Columnist: Open Source the Leaked Code

Grok Headline matches for Columnist: Open Source the Leaked Code

Microsoft Source Code Leaked Over Net

Microsoft Source Code Leaked Over Net 02/13/2004 12:58 AM
AP via Newsday Feb 13 2004 5:11AM GMT

Microsoft source code leaked out

Microsoft source code leaked out 02/13/2004 12:48 AM
The software giant says part-blueprints of its Windows operating system have been leaked on the internet.

Microsoft source code leaked

Microsoft source code leaked 02/14/2004 03:49 AM
NDTV Feb 14 2004 8:00AM GMT

MS Source Code Illegally Leaked

MS Source Code Illegally Leaked 02/13/2004 01:24 PM

Microsoft came out and admitted yesterday that portions of the source code for Windows NT and Windows 2000 had been made available on the Internet.

They're not sure just yet who is at fault — source code is made available to third-party vendors for development purposes, but those developers are sworn to secrecy, but somebody hosed the program. MS is not yet sure just how serious the breach is.

In an article on The Register, John Lettice comments that...

The impact of the leak is however massively more important for Microsoft than it is for the rest of the world, as it effectively blows the company's 'security via obscurity' approach to smithereens. Over the past year or so it has, with much pomp and ceremony, unveiled its shared source programme as a counter to open source, while in the same period it has repeatedly stressed that it cannot disclose some aspects of its code to rivals for security reasons. If they could see it, it would leak, and then evil terrorists would be able to break into Windows more easily. Microsoft, incidentally, currently has the shared source web site as a 'related link' on the leak statement page. Are you entirely sure about this relationship, dahlinks?

Click here to comment on this entry

Microsoft Source Code Leaked Over Net
(AP)

Microsoft Source Code Leaked Over Net
(AP) 02/12/2004 11:29 PM
AP - Microsoft Corp. said late Thursday that portions of its Windows source code — the tightly guarded blueprint of its dominant computer operating system — had been leaked over the Internet.

Advice to Microsoft: Open Source the
Leaked Source

Advice to Microsoft: Open Source the
Leaked Source 02/13/2004 02:37 PM
What should Microsoft do, now that a chunk of its NT 4.0 and Windows 2000 source code have leaked onto the Web? Our guest columnist says Microsoft should make lemonade out of lemons and just open source the whole enchilada.

Microsoft focuses on leaked source code

Microsoft focuses on leaked source code 02/18/2004 08:17 PM
Boston Globe Feb 19 2004 0:47AM GMT

Microsoft source code leaked over
Internet

Microsoft source code leaked over
Internet 02/12/2004 10:18 PM
San Francisco Chronicle Feb 13 2004 2:52AM GMT

Microsoft Focuses on Leaked Source Code
(AP)

Microsoft Focuses on Leaked Source Code
(AP) 02/18/2004 06:45 PM
AP - Microsoft Corp. is sending letters to people who are downloading or sharing portions of its Windows source code, in an effort to stop the illegally obtained operating system blueprints from spreading further over the Internet.

Microsoft source code leaked on the
Internet

Microsoft source code leaked on the
Internet 02/13/2004 04:47 AM
Toronto Star Online Feb 13 2004 8:39AM GMT

Microsoft source code is leaked on
Internet

Microsoft source code is leaked on
Internet 02/13/2004 04:47 AM
AP via Sunspot Feb 13 2004 8:34AM GMT

Microsoft Source Code Leaked Over
Internet (AP)

Microsoft Source Code Leaked Over
Internet (AP) 02/12/2004 10:07 PM
AP - Microsoft Corp. said late Thursday that portions of its Windows source code — the tightly guarded blueprints of its dominant operating system — had been leaked over the Internet.

Windows source code leaked, says
Microsoft

Windows source code leaked, says
Microsoft 02/13/2004 02:03 AM
CBC Feb 13 2004 6:37AM GMT

Windows 2000 source code leaked?

