WannaCrypt: Pwnage is a fact of life but cleanup could and should be way easier

Throw the monkey from your back people. It CAN be done...

... and when you have DON'T let it climb back on, I'm looking at you Munich....

Software properly written for Windows 2000 would work on 7 and later without issue.

It was the developers who stubbornly didn't accept 3.x/9x bad habits were no longer acceptable that created the mess - only drivers are a different issue.

Often, Windows does too much to allow old, bad-written applications to work. Just read the "Old New Thing" blog to have a glimpse of how far it goes because some large "Fortune 500" customer has bad software that can't be rewritten.

One issue is that many people don't like to learn - especially to learn continuously. I've seen too many refusing to understand the way they wrote software was outdated, and not secure - and there are probably many inside MS as well.

Many documented APIs are not used because developers don't known about them and prefer to hardcode paths or the like.

MS has its faults, but many lazy developers abused and misuses Windows, and the result is what we have now.

And it's not related to Windows only. I've see just yesterday a blog post, from a known developer tools maker, about how to daemonize a process in Linux. It just forked - the writer had no idea about how to make a process a proper daemon, nor under System V, nor under systemd.

Ignorant developers write bad code - under any operating system, and there's nothing the OS can do to stop them.

<quote>

Imagine, if you will, that governments stood up clouds to enable cheap (or free) backups for critical industries. It's one possible solution to the realities that made WannaCry the international IT oopsie of the week. There are many more.

</quote>

MUHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHA!!!!!!!

government controlled cloud/storage, what could possibly go wrong?

Fast data recovery techniques......

"Shame on you for not going back in time".

If only people had an ability to roll back their data to a good point in time, rapidly......oh wait!

We will continue to have issues, and the only way to minimise disruption is to stay current (last months malware detector is out of date, never mind running on an OS a decade or more old!) and have a solid & regularly tested recovery mechanism.....

It's worse than that

Today, Microsoft doesn't give us that choice [of selectively installing updates]. You will patch everything, all in one go, and if for whatever reason you need to skip a patch you can never move forward from that point.

And patching everything, all in one go, is likely to enable yet more "telemetry" in order that Microsoft can monetize you even better.

The everlasting light bulb

I remember sitting in a very swish glass-sided office in the heart of Microsoft in London. A senior MS employee was lambasting us, the visitors, about our customer's inability to move on from whatever legacy MS OS our customer had foolishly based its enterprise on. We, or rather our customer, represented tens of thousands of licences. MS seemingly held us in the same regard a prostitute shows a punter - a source of money and minor inconveniece, nothing more.

I understood that times and knowledge had moved on - that MS's new OS was not the brittle, leaky sieve that our customer was using. However, our customer's system was not facing the outside world - it ran inside its own microcosm. It needed to do what it did, 24/7, for the good of the nation. It struck me it was like the maker of a motor oil telling you needed to redesign and rebuild your car to change the oil.

MS had, and probably still has, a disproportionate view of its own importance set against the time, money, and brain ache invested in large IT projects; it wanted 'in' on them, but failed to acknowlege that meant in for decades untill the next big refresh was decided upon ..and funded.

Nobody ever got rich inventing the everlasting light bulb, but LEDs can produce huge savings in both energy and maintenance costs over the lifetime of a building. MS, and others, think on.

I made the suggestion in a newsgroup recently to consider a derivative of QuickPAR to restore encrypted files after a ransomware attack. For those who don't know, QuickPAR is an amazing program that corrects download errors. It uses parity files. Why can't software engineers not create a kind of "QuickPAR" that will restore all the files on a drive? Obviously you'd keep the parity files needed for recovery on separate media that is never placed online.

Isn't there some other operating system we could use?

One that has, say, a browser, a word processor, a spreadsheet package, a mail client and a cute GUI? And ten or twenty thousand other little gadgets if you want to look at the catalogue?

Oh, I almost forgot: and is a LOT more open, stable and secure?

Oh, yes. So there is. Seeral, in fact.

'Sfunny, though, when I try to get customers to switch, they won't. It's too much trouble.

