Feeds

January's Windows 7 hole still open

Sort it out, Redmond

Choosing a cloud hosting partner with confidence

A security hole in Windows 7, highlighted by a blogger back in January, is still wide open and Microsoft is showing very little interest in closing it.

Of course the software is only in beta right now, but the full release is due in August.

An Aussie blogger spotted the problem with User Account Control back in January. John Leyden's take on it is here.

UAC is meant to guard against malware - it warns users when applications try to make changes to the computer. But 21-year old Long Zheng created proof of concept code which can remotely switch UAC off without informing the user.

He was told at the time by Microsoft that the bug was not a bug, but was instead there by design. It will therefore not be fixed.

Long Zheng has now posted a video on his popular blog istartedsomething.com to try and explain why he feels this is a serious security hole which needs fixing before the August launch.

He said he was releasing the code because Microsoft has known about this for over a year and: "If Microsoft is right in saying this has no security implications, then this should mean nothing. If they are not then, well, at least there is still time to do something about it. A month to be exact."

The blog post and video are here. ®

Beginner's guide to SSL certificates

Whitepapers

Forging a new future with identity relationship management
Learn about ForgeRock's next generation IRM platform and how it is designed to empower CEOS's and enterprises to engage with consumers.
Win a year’s supply of chocolate
There is no techie angle to this competition so we're not going to pretend there is, but everyone loves chocolate so who cares.
Why cloud backup?
Combining the latest advancements in disk-based backup with secure, integrated, cloud technologies offer organizations fast and assured recovery of their critical enterprise data.
High Performance for All
While HPC is not new, it has traditionally been seen as a specialist area – is it now geared up to meet more mainstream requirements?
Saudi Petroleum chooses Tegile storage solution
A storage solution that addresses company growth and performance for business-critical applications of caseware archive and search along with other key operational systems.