Author Topic: Reasons why not to use M$...  (Read 4463 times)

lu666s

  • Member
  • **
  • Posts: 63
  • Kudos: 0
    • http://www.lumir.net/
Reasons why not to use M$...
« Reply #15 on: 28 February 2002, 17:00 »
Bashing Macro$uck is cool and very laudable passtime, but sometimes a bit of substance does not hurt. This acticle has a medium sized beard (2 years), but there is one fascinating aspect -- nothing changed and it is as valid as it has been 2 years ago.


NSA access built into Windows!

How NSA access was built into Windows
Duncan Campbell   02.09.2000

Careless mistake reveals subversion of Windows by NSA.

A CARELESS mistake by Microsoft programmers has
revealed that special access codes prepared by the US
National Security Agency have been secretly built into
Windows.

   The NSA access system is built into every version of the
Windows operating system now in use, except early   releases of
Windows 95 (and its predecessors). The discovery comes close on
the heels of the revelations earlier this year that another US
software giant, Lotus, had built an NSA "help information"
trapdoor into its Notes system, and that security
functions on other software systems had been deliberately crippled.

   The first discovery of the new NSA access system was
made two years ago by British researcher Dr Nicko van
Someren. But it was only a few weeks ago when a second
researcher rediscovered the access system. With it, he found
the evidence linking it to NSA.

   Computer security specialists have been aware for two years
that unusual features are contained inside a standard Windows
software "driver" used for security and encryption functions.
The driver, called ADVAPI.DLL, enables and controls a range
of security functions.

   If you use Windows, you will find it in the C:\Windows\system
directory of your computer. ADVAPI.DLL works closely with
Microsoft Internet Explorer, but will  only run crypographic
functions that the US governments allows Microsoft to export.
That information is bad enough news, from a European point of
view. Now, it turns out that ADVAPI will run special programmes
inserted and controlled by NSA. As yet, no-one knows what these
programmes are, or what they do.

   Dr Nicko van Someren reported at last year's Crypto 98 conference
that he had disassembled the
ADVADPI driver. He found it contained two different keys. One
was used by Microsoft to control the cryptographic functions
enabled in Windows, in compliance with US export regulations.
But  the reason for building in a second key, or who owned it,
remained a mystery.

A second key

   Two weeks ago, a US security company came up with
conclusive evidence that the second key belongs to NSA. Like
Dr van Someren, Andrew Fernandez, chief scientist with Cryptonym
of Morrisville, North   Carolina, had been probing the
presence and significance of the two keys. Then he checked the
latest Service Pack release for Windows NT4,  Service Pack   5.
He found that Microsoft's developers had failed to remove or "strip"
the  debugging symbols used to test this software before they
released it. Inside the code were the labels for the two
keys. One was called "KEY". The other was called "NSAKEY".

   Fernandes reported his re-discovery of the two CAPI
keys, and   their secret meaning, to "Advances in Cryptology,
Crypto'99" conference held   in Santa Barbara. According to
those present at the conference, Windows developers attending
the conference did not deny that the "NSA" key was built into
their software. But they refused to talk about what the key did,
 or why it had been put there without users' knowledge.

A third key?!

   But according
to two witnesses attending the conference, even Microsoft's
top crypto programmers were astonished to learn that the version
of ADVAPI.DLL shipping with Windows 2000 contains not two, but
three keys. Brian LaMachia, head of CAPI development at
Microsoft was "stunned" to learn of these discoveries, by
outsiders. The latest discovery by Dr van   Someren is based
on advanced search methods which test and report on the "entropy"
of programming code.

   Within the Microsoft organisation, access to Windows source code
is said to be highly compartmentalized, making it easy for
modifications to be inserted without the knowledge of even the
respective product managers.

   Researchers are divided about whether the NSA key could be
intended to let US government users of Windows run classified
cryptosystems on their machines or whether it is intended to
open up anyone's and everyone's Windows computer to intelligence
gathering techniques deployed by NSA's burgeoning corps of
"information warriors".

   According to Fernandez of Cryptonym, the result of having
the secret key inside your Windows operating system "is that it
is tremendously easier for the NSA to load unauthorized
security services on all copies of Microsoft Windows, and once
these security services are loaded, they can effectively
compromise your entire operating system". The NSA key is
contained inside all versions of Windows from Windows 95 OSR2
onwards.

   "For non-American IT managers relying on Windows NT to
operate highly secure data centres, this find
is worrying", he added. "The US   government is currently
making it as difficult as possible for "strong" crypto to be
used outside of the US. That they have also installed a
cryptographic   back-door in the world's most abundant
operating system should send a strong message to foreign IT
managers".

   "How is an IT manager to feel when they
learn that in every copy   of Windows sold, Microsoft has a
'back door' for NSA - making it orders of magnitude easier for
the US government to access your computer?" he asked.

