used one on my own PC. I've also never, in my entire 15+ years online, had a virus infect a Windows PC that belonged to me. Not once.

However, despite all of the preaching and common sense talk I've given to my wife she still somehow managed to get her PC infected not too long ago. I installed AVG free and am trying to convince her to switch to Linux. The problem is all of the windows games that won't work in wine or vmware (the sims2 for example - I did try on m

Re:

[Kymermosst]

(1) I despise AV products as well, and have never used one on my own PC.
(2) I've also never, in my entire 15+ years online, had a virus infect a Windows PC that belonged to me.

How could you be so sure of (2), given what you said in (1)? Without a virus scanner, signature checking tool, etc. (all "AV products, and we'll include IDS systems in the category, too), how do you know that you don't have a silent virus that's sending spam to my inbox, or logging keystrokes, or waiting for the right moment in time

Re:

[xtracto]

How could you be so sure of (2), given what you said in (1)? Without a virus scanner, signature checking tool, etc.
Hehehe I was asking exactly the same question.

This surely is the guy who said he migrated to Linux because his windows installation started to get *very* sluggish and a because Microsoft started selling him V1agr4 via IE popups... oh and just after 30 seconds of starting his Windows PC a screen stating that the system was going to be rebooted appeard counting down.... fucking windows it is so

Re:

[garett_spencley]

Not quite.

I've never had problems keeping a Windows install relatively clean. And I've never "migrated" to Linux. I've used both Linux (since around '98/'99) and Windows (since 3.1). I've never been compelled to use one exclusively over the other. Linux provides me with an excellent development platform and Windows provides me with games and "professional" audio recording tools.

The parent does have a valid point. I don't know for certain that I've never been infected, but I've never had problems. There has

Symantec updates have caused problems before.

[3seas]

And so has Microsoft updates....

neither of which had anything to do with piracy issues, but rather doing things to my at work system that broke and even removed other legal software. Adobe is guilty of this too.

What this really means? Well for symantec to effect pirated systems would mean that symantec software was also pirated (which just happens to run on Windows system). Because this is a symantec problem more then it is a windows problem..... I'd imagine users of symantec will better question the risk o

A good way to kill pirates

[gelfling]

Since most pirated installations don't have the install media either, it's a sure fired way to wipe out thousands of fake installs in one fell swoop.

Re:

[vertinox]

Since most pirated installations don't have the install media either, it's a sure fired way to wipe out thousands of fake installs in one fell swoop.

I don't think it will hurt the pirates that much to redownload it.

If they aren't patient enough they can walk down the corner store and pick themselves up a "copy" of Windows XP for $3.

Original install discs?

[jridley]

NOBODY has original install discs anymore. Go buy a PC and see if you get original install discs. You're screwed.
The best you can hope for now is that your machine allowed you to make a set of full system restore discs when you got it. Some of those will allow you to restore individual files, but many of these utilities just re-image your system drive, so you lose everything on there that was installed since the machine was new (at least, anything on the boot partition).

I'd say this is probably MORE destructive to people with legitimate copies, who probably just have such images. The pirates are more likely to have install CDs.

Slashdot idiocy

[mattr]

Look people they're just dumb. No company is intentionally going to want to shoot their foot off in China.

Only problem is

[Maxo-Texas]

the pirated versions of windows I ran (win2k), I had full install disks.
the oem versions (win98, winxp, winxp) I bought at best buy and other places, my only option is to wipe everything and reinstall.

So, I would be screwed on the machines where I am a legitimate paying customer, and hunky dory on the machines where I was pirating.

Re:

[Maxo-Texas]

Nope.

I have three "restore" disks.

That's it. I can put them in and they will take the machine back to base state. On one of my machines I do not even have that. All I have is a hidden sector/partition on the disk that I can "restore" from. Oh joy.

Serves them right...

[Ant P.]

...for running symantec software.

Is it just me...

