August 2015

Most secure Windows yet – thanks, Israel!

http://www.businessinsider.com/expert-builds-secure-version-of-windows-2015-8?r=UK&IR=T

The security of memory randomization is nothing new. However, elements of this system were added to standard varieties of Windows since Vista, so it’s not an unknown technique. I’d most certainly run Israeli Windows, given half a chance, but I see a handful of problems. First, our friend Backwards Compatibility. Want your older versions of your programs to work? They may not fare well with randomized memory. Even modern applications aren’t guaranteed to work properly with randomized memory. Next, memory randomization is all well and good if you’re sure you’ve got access to the bare metal, something that Blue Pill and other virtualization-based rootkits make challenging to confirm. We also need to discuss the concept of being “secure” in this context. Most people have a “do what I mean” mentality when it comes to using a computer, which is perfectly reasonable. However, computers themselves run on a “do what I say” ideology. Memory randomization isn’t going to help prevent ad-serving software that was “opted in by the user, pinky promise…”, which most people tend not to want running on their computers.

Finally, there’s the question of what Microsoft’s response to this is. In software development circles, “randomize your memory” is somewhat similar to “use a 15-character password that uses letters, numbers, capitalization, and symbols, and use a different one for every website, and don’t write them anywhere, just remember them all.” A great idea for people who don’t have annoying things like “deadlines” and “imperfect memory” and “actual work to do”. Microsoft is clearly aware that it is a more secure method of writing software, so the fact that this guy was able to do it is not like someone at Microsoft said, “hark! nobody has ever thought of this before!!”. On the contrary, Microsoft’s own software development environment has had this since 2008. If this guy made it work in such a way that doesn’t cause compatibility or stability issues, then he may well have something. The more concerning thing, especially for Microsoft, is that either he accomplished this without the source code to Windows, or he, in fact, has the source code. Either way, Business Insider is accurate in that Microsoft is very likely to have their eye on him.

Either way, if this ever gets released, and it’s actually compatible with the software I use, I’m most certainly in favor of using this over the usual stuff that comes out of Redmond.

 

Flashbacks: the value of media

I was driving for work, and a commercial for a furniture store came on the radio. Their music bed was a song I used frequently during my time editing wedding videos. It instantly brought me back to that time in my life; I started recalling things I haven’t thought about in years.

This is the value of media.

…Also, I think there is a furniture sale somewhere.

A good start

I’ve been meaning to write this post for a long time. I’ve also been meaning to get this blog up and running for a long time – I registered this domain back in April. I actually learned quite a bit in the process – despite my use of WordPress, Ametys was my initially planned platform…and then I learned what a nightmare it is to try to get shared hosting for a Tomcat instance at a reasonable price, and that the platform’s development team didn’t seem to think that “making it easy to remove the demo pages” was something worth working on. Even that was something I’d sort out if the hosting companies who offered Tomcat hosting didn’t spend most of their time convincing me that they both went to the Comcast School of Customer Service(tm).  Avoid Arvixe and HostISO like Yankees apparel at a Red Sox game.

There are a number of things which brought me here. My ever increasing disdain for Facebook and its “privacy policy” makes it a less desirable place to express my ideas. Even setting principles aside, Facebook’s “notes” functionality is marginalized at best (they seldom land in the feeds of others), and don’t allow me to share experiences with the greater internet. My posts won’t get lost amongst a sea of mindlessly reposted political half-truths and click-bait headlines. I look forward to further customizing WordPress as I learn to use it, something else Facebook doesn’t offer. As I write this, I wonder about you, my audience, my reader. Am I writing for your benefit, or mine? Is ‘journaling’, once a private activity, now something that implies the need for an audience? Maybe those are questions I will answer over time…or possibly, you’ll help answer.

To wrap up this first post, I’ll make a few blanket statements:

  1. Unless otherwise expressed (or implied, e.g. a post largely comprised of a link or quote from someone else), my content is my own. Feel free to link, feel free to quote, but do not feel free to plagiarize.
  2. What’s written here is a matter of personal opinion. It does not reflect on anyone else, including my employer, business associates, or any organization with whom I’m affiliated.
  3. In case anyone besides me cares, I have no intention at this time to run ads on this blog. If you see an ad on my page, run a virus scan, because it’s not coming from me. Similarly, I do not run any tracking software of any kind on this blog, aside from raw page views. No analytics, no trackers, no profiling, nothing. If you know me personally, you know that I consider such things a cancer, and would never inflict such things on my readers.
  4. If you plan to comment, understand that:
    1. I will moderate you.
    2. I reserve the right to remove comments at any time, for any reason.
    3. I’m okay with disagreements, but I am NOT okay with incivility. Usenet and 4chan are still perfectly good places for that kind of behavior.
…And with that, I wish you a wonderful evening.
x  Powerful Protection for WordPress, from Shield Security
This Site Is Protected By
Shield Security