HP Shelves Virus Throttler Program 277
longlanekid writes "Though HP has apparently designed a great program for slowing the spread/proliferation of virii and reducing the impact of DoS attacks, it's all being shelved due to Windows incompatibilities."
/. worthy? (Score:3, Interesting)
That aside, any coincedence that the vice president and chief technology officer of HP is named Tony Redmond?
Re:/. worthy? (Score:3, Interesting)
yeah? So HP is saying they can't get it to run on Windows because they can't alter the networking code? WTF? Have they never heard of firewalls, that happily block network connections, even on Windows.
Perhaps they've altered the HP network stack so that if you make a connection, it is held until the flurry of connection attempts are reduced. Somwthing that is not likely if you're infected with a worm; so maybe it delays the connect attempt for a short amount of time - big deal if you're infected as the connection will succeed eventually. Could this be the real reason why it's been shelved - it doesn't work to actually do much of anything?
I really don't understand why this is such a 'Windows is rubbish' and not a 'HP programmers don't understand how to code properly' story.
oh, except usual slashdot bias. Silly me, I forgot that for a moment.
Re:/. worthy? (Score:4, Interesting)
I'm pretty sure the people who wrote Tiny Personal Firewall didn't have access to the Windows source code.
So enlighten me again - what does this have to do with Windows being a "closed proprietary OS" again?
And BTW, this is something already built into XP, as you can tell from the many comments in this article.
Pre-emptive better than reactive? Sence when? (Score:4, Interesting)
Im my experience it has always been easier to sell reactive solutions to DDoS, worms, and virii.
Working on OpenVision*SecureMAX and Securify(kerberos) back at OpenVision (bought by veritas, products sold to PlatniumGroup, then who knows where), we had a very very hard time selling our prevenative security software (for all the *nix platforms of the time and Windows NT). Everyone wanted virus removal software. Even when Satan was released, people didn't want to have an audit of which machines were vulnerable in the company.
I left the computer security buisness back in '97. At which point did it become easier to sell prevenative measures? Was it just this past year or two with all the outbreaks? Or did veritas make a huge mistake is selling off its aquired security products when it did?
Re:Viruses vs virii (Score:2, Interesting)
How many people use alot?
Just because many poeple use the word doesn't make it proper and all my English teachers have proven this to me when they used to take points away from my papers for using words that were infact not words.
IMHO virii is a word construted by nerds here at
What so special (Score:3, Interesting)
Looks like a kludge anyway (Score:2, Interesting)
But really, I believe the concept of virus scanners and throttler's such as this are a temporary patch to a problem, not a solution. What if instead of putting on a governor on the IP stack, the OS or a router down the line detects these types of problems. The infected OS is alerted and optionally suspends the attacking process until it is cleared by the user or administrator.
Some ISP's do something simular. One emails the user saying that they may have a virus because of large number of SMTP connections. I think that's a decent start.
Oz
Re:Looks like a kludge anyway (Score:2, Interesting)
It is a bit like the algorithms used by some mobile phone networks to detect that your phone has been stolen, and block its use, by detecting a very abnormal usage pattern.
But the ultimate answer is to sub-contract the suppression of virii etc to the RIAA, after all they have shown how (not!) to tackle minor amounts of illegal file copying.....
:-)
Re:Wait just a minute... (Score:3, Interesting)
Last I checked winpcap could be installed without a reboot or any user intervention via a silent option to the installer, at least under 2000/XP. I know for a fact you can construct raw packets however you want with winpcap since I use it in my tunneling program.
I don't really see what would stop somebody from embeding winpcap or something similar and spewing out garbage completely bypassing windows tcp/ip stack. Other then size of course, it would be a large worm to include a bunch of dlls just for that.
Already in XP (Score:2, Interesting)
Perhaps, HP got it a bit too late, unfortunately, thats how software market is. Unless HP was sure they have a better product, no point in competing with something the OS offers now.
Just let me throw out an idea (Score:1, Interesting)
It could run embedded linux on a very low cost, low power embedded processor.
If Microsoft was wiling to actually fix Windows... (Score:3, Interesting)
HP could have done it by implementing their own network stack, the way VPN and private firewall software vendors do, but it would be much easier if Microsoft was willing to play along.
But then if Microsoft was willing to work with anyone else on fixing Windows, they'd be better of if they started with the many many features of Windows that actively encourage the spread of viruses instead of messing about with half-measures like this. Instead of crippling the OS so it can't do occasionally useful and sometimes vital operations (as Microsoft themselves are doing in XP SP2, don't forget) they should start by splitting IE into a safe HTML-rendering engine and a web-browser that uses it but takes control of its own security...
Re:Yes, it is. For several reasons. (Score:1, Interesting)
Fair enough, (Score:3, Interesting)
Re:Need more details... (Score:2, Interesting)
Re:/. worthy? (Score:3, Interesting)
I'm pretty sure you're right. And I'm also pretty sure Tiny Personal Firewall doesn't come close to doing what the software from HP would do (I think it checks for the activity of worms or viruses and throtles their usage to "block" DoS attacks or something like that.) Anyone can write a firewall, it's a bitch writing software to throttle network and CPU usage for a particular process.
So enlighten me again - what does this have to do with Windows being a "closed proprietary OS" again?
HP owns HP Unix, they can modify the source any way they want to. Linux is open source, so again HP can modify the source any way they want to. Windows is closed source, HP cannot modify the source (I don't know what they have to do, but they can't do it no matter if the firewall is enabled or not) so they cannot get their software to work on Windows.
And BTW, this is something already built into XP, as you can tell from the many comments in this article.
Yes, a firewall is built into windows, but it's nothing like the software HP is trying to create.
I understand why you want to defend microsoft (well not really) but at least RTFA next time.
Re: Viruses vs virii (Score:3, Interesting)
Rather different from this case, which seems to result from pure ignorance.
Personally, what really irks me is the use of a Latinate plural for a naturalised English word. English already has a perfectly good mechanism for indicating a plural, one that's used by the huge majority of its words. 'Virus' may have originated (in some form) in Latin, but it's been used in English for over half a millennium! Can't we consider it naturalised enough to take an English plural?