So it really is their own fucking fault, and IMO they deserve all the blame and the pain that they get when what I tell them is going to happen actually does happen - it just did - and I don't have the slightest sympathy for them when I send them a big bill.

"[...] defied society's laws and cultural norms in order to make a quick buck easier than we collectively deem should be allowed."

It seems that many people with such antisocial behaviour actually invest more effort in them than if they did something legitimate for the same income.

The material gain is isn't necessarily their primary motivation. Presumably they get a dopamine rush from their illegal activities. Such is human nature.

"Everyone is to blame because we refuse to force our governments to hold software-makers to account"

Corporations are the government, who are we kidding here!... Besides Governments are comprised of mostly old men from a generation that just doesn't get it. After WannaCrypt people were saying someone has to die. I agree, preferably children. Then there will be some debate at least, but still no quick change. If more dead kids arrive, then they'll move too fast and probably pass the wrong legislation which will be ineffective anyway...

Microsoft's desperation for a monopoly

Microsoft goes to great lengths to avoid publicly acknowledging...

So you're a Linux guy then? or an iPerson? UNIX? freedos?

Are there in fact any paradigms of OS virtue that those nasty bullies rolled over?

Hear! Hear!

And Hear! Hear! Again.

Most annoyingly, we have only ourselves to blame, but let's look for someone else anyway.

You're 20 years late to the party

Why wasn't MS held to account for deliberately breaking the MIME RFCs of 1992 and '93 when that breakage unleashed Melissa and Lovebug (and left us a legacy of a 'net where MIME headers can't be used to identify and quarantine potential hazards as designed).

I also blame Microsoft for not protecting WIn10/Server2016 file systems against the mass encryption that occurs during an infection. The type of IO that happens to the disk isn't a normal activity, they should have found a solution to this by now. But that would involve some real thought and change, where as underneath all the GUI, it's the same old Windows/NTFS with the same old issues with every release.

Time Machine

You'd want a Time Machine to go back in time and restore your computer to the state it was in some time earlier. If you buy a Mac and an external hard drive, you got exactly that. It makes incremental backups, hourly, keeping them as long as you have enough storage on your external drive, and you can restore from any of those backups. So if you got infected on Friday 2:15 pm, and this thing started encrypting files like mad, and the encrypted files go to your backup, all you need to do is restore the version from Friday 1:00 pm and you are fine. Any work done since then is obviously lost.

Bah!

And shame on the author for carefully aboiding saying that the biggest incentive to stay with XP was that the UI was pleasant and relatively easy to work with.

I used to work for a guy who downplayed Joy of Interaction in the mainframe apps we turned out. No menus because we had manuals (which no one read). Result: no one ever became proficient with our apps and everyone hated them.

Fortunately, MS have executed Plan Shred Own Foot with their bug-ugly flat-ass three color GUI so movng away from 10 should be a no-brainer.

System is broken

This is going to sound like some whack-job statement, however if you stop to think about it for a minute, you may see my point. Here we go: Our system of government does not work. It's broken.

The problem is that we have too many decades of huge corporations being far too closely tied to government officials that it could even be called an infiltration, whereas corporations have so much influence over our elected officials that said officials are putting THEIR interests ahead of the public's.

Most if not all people in high government positions are business people, with business interests - and investments - of their own. They have friends in business they may be inclined to help out. The bribes, er, donations they received on their campaigns to get them elected can't have possibly influenced any of their decisions could it?

So that said, at least in my opinion, the government actually enacting laws which will impact these huge corporations by forcing them to act responsibly - even if in the public's common interest - will NEVER happen. Ever. Not as long as our systems of government allow non-elected corporations and school-buddies of elected lawmakers to so greatly influence said lawmakers.

And given the extremely expensive circus at least US elections are, so-called unaffiliated "average joes" have no chance of running. Therefore the cycle of elite, rich, well-connected and well-bribed (I mean, donated to) business people will continue to get elected.

The problem with formally proving a system is that by the time you've completed it, the specification turns out to be wrong and has changed 27 times over 7 different corporate/government regimes.