[RelaxedTension]

Or has there been a distinct drop in spam since this happened? :)

Antiviruses are scam

[ceeam]

First - how many viruses cause comparable damage _ever_?

Second - once I tried testing several known AVs with some fresh dialers and trojans I've had (mostly as email attachments). Not a single one(!) has been detected by AVG, Avast, and Kaspersky.

All they do is detecting irrelevant (in the age of Internet) old "viruses", wasting your resources, and through occasional fuckups like this one doing real damage. Good thing if your AV is at least free one.

Of course,

[digitig]

The recovery disk shipped with most systems will reset the computer to factory state, deleting all user files. Everybody here does have a recent backup, don't they? And you have all checked recently that it works?

And shortly afterward

[Arancaytar]

From: thomson@symantec.com
To: gates@microsoft.com
CC: genuine-advantage@microsoft.com
Subject: Mission Accomplished

Hi Bill,

Done as requested. That will be one billion; pleasure doing business with you.

-John

No sympathy for pirates

[d_jedi]

First off, let me say I have no sympathy whatsoever for anyone who is unable to recover their PC after this snafu because they were running a pirated version of Windows. No sympathy whatsoever.

Now, for all of those who were running a legitimate version of Windows and a legitimate version of Norton who were affected by this problem (probably a small percentage of all systems actually affected..) it really does suck.. and there are two sources of fault, here:

1) MS. Aren't critical OS files supposed to be protected, such that they can't be unwillingly be deleted or modified? Maybe this is part of the reason why MS didn't want AV vendors to have kernel mode access to Vista..

2) Norton (duh). How they could manage to screw this up so badly boggles the mind.

Re:no sympathy

[Zo0ok]

So, you have no sympathy for paying customers because many other people in the same country presumably did not pay? I think there are about 1300 million Chineese - you should allow yourself not to judge them all together.

Re:

[Anonymous Coward]

I think there are about 1300 million Chineese - you should allow yourself not to judge them all together.

We hate every non-American equilly, along with homos and librals! We are gods chosen patriots and the presidunt says so and we must always obey so that it will keep us safe from all the terrists that hate us becuz we are free to be dumb.

Re:

[LaughingCoder]

... you should allow yourself not to judge them all together.

That's right. Around these parts, the only people we are allowed (nay, encouraged) to judge all together are Americans.

Re:no sympathy

[mattmacf]

This ought to teach them a good anti-piracy lesson.

Perhaps they should have pirated something like ClamWin instead?

Re:no sympathy

[Kjella]

That makes about as much sense as saying they should nuke all Windows installations because world-wide there's many more pirated ones. And how is that exactly going to do anything:

1. "Damn, my pirated copy stopped working"
    "You should have bought a real copy"
    "Would that have helped?"
    "No."
2. ???
3. Piracy problem solved

Re:

[billcopc]

The difference is that when you buy a "real copy" of something, you usually also acquire the privilege to call someone and complain when it doesn't work the way it's supposed to.

In the USA, that's process is called a law suit.

Re:

[hackingbear]

law suit? Read the fine print of your EULA. If you can sue so easily over software quality, there will be no software company left in the world.

Re:

[jZnat]

Or we'd have the best software companies ever due to the high requirements for secure and "bug-free" software.

Re:no sympathy

[1u3hr]

The difference is that when you buy a "real copy" of something, you usually also acquire the privilege to call someone and complain when it doesn't work the way it's supposed to. In the USA, that's process is called a law suit.

Oh really? And how many Americans have sued MS, despite billions of dollars in damage for lost time and data due to their software not working as advertised over the last 25 years?

Re:no sympathy

[jalet]

> I've got no sympathy for the Chinese.

Expressing as much stupidity in only 8 words certainly is a world record.

What next ? You've got no sympathy for blacks, blonds, left-handed or bue-eyed people ?

Racism at its best !

Re:

[karmatic]

Let's just shorten it to 4 words (including one contraction), and be done with it.

"I've got no sympathy."

See? Even more accurate than before, without the need for any racial discrimination.

