Microsoft has come under fire for quietly releasing a fix to its PatchGuard kernel protection software in order to improve the performance of its Virtual Server 2005 product.
PatchGuard is a much-touted security addition to Windows Vista that restricts access to the Windows kernel, making it harder for hackers to run nasty software such as rootkits. But it has also broken some legitimate software programs, leading to complaints from software vendors including Symantec Corp. and McAfee Inc.
Microsoft beefed up PatchGuard, which also ships with 64-bit versions of Windows XP and Server 2003, last July, according to Stephen Toulouse, senior product manager with Microsoft's security technology group. But one of the changes Microsoft introduced at that time harmed the operating system's ability to take advantage of Advanced Micro Devices (AMD) virtualization technology. As a result, Virtual Server 2005 couldn't work properly on AMD systems. In September, Microsoft published a "hotfix" patch that corrected the problem.
Microsoft has rolled the fix into the 64-bit version of Vista, but the only place it has notified users of the hotfix is on a Virtual Server 2005 documentation page, prompting one security researcher to cry foul, and say that Microsoft has violated its own policy on making exceptions to PatchGuard's kernel restrictions, to the benefit of its own product.
Microsoft has had to be careful about permitting changes to PatchGuard, as any changes it makes to the software could possibly become a new avenue of attack for hackers. Initially, the software giant said it would not make any exceptions to PatchGuard's restrictions, but in September, security vendors asked Microsoft for a way to get around PatchGuard, arguing PatchGuard would ultimately make their software less secure.
After a warning from the European Commission, Microsoft eventually pledged to create a set of APIs (application programming interfaces) that would give the security vendors access to the kernel-level computing resources they require. Those APIs are expected to be included in the first service pack for Windows Vista.
But according to researcher Ken Johnson, who has published a paper on the new PatchGuard features, Microsoft violated its own rules by releasing the hotfix. Johnson, a developer with Positive Networks Inc., has researched the paper on his own time and published it under his hacker alias, Skywing.
"Microsoft's policy on PatchGuard is that if a driver's functionality is being blocked by PatchGuard, and there is no way to achieve that functionality with PatchGuard in place, then that functionality will be unsupported on Windows," Johnson wrote in an e-mail interview.
- +
Strategies for Dealing With IT Complexity 24/12/2007 10:30:47
Every innovation, every business process improvement, comes with an IT complexity tax that must be paid by CIOs in time, money and sweat. Here are strategies to mitigate the increasing complexity of IT as it enables new business.Every innovation, every business process improvement, comes with an IT complexity tax that must be paid by CIOs in time, money and sweat. Here are strategies to mitigate the increasing complexity of IT as it enables new business.
Read up on the latest ideas and technologies from companies that sell hardware, software and services. Achieving the impossible: Unlimited application scalability
Making the Business Case for IT Consolidation
IT Service Management Needs and Adoption Trends: An Analysis of a Global Survey of IT Executives
Gaining Competitive Advantage Through Enterprise Planning
Everything you need to know about email and web security (but were afraid to ask)
Controlling storage costs with Oracle database 11g
Discover the advantages of an open architecture multi-vendor network solution
CRM your salespeople will love
Zones provide focussed content from Computerworld and leading technology partners.
Discover how SOA can create smarter outcomes for your business.
Attend and learn:
- How SOA is helping leading companies to become more agile
- Where you should be applying SOA processes in your company
- The top SOA implementation mistakes to avoid
Click here for more information.
- +
Computerworld Live Podcast #97: The Future of Enterprise Networking 25/07/2008 09:45:36
This week CW Live chats with Mark Thompson, global sales and marketing manager for HP ProCurve, on the future of the enterprise networking. Mark discusses the trends we can expect to see in the near future and how the right infrastructure can ensure your enterprise network is secure. - +
Computerworld Live Podcast #96: Security at the Edge 11/06/2008 09:22:22
CW Live speaks with Amol Mitra, HP ProCurve Director of Marketing for Asia Pacific and Japan. Today's topic: how enterprises are starting to shift away from simply controlling security via server logins, firewalls and moving to more adaptive security frameworks. - +
Data Management Edition #10: Multi-Petascale Systems 02/05/2008 09:12:33
This week we look at sustainability and the development of multicore technologies to build multi-petascale systems. - +
IT Security Edition #11: How to poison the Storm botnet 01/05/2008 08:51:55
This week CW Live presents a case study on how to poison the notorious Storm botnet . Plus we take a look at Cisco's plans for Ironport. - +
IT Security Edition #10: Cyber-battles fought and won 24/04/2008 11:09:47
Vendors bow to end user pressure to improve product security, and we take a look at the latest concepts shaping the cyber-battlefield of the future.
Virtual magic: HR specialist throws out 40 servers, adds 8TB SAN and saves $100,000 for disaster recovery 2008-12-01 15:28:00+11
Sybiz adds up for SMEs in downturn 2008-12-01 14:27:00+11
EXCOM scores back-to-back award trifecta 2008-12-01 10:46:00+11
Citect extends SCADA networks with mobility solutions 2008-12-01 09:48:00+11
Citect extends SCADA networks with mobility solutions 2008-12-01 09:48:00+11
Taking On Demand CRM Integration to the Next Level
Discover the current integration challenges facing businesses attempting to deploy on demand CRM systems. Learn how to create comprehensive integration of your data, user interface and business process levels and transform a portfolio of disparate applications into a unified, virtual application suite.
Buying Guides
Buying Guides
