digg

Facebook Connect Join Digg About

How Microsoft fights off 100,000 attacks per month...

computerworld.com — Microsoft may be the biggest target out there for hackers. Here's what the company does to protect itself from the continuous onslaught of probes and intrusion attempts.

Who dugg this? Made popular Dec 8, 2006

Add a friend

submitted by

Gregd Dec 8, 2006

1029 diggs
digg

88 Comments

CBTF, on 10/12/2007, -10/+80Unfortunately this will be overrun with idiots making sarcastic remarks like "MS PROTECTS THEMSELVES? LOL MAC."

MS is a huge target, it's obvious that many flaws are going to be found in their software. Im sure if Mac OS had the popularity of windows you'd see the same thing.
Ninjab3ar, on 10/12/2007, -18/+71Sorry, that comment was just too long. Modded down.
thePoopSmith, on 10/12/2007, -13/+38Yes, but no one else...
commiecat, on 10/12/2007, -5/+28Then the question would be, "Why on earth did they paint it red?"
Phocion55, on 10/12/2007, -8/+30Go to "Add/Remove Programs" and check the list of 100,000 security patches they have issued to your system.

I GUESS you can count that as trying.....
BrainInAJar, on 10/12/2007, -9/+27Linux is just as full of security holes as windows.

It has nothing to do with "MS can't make a secure product", and everything to do with "rapid development leads to sloppy programming".

Both windows & linux suffer from rush job hacks causing security vulns. go take a look at the month of kernel bugs. (Macs do too, sorry guys)
TonyCubed, on 10/12/2007, -1/+19This is how they really attacked the problem. They simply rerouted the hackers to www.google.com :P
liquilife, on 10/12/2007, -6/+23Yes, very true. But watch out for some replies quoting stats from macworld.com or some such about how secure the Mac really is.
dcoolidge, on 10/12/2007, -3/+17Good information.
loof, on 10/12/2007, -10/+23put it in a blog and submit it as a story if you think it's that important. Or just link to it in your comment there's no reason to spam a comment that long at everyone.
Phocion55, on 10/12/2007, -2/+14"No, you can exploit it with a USB pen drive"

If someone is exploiting my Linux box with a USB drive, I'd probably be more concerned with how he got physical access to it.
FreakTrap, on 10/12/2007, -5/+15@zbilly

Actually, it made me 'lol'; even so, I then proceeded to bury him.
nofxjunkee, on 10/12/2007, -2/+12"Linux is just as full of security holes as windows."

Sorry but until some party can audit the source of both kernels then this is pure speculation. All we have to go on is their track records.

and no jsd88cc, they don't run Linux... IPsec isn't tied to any TCP/IP implementation.
Kazrog, on 10/12/2007, -1/+7... Microsoft uses Linux servers for mission critical applications.
addakorn, on 10/12/2007, -0/+6@FreakTrap Perfection would be 'cannot ever be cracked'
Phocion55, on 10/12/2007, -2/+8You said "the Linux kernel".

That's not the Linux kernel. Those are various Linux applications.

You just compared a list of Windows XP vulnerabilities against a list of vulnerabilities for hundreds of Linux applications and libraries combined. INCREDIBLY misleading.

So....that being established.....FUD.
lustre, on 10/12/2007, -3/+9CA's eTrust.
BrainInAJar, on 10/12/2007, -7/+13"At least I can't exploit the kernel via a web browser."

No, you can exploit it with a USB pen drive (without even any files on it) without having a login on the machine, for example.

What's your point?

If you want to use linux, fine... there are reasons for using linux rather than windows (good ones too, imo) but "security" isn't one of them
chubbymidget, on 10/12/2007, -1/+7My bet:
"Making your Linux distribution secure"
http://digg.com/linux_unix/Making_your_Linux_distribution_secure
phatfish, on 10/12/2007, -0/+5That didn't tell me anything about how they "Fight off 100,000 attacks per month". There was a lot of marketing speak about their corporate VPN though...
bekifft, on 10/12/2007, -1/+6They mention Microsoft's preferred antivirus...I don't suppose anyone knows which one that is, exactly?
artanis, on 10/12/2007, -0/+5I work at MS; So I am really getting a kick out of most of these replies.

What we really use are monkeys with hex editors to scan the IO as it occurs in our systems.
lopla, on 10/12/2007, -0/+5Actually they have Ballmer sitting in the data center, when an attack is spotted Ballmer throws a chair at it..
happylinuxguy, on 10/12/2007, -0/+5From the article:
Microsoft employees, in general, send and receive huge amounts of e-mail, and use it as one of their principal ways to collaborate and manage.