Windows 2000 source code leaked? 02/12/2004 08:53 PM
ZDNet Feb 13 2004 0:37AM GMT

Search on for source of leaked Windows
code

Search on for source of leaked Windows
code 02/13/2004 06:44 PM
Investigators are looking for clues as to how source code for Microsoft's Windows OS made its way onto the Net. An error report found in the code includes information related to a Microsoft partner.

Microsoft Windows 2000 source code
leaked

Microsoft Windows 2000 source code
leaked 02/13/2004 02:30 PM
Marc Bejarano (Feb 12 2004)

Parts of Microsoft source code for
windows leaked

Parts of Microsoft source code for
windows leaked 02/14/2004 02:35 AM
Hi Pakistan Feb 14 2004 6:42AM GMT

Profanity hidden in leaked Microsoft
source code

Profanity hidden in leaked Microsoft
source code 02/13/2004 10:30 PM
CNN Feb 14 2004 2:52AM GMT

Parts of the source code for Windows are
leaked onto Internet

Parts of the source code for Windows are
leaked onto Internet 02/13/2004 11:58 AM
IHT Feb 13 2004 3:51PM GMT

Microsoft Says Parts of Source Code Were
Leaked (washingtonpost.com)

Microsoft Says Parts of Source Code Were
Leaked (washingtonpost.com) 02/13/2004 12:47 AM
washingtonpost.com - Microsoft Corp. last night confirmed that portions of the source code for two versions of its Windows operating system have leaked onto the Internet, a security breach that could give hackers important intelligence about how to exploit flaws in software run by many of the world's computers.

Microsoft Confirms Source Code Leaked
Over Internet

Microsoft Confirms Source Code Leaked
Over Internet 02/12/2004 11:24 PM
Microsoft Corp. confirmed late Thursday that portions of its Windows source code—the tightly guarded blueprints of its dominant operating system—had been leaked over the Internet.

BBC NEWS | Technology | Q&A: Microsoft
source code leaked

BBC NEWS | Technology | Q&A: Microsoft
source code leaked 02/14/2004 04:56 AM
the Windows source code is littered with profanity .. BBC: Microsoft source code leaked .. More

news.bbc.co.uk/2/hi/technology/3485545.stm
track this site | 5 links

the Windows 2000 and NT source code has
been leaked on the internet

the Windows 2000 and NT source code has
been leaked on the internet 02/13/2004 07:16 AM
this page on neowin.net .. esta nota de NeoWin .. Neowin .. looked

neowin.net/comments.php?id=17509&category=main
track this site | 8 links

Why Microsoft Should Open Source the
Leaked Source

Why Microsoft Should Open Source the
Leaked Source 02/13/2004 02:37 PM
ANALYSIS: Redmond would be smart to make lemonade out of lemons by releasing the rest of the Windows code and letting developers have at it.

Microsoft seeks to stop spread of leaked
source code

Microsoft seeks to stop spread of leaked
source code 02/19/2004 02:37 AM
thestar.com.my Feb 19 2004 6:43AM GMT

Microsoft issues warning to downloaders
of leaked source code

Microsoft issues warning to downloaders
of leaked source code 02/18/2004 06:53 PM
Sydney Morning Herald Feb 18 2004 11:17PM GMT

Microsoft grapples with company's jewel
source code leaked online

Microsoft grapples with company's jewel
source code leaked online 02/13/2004 03:23 AM
San Francisco Chronicle Feb 13 2004 8:07AM GMT

Parts of Microsoft source code leaked
over Internet, software giant says

Parts of Microsoft source code leaked
over Internet, software giant says 02/12/2004 11:37 PM
Financial Post Feb 13 2004 4:09AM GMT

Microsoft releases source code to open
source community

Microsoft releases source code to open
source community 05/05/2004 04:06 AM
About a month ago, Microsoft posted some of its source code to SourceForge. SourceForge is a, if not the, major distribution point for open source software. Microsoft's code was put there under the terms of the Common Public License, which allows modification, addition, redistribution - in short, it allows most of the rights and privileges that we associate with open source software.