Re:

[Alsee]

What next ? You've got no sympathy for blacks, blonds, left-handed or bue-eyed people ?
Racism at its best !

I'm just curious... what if it's "I've got no sympathy for Freepers"? Would you give me the same reprimand or would you give me kudos? :)

-

Re:

[HiThere]

No, you've got to understand,

All windows users are software pirates. That's why they don't deserve sympathy.

Re:

[lattyware]

Where did I bring nationality into this?

I understand many chinese are poor and all.

That is all.

Re:

[fbjon]

Not only did you bring nationality into this, you (and many others) also brought piracy. Both of those are irrelevant and off-topic, as this affects all users at least equally, if not legitimate users more.

Re:

[sakdoctor]

might inadvertently end up forcing them to use Linux instead

And this would be bad because...?

Re:Be careful what you wish for...

[BakaHoushi]

Because China buying Linux would create a change.
Change creates unknown circumstances.
People often have an innate fear of the unknown.
Fear leads to anger.
Anger leads to hate.
Hate leads to the Darkside.

Therefore, Chinese workers using Linux would cause an influx of Sith who would surely wipe us out. Just follow basic logic.

Re:

[cp.tar]

Actually, it's even worse.

Linux would then be a proved Communist OS.

As such, it would be un-American, un-democratic and therefore obviously a tool of the terrorists.

Therefore, only terrorists use Linux.

And Slashdot, as a site more or less advocating Linux, will be shut down for terrorist activity.

Re:

[ozmanjusri]

Try typing
#rm -f /bin/init
and lets see how far your computer gets?

Still fine.

Probably be different if I was logged in as root, but Linux discourages that.

Re:no sympathy

[beuges]

Exactly! This is precisely why MS wanted to prevent antivirus products (amongst others) from running in kernel mode in vista in the first place. I believe Symantec was one of the most vocal opponents of this decision, even though there is no technical reason for allowing antivirus software into the kernel in the first place, as Trend Micro and others all had vista-compatible solutions that worked without requiring kernel access.

Back when that story was making news, there was a lot of commentry here on /. saying that MS shouldn't be restricting access to the kernel, but this just goes to show that the people who demand access to it often shouldn't have access to it. I know that the problem in the article relates to XPSP2 but the fact remains - Symantec shouldnt be installing kernel mode drivers in the first place.

Re:

[budgenator]

Being Chinese doesn't automagically make you a pirate, but actually living in China means you learn not to ask embarassing questions; so when the asshole at the flea-market is selling Windows XP for a weeks pay, you dont go to the official store-front where it costs 4 months pay just to get the hologram on the case.

Re:

[CowboyBob500]

The last Windows machine I used was my old IBM Thinkpad. It had a restore partition and came with no CD media at all. Guess I'd have been shafted for one, even though my copy was 100% genuine.

Bob

Re:

[HomelessInLaJolla]

I avoided prepackaged computer systems throughout the 90s for precisely that reason. Knowing the state of software copyright laws at the time, if I wasn't going to receive a full backup copy of all the software necessary to restore the system from ground zero then I wasn't interested in the system. That said I did have to make a few long distance phone calls to USR to be given a dial-in BBS number to download updated drivers for one of their 56k modems. Generic drivers only worked to 2400.

I saw it as a t

Re:man I hate it being bundled

[Dunbal]

just another reason symantech is one product that immediately gets deleted from my computer.

      Good lord! And how exactly do you manage THAT? The thing is impossible to delete - at least for the layman...

Re:

[wwahammy]

What does any of this have to do with good design? If a program can be downloaded and run from the internet, it can be a virus. It's part of the risk of having a networked world. When you are using the most common OS, you will need some form of anti-virus software. If OS X or Linux were the most common OS, they would need anti-virus software as well. As long as people have the ability to run unsafe code (and yes that can be done on Linux and OS X), they can get viruses. This is Symantec being incredibly irr

Re:Pity the poor choices of consumers... and pirat

[Dystopian Rebel]

What does any of this have to do with good design?