Also from the article:
Currently, Microsoft filters out about 9 million spam and virus e-mails a day out of 10 million received. Yes, that means that roughly 90% of incoming e-mails are spam.

Does anyone see anything wrong with this picture here??? Maybe microsoft should implement tin cans & strings across workstations... productivity would skyrocket.
Zipp425, on 10/12/2007, -0/+5Why is he being buried? I know for a fact that it is eTrust.
cynicist, on 10/12/2007, -1/+5"Linux is just as full of security holes as windows."

Why dont you go to securityfocus.com and compare the two? One of them has none, while the other has 5+ pages of vulnerabilities...
dodgerfan78, on 10/12/2007, -0/+3@Freak Trap
Isn't that what is wrong with security? People that think there systems can be totally secure end up finding out otherwise. Remember: Security is a PROCESS....
LordofShadows, on 10/12/2007, -0/+3Something is wrong with your web page when the printer friendly version is more user friendly than the original.
gotamd, on 10/12/2007, -7/+9You could /probably/ find one? Join the club of people who could probably do things. I, myself, could probably sprout wings and fly to Jupiter.
prammy, on 10/12/2007, -0/+2@dodgerfan

That is by far the best way to describe security. It is a process. You can have a machine with an OS which is completely resilient to external attacks but an attacker can always find a way through another machine or even social engineering.

What the article tries to explain is the amount of work Microsoft puts into its security process. And as someone who worked at Microsoft for a while, I can attest to that. They put a lot of thought into their security processes.
dodgerfan78, on 10/12/2007, -0/+2When did MS purchase Grisoft....any links?
LethalGeek, on 10/12/2007, -0/+2This all sounds similar to what the Navy/Marine Corps use in their intranet. Any access to the network that isn't at a machine on base is controlled with a smartcard with 1024(!)bit encryption, a password that has just jumped to a minimal 15 character length, and can still only be done with a machine issued by the network.

Needless to say, this sucks for the people actually trying to use the VPN system. All this really makes it hard to access anything :P

The backbone of the system is windows, but there is some 3rd party authentication software running somewhere on the network also. I was surprised as anyone that it wasn't some *nix system.
dodgerfan78, on 10/12/2007, -0/+2MS does a very good job of protecting their network. I think most admins of Windows environments would agree. I have been curious of the benefits of L2TP/IPSec over just IPSec....anybody know?
zizzybaloobah, on 10/12/2007, -2/+4They have to use email to collaborate, because their other collaboration tools suck. Give me Domino/Notes/Quickplace/Sametime and I'll show you collaboration that not only works, but is backwards compatible with previous versions and doesn't require Windows.
darrenjamesw, on 10/12/2007, -0/+2@ omnibus
RTFA. Grisoft is available through MS Security Center as is CA, F-Secure and Trend Micro
lopla, on 10/12/2007, -3/+5Bill Gates has been running OSX for years on all of his personal systems. He claims he keeps his friends close and his enemies closer, but sources say he's a total mac addict.
lustre, on 10/12/2007, -1/+2Domino is the most dreadful software I have ever seen. A company I worked for spent a fortune trying to get it to work for them. They eventually gave up.
prammy, on 10/12/2007, -0/+1@artanis:

Which building? I used to be in 109.
bias, on 10/12/2007, -7/+8@Phocion55
lol okay fine, here you go, dumb ass.
well gotta give cred to open source for fixing the bugs, but hell you have way more vulnerabilities. let's talk about more fixes and updates.

Ubuntu's Secunia advisories (Total: 633)
http://secunia.com/search/?search=ubuntu&w=0

Windows XP's (Total: 163)
http://secunia.com/product/22/

FUD my ass, fanboys.
MacSuxWindozSux, on 10/12/2007, -0/+1I had a free lunch in that building.
MacSuxWindozSux, on 10/12/2007, -0/+1@BrainInAJar
At some point you need to decide how long is long enough when you ponder your code.

Just because someone is faster doesn't mean they are less sloppy.

Part of rapid developement is better interaction between Man and Computer.

(But if you want to start stereo-typing different trends to continue arguing your point... I'm all ears)
Phocion55, on 10/12/2007, -2/+3"I think bias is right on that, those are a bunch of applications that comes with Ubuntu"

Are you serious?! Many things like PHP, Ruby, etc. (which are included in this list and mentioned multiple times) DO NOT come pre-installed with Ubuntu.