Windows NT 4 & Windows 2000 Source Code
leaked

Windows NT 4 & Windows 2000 Source Code
leaked 02/12/2004 04:57 PM

Get your hands on some open source SSL
VPN code

Get your hands on some open source SSL
VPN code 03/24/2005 05:13 AM
There is a lot of open source code out there, including one for SSL VPNs. Called SSL-Explorer, it is available free from SourceForge and runs on Microsoft and Linux platforms.

Speech Code From I.B.M. to Become Open
Source

Speech Code From I.B.M. to Become Open
Source 09/12/2004 09:26 PM
I.B.M. plans to announce that it will contribute some of its speech-recognition software to two open-source software groups.

Speech code from IBM to become open
source

Speech code from IBM to become open
source 09/12/2004 11:59 PM
CNET News.com Sep 13 2004 3:22AM GMT

Open Source Code at Google

Open Source Code at Google 03/27/2005 02:33 AM
Seach Engine Showdown Mar 27 2005 6:05AM GMT

eBay: Better Code For Open Source

eBay: Better Code For Open Source 06/24/2005 10:03 PM
Online marketplace aims to expand ecosystem and bring e-commerce to new devices with the help of its developers.

IBM offers Cloudscape as open source
code

IBM offers Cloudscape as open source
code 08/03/2004 11:01 AM
IBM Corp. has found a new home for the Cloudscape database software it picked up in 2001 through its acquisition of Informix Corp. The company plans to announce Tuesday that it will give Cloudscape to the Apache Software Foundation, which will oversee Cloudscape as an open-source project.

MySQL & Open Source Code Quality

MySQL & Open Source Code Quality 12/23/2003 10:37 AM

Code Reading: The Open Source
Perspective

Code Reading: The Open Source
Perspective 03/14/2005 05:03 PM

Users laud open source VPN code

Users laud open source VPN code 04/14/2005 10:07 PM

Grok Description matches for Columnist: Open Source the Leaked Code
GrokA matches for Columnist: Open Source the Leaked Code

Where Do Dummy Email Addresses Go?

Where Do Dummy Email Addresses Go? 07/11/2004 10:58 AM

Catchall Email Addresses

Catchall Email Addresses 08/17/2004 03:18 PM

Is there a point to "catchall" email addresses anymore? You know, those addresses where misaddessed email to your domain gets routed? Let me explain —

I was having some email trouble this morning. POP3 response from the server was sporadic, and when I got a command line on the box, things were very slow. I poked around a bit and found the problem.

I had not been checking and clearing the catchall account. It had been accumulating mail for about three weeks. It contained — are you sitting down? — 582,384 emails. Yep, just over half a million. I had to delete the entire account and bounce the Qmail process to get things running smoothly again. (The mere fact that it was running at all is a credit to RedHat 7.2 — a 1.1 GHz Athlon only goes so far...)

If 90% of email is spam (as it is in our office), then 99.9999999% of the email in a catchall account is going to be spam because 99% of inbound spam has an invalid address. This was proven to me when I created a script to empty the account once per hour. Here was the log file 15 minutes after I recreated the account:

8/17/2004 12:12:54 PM: Start Processing
8/17/2004 12:13:37 PM: 276 message(s) found
8/17/2004 12:13:37 PM: Deleting...
8/17/2004 12:13:38 PM: 0 message(s) found
8/17/2004 12:13:38 PM: End Processing

Almost 300 messages in 15 minutes. One hour later:

8/17/2004 1:11:00 PM: Start Processing
8/17/2004 1:13:29 PM: 1030 message(s) found
8/17/2004 1:13:29 PM: Deleting...
8/17/2004 1:13:30 PM: 0 message(s) found
8/17/2004 1:13:30 PM: End Processing

That's right — a thousand messages an hour are coming in misaddressed. That's one every four seconds.

Now, of those thousand, how many are legitimately misaddressed emails? I'd say a fraction — I think we probably get one legitimate misaddressed email every couple days, so one of every 75,000 or so messages is misaddressed. I don't care how good your spam filter is, you just can't process that much volume with any reasonably quality.