Anyhow, I've often had arguments that have gone a bit like:

"Hey what are you doing here, that results in undefined behaviour"

- "It's okay, I tested it and X happened every time"

"It's still undefined, it could change any time in the future"

- "What why, surely they wouldn't make backwards incompatible changes to the OS?"

"Undefined is undefined, they could make the compiler generate code that erases the hard drive and they'd still technically be standards compliant"

- "You mean I have to actually read specs and learn, not just try random stuff until something works?!"

"Yes"

- "Being a developer sucks!"

I hope this makes people think about alternatives.

Finally installed Linux on my personal machine. I tinkered with it in a VM for development and messing with ElasticSearch Shards and such, but now with windows 10 causing personal headaches It feels like a nobrainer.

moving my dad's machine back to windows 7 with a dual boot of ubuntu (windows 10 creators update borked his machine), hoping to wean him off the devilish microshaft

hopefully the friendly penguin becomes a more popular solution for home users, but I doubt it will ever compete due to the lack of the the budget and marketing machine microsoft has to shove windows down everyone's throat's.

.ZFS

... or another snapshotable FS ... will allow you to simply dig previous (unencrypted) versions of files out of snaphots. This is the real way to "go back in time" ... just keep every version of everything. It really doesn't even take up much space as huge files rarely change, and those with dozens or hundreds of versions are small.

Malware proliferates because...

...it makes money. Same as SPAM emails. While Microsoft could make the locks better, and users could use proper protection, the real task at hand is to make malware exceedingly costly for the perpetrators. The only way to do this is for a government to go after them. The cost of the WannaCry thing was quite high, but from the looks of it, no government is going after the bad guys.

Of course, if executables were cryptographically signed and we could trust the signing, it might go a long way in helping out.

Unfortunately in the end, most users (I suspect present company excepted) are ill-prepared for the modern threats a computer faces, and will do stupid things given half a chance. I wish them luck.

Life goes on.

IT people also to blame

Sure MS did the wrong thing. But the IT crowd came from the mentality of everything had to be IBM to everything had to be MS. IBM architectures were never really that good anyway. The IBM 360 a horror. It was all marketing. MS inherited that from IBM. The PC and MS-DOS were really inferior products, but IT people just wanted to go along with the lazy mainstream instead of setting up the industry to be good and secure. We are now paying the price for these lazy IT people who set this up in conjunction with MS and IBM.

Note that while MS were encouraging developers to use undocumented hacks that Apple always discouraged developers from using anything that was not documented. This is the basis of object-oriented and modular programming (as proposed by David Parnas). Interfaces should be small and neat for both security and correctness. But IT people and developers wanted to ignore that.

And now hackers have been the beneficiaries. But the innocent in this have been the end users that is true. They are caught between greedy monopolistic companies that have ignored quality and security and developers who did not want to be told what to do, and lazy IT people who just wanted to maintain the status quo.

Software AND hardware need improvement

It is true that higher layers of software introduce system vulnerabilities which should be avoided at those levels. System development software also needs to be more secure. But we need security built in at the lower levels. We must have hardware that detects out-of-bounds accesses - that is fundamental to both security and software correctness.

While I agree much of the blame is on MS, a lot must also be put on systems developers from the Unix background. C is an inherently flaky language. Languages developed for writing an OS should NOT be used for other applications. Much of what they provide should be forbidden at applications or even higher-level system software. But the cult-of-C has seen it used everywhere, even for some OO languages I believe. This is not a good situation. The mean look of C syntax is even used for many other languages.

While the C philosophy of "trust the programmer" now seems at best naive, it really was stupidity, and perhaps in the future should be treated as criminal negligence. It really is time to sit up and take notice of the warnings many of us have been making about C for a long time, and the inherently weak processor architectures that are underneath C.

http://ianjoyner.name/C++.html

MS-DOS was distressing

Interesting Quora question when someone asked why Alan Kay said MS-DOS was distressing.

https://www.quora.com/Why-did-Alan-Kay-say-MS-DOS-was-a-distressing-thing

We are still suffering in 2017 because MS foisted this junk on us.

Imagine, if you will, that governments stood up clouds to enable cheap (or free) backups for critical industries.

Imagine, if you will,millions of security people cried out in terror and were suddenly silenced...