   Can the loophole be turned round against the snoopers?
Dr van Someren feels that the primary purpose of
the NSA key inside Windows may be for legitimate US
government use. But he says that there cannot be a legitimate
explanation for the third key in Windows 2000   CAPI. "It
looks more fishy", he said.

   Fernandez believes that NSA's built-in loophole can be
turned round against the snoopers. The NSA key inside CAPI
can be replaced by your own key, and used to sign cryptographic
security modules from overseas or unauthorised third parties,
unapproved by Microsoft or the NSA.

   This is exactly what the US government has been trying to
prevent. A demonstration "how to do it" program that
replaces the NSA key can be found on Cryptonym's website.

    According to one leading US cryptographer, the IT world
should be thankful that the subversion of Windows by NSA has
come to light before the arrival of CPUs that handles
encrypted instruction sets. These would   make the type of
discoveries made this month impossible. "Had the next-generation
CPU's with encrypted instruction sets already been
deployed, we would have never found out about NSAKEY."
I'm not in favor of senseless Microsoft bashing. I'm in favor of bashing Microsoft senseless.

Calum

  • Global Moderator
  • Member
  • ***
  • Posts: 7,812
  • Kudos: 1000
    • Calum Carlyle's music
Reasons why not to use M$...
« Reply #16 on: 28 February 2002, 17:09 »
OK,

now we need to see a "how do we sort it all out" article telling us what to do about it...
PREFERABLY in the feature articles section.

PS maybe the webmaster could approach posters here either to write new articles, or for permission to use lengthy posts they have posted in the feature articles section?
visit these websites and make yourself happy forever:
It's my music! | My music on MySpace | Integrational Polytheism

lu666s

  • Member
  • **
  • Posts: 63
  • Kudos: 0
    • http://www.lumir.net/
Reasons why not to use M$...
« Reply #17 on: 28 February 2002, 17:30 »
Calum, yea, it is lenghty... But what would be a better reason not to use Macro$uck fuckware than this?  ;)
I'm not in favor of senseless Microsoft bashing. I'm in favor of bashing Microsoft senseless.

Calum

  • Global Moderator
  • Member
  • ***
  • Posts: 7,812
  • Kudos: 1000
    • Calum Carlyle's music
Reasons why not to use M$...
« Reply #18 on: 28 February 2002, 20:21 »
NO NO NO!!!
i wasn't being sarcastic or derogatory (for once).
I was just saying that this is the sort of thing that should be in feature articles, except that if it was in feature articles, it should have had somebody fully figure out what to do about it, like what the riddler did with the index.dat files...
i wasn't criticising its length at all!
visit these websites and make yourself happy forever:
It's my music! | My music on MySpace | Integrational Polytheism

Gooseberry Clock

  • Member
  • **
  • Posts: 419
  • Kudos: 0
    • http://redrangersoftware.cjb.net/
Reasons why not to use M$...
« Reply #19 on: 28 February 2002, 23:04 »
quote:
Originally posted by Calum:
????
does it just do maths?
sounds like an easy way to get a virus.
I reckon that SETI program which runs in yr downtime is much better, but that's just my preference...



Then run http://www.setiathome.com/ who do I care?

gerry

  • Member
  • **
  • Posts: 22
  • Kudos: 0
Reasons why not to use M$...
« Reply #20 on: 28 February 2002, 23:34 »
quote:
Computer security specialists have been aware for two years that unusual features are contained inside a standard Windows software "driver" used for security and encryption functions. The driver, called ADVAPI.DLL, enables and controls a range of security functions.       If you use Windows, you will find it in the C:\Windows\system directory of your computer. ADVAPI.DLL works closely with Microsoft Internet Explorer, but will only run crypographic functions that the US governments allows Microsoft to export. That information is bad enough news, from a European point of view. Now, it turns out that ADVAPI will run special programmes inserted and controlled by NSA. As yet, no-one knows what these
programmes are, or what they do.  

Okay, being the noob that I am, what happens if I delete this driver?
The whole thing makes you sick dosen't it?
Hope I didn't double post (again).
I'm running Win ME(Microsoft Excrement)
Everytime I touch my keyboard I feel dirty.

voidmain

  • VIP
  • Member
  • ***
  • Posts: 5,605
  • Kudos: 184
    • http://voidmain.is-a-geek.net/
Reasons why not to use M$...
« Reply #21 on: 28 February 2002, 23:51 »
quote:
Originally posted by gerry:

Okay, being the noob that I am, what happens if I delete this driver?
The whole thing makes you sick dosen't it?
Hope I didn't double post (again).