Why not just bounce them all, you say? Because we get bounces from our bounces. Some people have their mail servers configured to bounce Message Failure messages. So a spam comes in, can't find a mailbox, and bounces to the Reply-To on the message...which is — not surprisingly — fake, so about 10% of the time the message bounces back to the server administrator email account on our box. So, once again we have a bunch of bad emails accumulating somewhere.

I'd like to bounce them so that a legitimate sender at least knows that they misaddressed the email, however, I'd have to be able to change the Reply-To on the bounce so that the bounced bounces go somewhere we don't care about. Sadly, the server management software we're working with doesn't allow that.

I've abandoned the idea of a catchall account. There's just no way we can manage it effectively. Too bad.

I hate spammers.

Click here to comment on this entry

HTML entities for email addresses: don't
bother

HTML entities for email addresses: don't
bother 12/02/2003 12:41 AM

I've suspected this for a long time, and now here's the empirical evidence: Popular Spam Protection Technique Doesn't Work. If you're relying on HTML entities to protect your email address from spam harvesters - for example username@example.com - your email address may as well be in plain text. Chip Rosenthal downloaded a tool called "Web Data Extractor v4.0" and tried it on some test data to prove once and for all that the technique doesn't work.

My advice is to use your common sense when analysing a potential spam protection technique. If you were a spammer, would you be able to outwit the method? Spammers aren't always very smart, but the people who write spamming tools (and get paid big bucks for them) are. Also remember to think about the payoff - unencoding a bunch of entities is a cheap operation. Embedding a Javascript interpreter to decipher email addresses that are glued together using Javascript at the last possible moment is a lot harder and could slow down a tool, so it may not be worth the effort.

I'm still pretty confident in my own anti-spam harvester technique of hiding my email address behind a POST form, but even that could eventually be outsmarted by a really dedicated harvesting tool.

AOL Employee Arrested For Selling Email
Addresses To Spammers

AOL Employee Arrested For Selling Email
Addresses To Spammers 06/23/2004 07:00 PM
People have always claimed that AOL often gave out their email addresses to spammers, though many have questioned whether or not that was true. One that that's clear is they make it way too easy for employees of the company to access customer information. A few months ago we wrote about an AOL customer service rep who used the info she had access to in order to insinuate herself into the lives of celebrities who used AOL. The latest is that a 24-year-old engineer at the company has been arrested for selling a database of 92 million AOL user email addresses along with their phone numbers and zip codes. He sold this database to some spammers for about $50,000. How long until a class action suit is filed by AOL customers because the company didn't protect their info?

Send Mail to each of a user's unique
email addresses

Send Mail to each of a user's unique
email addresses 05/25/2004 10:14 AM
I use Address Book group a lot when sending out emails. One thing that I found frustrating was that I could not send to multiple email addresses for a single user when using groups, so that they would receive the email at bo...

Schwarzenegger signs bill requiring
email addresses for filesharing

Schwarzenegger signs bill requiring
email addresses for filesharing 09/23/2004 11:15 AM
Xeni Jardin: California governor Arnold Schwarzenneger -- a man who found considerable fame and fortune in Hollywood -- signed an MPAA-backed bill into law Tuesday that requires anyone sharing a file that goes to more than 10 people outside their immediate family to provide a valid email address and title of the work.

California file sharers who trade songs or films without providing an e- mail address will be guilty of a misdemeanor, under the first-in-the-nation measure that could make it easier for law enforcement to track down people who illegally download copyrighted material. The bill is the latest attempt by film and music trade associations to combat the hard-to-police use of file-sharing software.

The signing was hailed by the bill's sponsor, the Motion Picture Association of America, whose president, Dan Glickman, noted in a statement that Schwarzenegger had "a unique understanding of the powerful impact of piracy.'' The governor remains a member of the Screen Actors Guild, which supported the bill.

Link to SF Chronicle story, link to SB 1506 bill text. (thanks Michael Parenti, Matthew Mills, Andy, and others)

MyDoom uses search engines to find email
addresses for propagation

MyDoom uses search engines to find email
addresses for propagation 07/26/2004 01:52 PM
The new MyDoom variant scans your HDD for domains (e.g. craphound.com), then hammers on search engines looking for valid email addresses at that domain (e.g., "GET /default.asp?lpv=1&loc=searchhp&tab=web&query=e-mail+examp le.com"). The traffic got so bad that it actually took Google down for a while. Link (via /.)