Anyone who can't understand why bias' comparison is wrong, misleading, and FUD is about as big of a ***** moron as he is.
slackerexpress, on 10/12/2007, -0/+1Few random points:

- Microsoft also bought Sybari, which is an AV vendor

- They talk about 2 factor authentication for VPN (RAS), but not for email or IM. Not so good if this is true.

- They have much of the info on how they do IT and Security on their site. Pretty good docs for the most part.

- I personally think they are trying, but security is *much* harder than it looks.
zizzybaloobah, on 10/12/2007, -0/+1@lustre - so you're saying their experience wasn't much different from those using Exchange.

I've taught Domino classes for 10+ years. Even the most dense students I've had were able to get multiple Domino servers up and running before the class was over.

In my experience companies that ran into problems with Domino, either didn't RTFM, weren't willing to invest in training or didn't want to pay for people with applicable skills, and/or were sabatoged by the Microsoft zealots who wanted to ensure Domino's failure.
muffinmanpoo, on 10/12/2007, -0/+1@gotamd
I think you'll probably need more than wings to get all the way to Jupiter.
MacSuxWindozSux, on 10/12/2007, -0/+1Any software as big a target as some of the products Microsoft releases will have a disproportionate volume of security exploits.

When more people are using the software, more people are exploiting it.

That doesn't mean there isn't such thing as better or worse security implementation. Microsoft employs a lot of top security people, but not all of them.

They can make their code more secure then ever but they have to work harder to achieve the same result, as smaller companies like Apple.

If it's any indication, Fairplay, Playsforsure, and everyone else's DRM is cracked on a regular basis, security is in the same ballpark.
lustre, on 10/12/2007, -2/+3Dig me down but a key truth is obvious: The company literally runs on Exchange, that is perhaps the most mission critical application and I haven't seen Exchange for Linux on the market.

I call BS on MS using Linux for mission critical operations. Have you anything that cites that "fact" of yours?
arjie, on 10/12/2007, -0/+1Actually, the closest to that I remember is Microsoft's servers' backups being done on servers that ran either Linux (instead of Windows) or Apache (instead of IIS). That was a long time ago, can't even find a search of it.
lustre, on 10/12/2007, -0/+1The company was as ardently anti-MS as a company can get. All *nix environment. They just had an awful time with Domino. I left before things were resolved and don't know what they ended up using.

It wasn't so much the backend that people had problems with, rather it was the client side UX that people hated; and I mean, they really hated it.
cynicist, on 10/12/2007, -0/+1And keep in mind the code for linux is open, making it much easier to find vulnerabilities than for windows code.

"Grisoft was purchased by Microsoft for use in its Windows anti-spyware tool. I wouldn't be surprised if they used an anti-virus from them."

No, microsoft purchased Giant for use in their Windows Defender software.

http://en.wikipedia.org/wiki/GIANT_Company_Software%2C_Inc

(I hate digg's edit function)
Show 51 - 87 of 87 discussions
Add a Comment

Login or register to comment!
Or, sign-in super fast with your Facebook account ...

Site Links: Home; Take a Tour; Search Digg; Digg Mobile; RSS Feeds; Popular Archive

Help: Frequent Questions; How Digg Works; Report a Website Bug

All About Digg: About Us; Contact Us; Community Guidelines; The Digg Blog; Digg Townhalls & Meetups; Jobs at Digg; Advertise on Digg; Diggnation Podcast

Digg Store: Get hats, shirts, hoodies, stickers, and more at the Digg Store.

Digg Tools & API: All Digg Tools; DiggBar Tools; Firefox Toolbar; Twitter Feeds; Add Digg to Google; Netvibes Widget; Integrate Digg Buttons; Digg Badges; Make a Digg Widget; API for Developers

Digg Dialogg!: Digg Dialogg lets you choose the questions.

Digg Labs: Get a real-time view beneath the surface of Digg.; Digg Labs Home; Arc, Swarm, Stack, Bigspy, Pics

© Digg Inc. 2009 — Content created and posted by Digg users is dedicated to the public domain | Terms of Use Updated | Privacy Policy
DIGG, DIGG IT, DUGG, DIGG THIS, Digg graphics, logos, designs, page headers, button icons, scripts, and other service names are the trademarks of Digg Inc.