Doesn't make me sick. I deleted that driver, along with the rest of Windows long ago, and I don't miss either one of them one bit.
Someone please remove this account. Thanks...

muchis

  • Newbie
  • *
  • Posts: 1
  • Kudos: 0
Reasons why not to use M$...
« Reply #22 on: 1 March 2002, 01:00 »
Well, you sound like you're dumb as hell.  Going with the bandwagon, are we?  Face it, Microsoft has it's advantages and disadvantages like any other product out there.  But you sound like you don't have a clue to what you're talking about because it seems like you're trying to act like a hardcore "linux" guy.  I've used different distributions of Linux (Mandrake, Red Hat, SuSe, etc), and yes, they have some bugs, but I admit they are fewer.  Microsoft is a BUSINESS, and most geeks don't know shit about business and I suggest they learn.  Face it, your Linux distributors are in it for the money too, and if given a chance, they would bleed you too.  My point is, know your shit before trying to act like you know.

psyjax

  • VIP
  • Member
  • ***
  • Posts: 1,871
  • Kudos: 55
Reasons why not to use M$...
« Reply #23 on: 1 March 2002, 02:55 »
quote:
Originally posted by muchis:
My point is, know your shit before trying to act like you know.


Then you shoulden't have made this post      

You obviosly have no clue what this forum is talking about or what you are talking about. And if that statement was about VoidMan you better wear some protective clothing cuz I think half this comunity will rise to his deffence (not to say he can't hold his own, cuz he can do so better than you fucktard!)

[ February 28, 2002: Message edited by: psyjax ]

[ February 28, 2002: Message edited by: psyjax ]

Psyjax! I RULEZZZZ!!! HAR HAR HAR

Master of Reality

  • VIP
  • Member
  • ***
  • Posts: 4,249
  • Kudos: 177
    • http://www.bobhub.tk
Reasons why not to use M$...
« Reply #24 on: 1 March 2002, 03:15 »
muchis: does it hurt?
Disorder | Rating
Paranoid: Moderate
Schizoid: Moderate
Linux User #283518
'It takes more than a self-inflicted gunshot wound to the head to stop Bob'

lu666s

  • Member
  • **
  • Posts: 63
  • Kudos: 0
    • http://www.lumir.net/
Reasons why not to use M$...
« Reply #25 on: 1 March 2002, 03:35 »
It is  probably painless, for any perception of hurting, there has to be some mental capacity, present, first. As they say: You can't squeeze blood from straw!    :D

[ February 28, 2002: Message edited by: lu666s ]

I'm not in favor of senseless Microsoft bashing. I'm in favor of bashing Microsoft senseless.

Master of Reality

  • VIP
  • Member
  • ***
  • Posts: 4,249
  • Kudos: 177
    • http://www.bobhub.tk
Reasons why not to use M$...
« Reply #26 on: 1 March 2002, 04:13 »
i find this "coincidence" odd.

there is a Dword count of 666 in advapi32.dll
Disorder | Rating
Paranoid: Moderate
Schizoid: Moderate
Linux User #283518
'It takes more than a self-inflicted gunshot wound to the head to stop Bob'

lu666s

  • Member
  • **
  • Posts: 63
  • Kudos: 0
    • http://www.lumir.net/
Reasons why not to use M$...
« Reply #27 on: 1 March 2002, 04:22 »
Devil made them do it! LOL
I'm not in favor of senseless Microsoft bashing. I'm in favor of bashing Microsoft senseless.

voidmain

  • VIP
  • Member
  • ***
  • Posts: 5,605
  • Kudos: 184
    • http://voidmain.is-a-geek.net/
Reasons why not to use M$...
« Reply #28 on: 1 March 2002, 07:28 »
quote:
Originally posted by muchis:
Well, you sound like you're dumb as hell.  Going with the bandwagon, are we?


Who are you talking to?  I hope you are talking about me. If you are talking about me, then you are correct, I "jumped on the Linux bandwagon" back in 1992 when I was already a Sr UNIX Systems engineer.

And as far as knowing business, I think I know a little about that as well, since I have my own business that is based exclusively on Linux.  I have made quite a living replacing MS servers with Linux servers.

And I would be happy to take any knowlege test that you would like to throw at me about your little MS wannabe OSs as I am equally proficient with them. Which is why I hate them so much.  And I don't resort to foul language like you, ya little punk ass piece of shit.    

[ February 28, 2002: Message edited by: VoidMain ]

Someone please remove this account. Thanks...

FuckMSTillTheyDie

  • Member
  • **
  • Posts: 22
  • Kudos: 0
    • http://bigbrother.ms.com
Reasons why not to use M$...
« Reply #29 on: 1 March 2002, 07:50 »
quote:
Originally posted by muchis:
Microsoft is a BUSINESS, and most geeks don't know shit about business and I suggest they learn.


Microsoft is a ruthless monopoly without any ethics and without any notion of fair play...thanks for the biz lesson.