US Treasury to Post Previously Private
Email Addresses Online

US Treasury to Post Previously Private
Email Addresses Online 01/09/2004 09:50 PM

Mailqube to Support Sender ID. Leader in
enterprise email security supports new
email sender authentication standard in
its Mailqube 2003 secure email gateway

Mailqube to Support Sender ID. Leader in
enterprise email security supports new
email sender authentication standard in
its Mailqube 2003 secure email gateway 09/05/2004 02:37 AM
Atlantic Sky has announced its support to the Sender ID standard for email sender authentication. Atlantic Sky's support will make Sender ID available to global enterprises through its Mailqube 2003 E-mail gateway. [PRWEB Sep 5, 2004]

trimMail's Email Battles: CERT Reveals
Email, AntiVirus Software Bugs

trimMail's Email Battles: CERT Reveals
Email, AntiVirus Software Bugs 12/28/2004 11:37 AM
CERT Reveals Email, AntiVirus Software Bugs .. Permanent link to this item

emailbattles.com/archive/battles/security_aajdafbdca_eg
track this site | 2 links

Free Email Notifier for POP3, IMAP4 and
Gmail Email Accounts

Free Email Notifier for POP3, IMAP4 and
Gmail Email Accounts 06/17/2005 03:17 PM
Chrysanth Software has released Chrysanth Email Notifier v2.3, a free POP3, IMAP4 and Gmail notification software that helps you to get notified of every incoming email and even spams in your mail boxes while they are still sitting on the remote email servers. [PRWEB Jun 15, 2005]

Executive Email: Preserving and
Enhancing the Benefits of Email — A
Progress Report

Executive Email: Preserving and
Enhancing the Benefits of Email — A
Progress Report 06/28/2004 03:12 PM
In the latest in an occasional series of e-mails to Microsoft customers, Microsoft's chairman provides an update on the progress of efforts to curb the epidemic of junk e-mail.

Email Hosting Service by Runbox Provides
Businesses with Premium Email

Email Hosting Service by Runbox Provides
Businesses with Premium Email 06/05/2005 11:37 PM
Offer premium email to your business with Runbox Email Hosting. [PRWEB Jun 3, 2005]

Aliencamel.com - The First Commercial
Email Service to Offer Unlimited Storage
for Personal Email, Finest in its Class
with More Features than Gmail, Yahoo!
and Hotmail

Aliencamel.com - The First Commercial
Email Service to Offer Unlimited Storage
for Personal Email, Finest in its Class
with More Features than Gmail, Yahoo!
and Hotmail 08/17/2004 02:00 AM
Aliencamel.com announces that the email-storage-space race is over. This race was started by Google's Gmail service offering 1GB of storage. AlienCamel has gone the final step and is now offering its users unlimited storage. By removing limits on space, users now have a simple, low-cost service which will keep their emails safe, secure and backed up forever. AlienCamel has implemented the most sophisticated anti-spam filtering and email-virus-blocking technology over the last 18 months. Now, AlienCamel is the first independent commercial email service in the world to offer "unlimited storage for personal email". [PRWEB Aug 17, 2004]

Google Email? Would You Trade Off Ads
For Better Email Search?

Google Email? Would You Trade Off Ads
For Better Email Search? 01/17/2004 10:47 PM
The big discussion that I've been having with a few different people over the last few weeks is whether or not Google would get into the email business - and, if so, how? To me, it seems like an obvious extension of their technology and business model - but not everyone agrees. However, the rumors are getting louder and louder that Google is developing an email product. The question is whether they'll be offering an entire "Google Email" system, or if they're just working on a version of their AdSense offering that would work within email (generating contextual ads based on the content of the email). Some people I've spoken to about it thought that people would freak out if they thought Google was reading their email to do its contextualization magic - which could be true. The question is how many people will freak out - and will plenty of others be more than willing to welcome the Google contextualization engine into their inbox, in exchange for the ability to actually "Google your email"? Many people always seem to want the ability to better search through their own email. I could see a certain willingness from many people to let Google place ads in their email in exchange for the ability to better search through all the email. If Google could figure out a good anti-spam solution, as well, it could be a real hit.