Are you serious? The whole AV software market is a crutch for the lame design of Monkeysoft.

When you are using the most common OS, you will need some form of anti-virus software.

I see you've been drinking the Redmond Red flavour of Kool-Aid. UNIX is a common OS and it's been around for 37 years and networked for all that time. Why is there no AV software market for UNIX? What are the two most common implementation languages for Monkeysoft viruses? Monkeysoft has been on the Internet since about 1995. How much time have Monkeysoft users lost to viruses? Whose OS is the most 'botted?

Is all this Symantec's fault for not protecting Monkeysoft better?

If you replace "common" with "most vulnerable", your statement makes sense.

If a program can be downloaded and run from the internet, it can be a virus.

Sure... and if it runs with root or root-like privileges, it can do serious damage. Guess which OS lets that happen? To protect yourself, you can install AV software and dedicate one (or both) of your dual CPU cores to constantly scanning every file that is accessed so you can be "safe". A fine value proposition for your computer investment.

This is Symantec being incredibly irresponsible. Failing to find something like this in pre-update testing (or the failure to test updates) is insane and they should be required to pay for repairs.

I agree that Symantec made a serious error in deploying an updated defence for the weak OS that they make money defending. But I bet they'll pay nothing, or at least as much to pirates as they do to licensed owners.

Re:

[wwahammy]

Read my post again. As I explained, any OS that allows you to run programs as root allows people to run programs that can damage their OS or files. Even if you run something as a standard user you still risk any files that your user account has available to it. Anti-virus isn't designed to protect the OS, its designed to protect people from themselves.

Again as long as users can execute unsafe code, you are guaranteed that some users will. People will download executable files and run them no matter the syst

Re:

[Dystopian Rebel]

I've already agreed that Symantec blundered. Your point is understood.

Anti-virus software is a Monkeysoft-based market.

You say it's because Monkeysoft is popular. But you admit that Redmond has made a seriously bad design decision. If not for the Internet, Monkeysoft wouldn't have these costly episodes. You called its permissiveness "moronic", I didn't. But we agree there too.

Anti-virus isn't designed to protect the OS, its designed to protect people from themselves.

Hmmm. Given that the OS was damaged in th

Re:

[Dystopian Rebel]

Connect two users by whatever protocol and you have a network. It doesn't have to be a "modern" one.

Re:

[pe1chl]

In related news: two weeks ago, Norman (not to be confused with Norton) released an update to its antivirus package, which got automatically installed by the Internet update service for signatures.
This update caused many PCs and servers to stop dead, especially in company network environments.
Until today, the only thing the Norman company has been able to come up with is a series of patches that are to be manually installed, and a recommendation to turn off the on-access scanner.

Re:

[Feyr]

no, a quadraplegic wouldnt protect you against anything.

a better analogy would be

Buying a Symantec product to protect your Windows PC is like hiring a suicide bomber to be your bodyguard.

it protects you, and blows you and everyone around you to pieces in the same run!

Re:

[flyingfsck]

Uh, you are a Sloshdatter and you don't use Clamwin???

Re:

[jZnat]

I like using ClamAV on mail servers, but for general antivirus, it doesn't do anything automatic very well, so it's better for diagnostic when fixing some Windows boxen.

Re:

[evilviper]

I like using ClamAV on mail servers, but for general antivirus, it doesn't do anything automatic very well, so it's better for diagnostic when fixing some Windows boxen.

ClamWin doesn't do on-access scanning, but that's really not the problem... There are 3rd party add-ons like WinPooch that can add that, but it's overkill.

Scanning files when they are downloaded, along with a weekly full-scan, would be more than enough protection for just about everybody. Unfortunately, the problem is ClamWin and ClamAV/wi

Re:

[grolschie]

I'm a $cientologi$t and it wouldn't bother me either way.
Suprise! :)

Perhaps I am slow, but you have to be kidding [xenu.net], right?