Navigation

Language Selection

Search

Exploit Allows Windows XP Piracy

Submitted by srlinuxx on Tuesday 24th of May 2005 03:51:23 AM Filed under

Microsoft

There's a major chink in Microsoft's Windows XP anti-piracy armor, although Windows users are not at risk of security attacks.

A security researcher in India has discovered an uncomplicated and easy-to-exploit weakness in Microsoft Corp.'s WGA (Windows Genuine Advantage), an anti-piracy initiative that checks whether consumer and small-business customers are running legitimately licensed copies of Windows XP.

Debasis Mohanty, a private vulnerability researcher and analyst of malicious programs, published a detailed proof-of-concept demonstration to show how the WGA validation check can be defeated to generate key codes for use on illegal copies of Windows XP.

Mohanty's findings come as the world's largest software maker prepares a mandatory rollout of the program.

Microsoft has been testing the Genuine Advantage program through its Download Center, where users are urged to validate their copies of XP before obtaining certain software updates, patches and fixes.

If users decide against validating, they are still allowed to obtain the requested downloads, but later this summer updates will only be pushed out to valid copies. Security updates will not require validation, even after WGA goes mandatory.

A Microsoft spokesperson on Monday confirmed Mohanty's findings but insisted that the weakness presented no real threat to the company's attempts to strangle software pirates.

The spokesperson said there were no plans to modify the way WGA works, even after Mohanty's public demonstration, which was posted on a high-profile security mailing list.

Full Story.

More in Tux Machines

Ubuntu 14.04, Highly Recommended by the Engineers of Dell

Barton George, Dell’s Director of Developer Programs has stated in a blog post that the necessities of programmers have ground and they wanted to have a bigger and better version of a laptop that runs Ubuntu Linux and that’s how they thought about the Precision M3800. Not much they, but him, Jared Diminguez, a Dell software engineer that has gathered all data and combined it with his grand passion, in order to make big efforts seem as easy as batting one’s eyelashes.

Witcher 2 Bug Prompts Linux Creator To Recommend Devs Play Steam Games

It’s common for NVIDIA and AMD to tweak their drivers to optimise specific titles, but patches to operating systems just for games? Usually developers work around platform quirks, but that’s not good enough for Linus Torvalds, the man behind Linux. When crashes in The Witcher 2 were caused by Linux’s core software, Torvalds not only requested the bug be fixed, but that Steam games should be used in the future as “good tests of odd behaviour”.

Today in Techrights

FileZilla 3.10.1 Released With Bug Fixes And Some Minor Changes Install In Ubuntu/Linux Mint

FileZilla is free and Open-Source ftp/sftp client with features FTP, SFTP and FTPS (FTP over ssl/TLS). It has a very nice and easy to use user interface.FileZilla 3.10.1 released yesterday with bug fixes and minor changes.

Read at LinuxAndUbuntu

Latest News

‘Enterprise customers are now more willing to implement open source’

Jim Whitehurst expects India to play a larger role in NYSE-listed Red Hat’s global strategy, thanks to the rapid pace of infrastructure creation. “When a new system’s put into place, it’s increasingly likely that it may be built on open source. We like places where there is a lot of infrastructure going in,” Whitehurst, President and Chief Executive Officer, Red Hat, said. Red Hat is the world’s largest commercial distributor of the open source-based Linux operating system. Open source denotes software for which the original source code is made freely available and may be redistributed and modified. In an interaction with BusinessLine, Whitehurst throws light on the opportunities in the Indian marketplace for open source. He also explains why the company is keen to increasingly move more support functions to India.

The Navy's Newest Linux-Powered Command Center Is Right Out Of Star Trek

The DDG-1000 Zumwalt Class Destroyer could very well revolutionize the way the Navy does its surface warfare business. One of its biggest innovations is ditching the cramped, darkly lit Combat Information Center (CIC), a fixture for many decades on past USN combat ships, and replacing it with the state-of-the-art, spacious, Star Trek bridge-like Ship's Mission Center.

Black Lab Professional Desktop 6.0 SR3 released

Today we are pleased to announce the release of Black Lab Professional Desktop 6.0 Service Release 3 or SR3. Black Lab Pro Desktop 6.0 SR3 is a major upgrade to our pro desktop line of distributions. With this release we worked on a few issues with memory consumption, security and speed. With the Black Lab Pro Desktop we deliver it in two different desktops, KDE and GNOME Shell . While these are commercial releases we do offer a cut down version of it available for download from our website. While we do not release for download all of the features of the retail release it is far from being crippled. The KDE release boots only consuming 480 mb of RAM and the GNOME Shell release boots using only 545 mb of RAM

Syndication & Social Media

Follow the site via RSS/Twitter.

Full RSS:

RSS feeds for particular topics are also available

Twitter:

Content (where original) is available under CC-BY-SA, copyrighted by original author/s.

Tux Machines is proud to be hosted by

Cloud Sites

Support Tux Machines

Help Support TM
Wall of Appreciation

Linux Gizmos

Linux Today

LinuxSecurity.com Advisories

More on Tux Machines: About ● Gallery ● Forum ● Blogs ● Search ● News ● RSS Feed

Part of Bytes Media ● Sister sites below.

Linux.com

Web Upd8

DW Latest Releases

Phoronix

Content available under CC-BY-SA

Navigation

Language Selection

Search

Tux Machines Section/s

Authors Information

DistroWatch

LWN

LXer

OStatic

Muktware

OpenSource.com

Active forum topics