Owners of ActivSoftware and the Email
Application Server, XM Mail Server,
Offer $10,000 Software Challenge to the
Email Industry

Owners of ActivSoftware and the Email
Application Server, XM Mail Server,
Offer $10,000 Software Challenge to the
Email Industry 06/22/2005 01:51 AM
For years, SMTP server software was used to send and receive e-mail communications. These older servers, usually freeware, have created many delivery challenges. Most of the time, marketers, CEO’s and even CMO’s are completely unaware of these issues. The owners of ActivSoftware, in central New York, introduced a worldwide challenge to prove their software system (http://www.activsoftware.com/xms) is one of a kind in the email industry. [PRWEB Jun 19, 2005]

Addresses for GNUstep 0.4.2

Addresses for GNUstep 0.4.2 10/29/2003 12:31 PM
A GNUstep replacement for Apple's Address Book.

IIS binds to all IP addresses

IIS binds to all IP addresses 07/22/2004 03:01 AM

In a comment on a late post yesterday, Scott Fraer points to a Microsoft article that explains: "When you start Internet Information Services (IIS) 6.0 on Microsoft Windows Server 2003, IIS binds to all IP addresses on the server, not just the IP addresses that are assigned to Web sites."

This, clearly, is the problem I'm encountering.

Now I'm running Windows 2000, and IIS 5.0, but the article says, midway down the page, that it has the same problem. A cure is suggested, but I have no idea how to implement.

So if you can illuminate, how do I get Win2K to let me use all the IP addresses on my machine? Any help would be much appreciated.

Addresses for GNUstep 0.4.6

Addresses for GNUstep 0.4.6 07/29/2004 08:24 AM
A GNUstep replacement for Apple's Address Book.

IBM Addresses Vertical Needs

IBM Addresses Vertical Needs 02/12/2004 04:51 PM
IBM is following through on plans announced late last year to gear its integration software offerings for specific vertical industries.

Addresses for GNUstep 0.4.4

Addresses for GNUstep 0.4.4 11/06/2003 02:46 PM
A GNUstep replacement for Apple's Address Book.

Web addresses get nip and tuck--and spam

Web addresses get nip and tuck--and spam 12/23/2003 09:31 AM
A gaggle of Web sites have set upon the idea of shortening cumbersome URLs. But the free service also includes spam.

Gmail Addresses For Sale

Gmail Addresses For Sale 05/02/2004 08:56 PM

Internet addresses surge to 63m

Internet addresses surge to 63m 06/08/2004 06:58 PM
news.com.au Jun 8 2004 10:16PM GMT

IPv6 addresses its problems

IPv6 addresses its problems 03/29/2005 06:49 AM
ZDNet Mar 29 2005 11:00AM GMT

Disposable E-mail Addresses

Disposable E-mail Addresses 06/17/2004 04:29 PM
Business Knowledge Source Jun 17 2004 7:57PM GMT

Web addresses get shorter — and spam

Web addresses get shorter — and spam 12/23/2003 07:59 PM
All the URLs that Google has indexed will only take up seven characters, so it's possible that they will never get too long," he said. ...

Government will police its own net
addresses

Government will police its own net
addresses 04/12/2005 07:48 AM
The New Zealand Herald Apr 12 2005 12:22PM GMT

A Politician Looking for Funds? Here Are
Two Useful Addresses

A Politician Looking for Funds? Here Are
Two Useful Addresses 06/23/2004 01:18 AM
More political donations have come from a high-rise in Los Angeles and a residential building in New York City than from any others in the United States.

Apple addresses iLife shortcomings

Apple addresses iLife shortcomings 02/16/2004 02:27 AM
Boston Globe Feb 16 2004 6:03AM GMT

Columnist: Open Source the Leaked Code

The following phrases have been identified by the grok system as matching this entry: 809442004/05 email addresses