Genuine Windows Blog

Alex Kochis of the WGA Blog posted today that Symantec has details of a new trojan that masquerades as

This thing has the capacity to cause Microsoft a lot of grief. Why is that a good thing? Because it might cause Microsoft to relax this entire "WGA" campaign.

When I buy a hamburger, how many times do I have to "activate" it, "validate" it, or if I want to add Onions or Pickles, do I have to buy an outrageously priced "Plug-In?"- Does that sound absurd? Does Vista sound Absurd? The WPA and WGA in XP is acceptable because you have full operating capacity of the OS even without having to suffer Validating: Because most people not only do not WANT the security updates, they refuse to even get them automatically.

But VI$TA is another story altogether. Not only is the OS, even the "lower versions" (Which are almost as useful as DOS 3.0) - Rather ridiculously highly priced... We have to PROVE that we spent 4 months salary (at 20 dollars an hour) every 5 and 3 16ths minutes because of daily, bi-daily, TRI-Daily, Octi-DAILY, Googol-Daily FORCED SECURITY UPDATES: Which usually forces us to  end up back at the web page:

http://www.microsoft.com/genuine/

Where you have to go through it all over again.

It is one thing, for me to pay 400 dollars for Vista UE. If Vista US is really some thing special, I might pay that. But the features of Vista UE are the features that were standard in other operating systems. Even if I agreed that Vista UE is worthy of the 400 dollar price tag it sports:  It is quite another for me to have to prove that I bought it every four minutes or less to Microsoft every time I turn the PC on and every time I use Photoshop or Office or any of my 30 or so high end music programs. To top it off: Vista rejects programs that use Aladdin HASP technology- So if you got Pro Tools, Sorry baby, but you got to go back to XP MCE and/or (best yet) Buy a Mac G5 Titanium Tower with a 30" Cinematic Flatscreen- At least for 3000 dollars you will be getting a superb piece of machinery, even if it DOES have an Intel CPU.

How does this relate to the article at hand? It is because of this vulnerability.. What I am saying is that WGA IS the vulnerability... Has opened the door for not just this particular attack... But expect others as well to start up. Microsoft needs to think of this thing as a "shot across he bow"- If they do not "Heave To"- The next shot will not be humorous and ironic, it will be devastating- And with that in mind I DO not want my computers connected to the net when that happens.

Microsoft's stand on this issue, which has been too hard line for too long has CAUSED the general public to BELIEVE that attacks like this ACTUALLY DO COME FROM MICROSOFT... And I know this public because they entrust me to repair their XP and Vista and 2000 and ME and 98 and even Windows 95 machines. I do my best and I keep all the systems I repair or modify within the confines of what the person paid for the OS... But my clients WILL believe, if they see that screen, that Microsoft is indeed asking for that information fro some reason.

90 Percent of regular users will fall for this, EVEN with the warning.

Microsoft can post these blogs and bulletins and even send out email to registered owners of Vista, but IT WILL NOT DO ANY GOOD... People do not READ this stuff, they program their Windows Live Mail Desktop Beta to mark Microsoft email as SPAM (I do, don't you?!)because most of the time is IS spam!

And the other alternative, and the one UNFORTUNATELY used TOO MUCH.. IS to make a SECURITY UPDATE and PIGGY BACK it on to either a regular "Non Security" Update, or package it with another "Critical Security Update" - which is neither Critical, Security-Related, or an UPDATE. Or, worse yet: A FORCED UPDATE that has NO DETAILS and WILL NOT LET YOU GET TO MICROSOFT UPDATE unless you let it run, which has happened to me five ties in the last 2 months.

What is it going to take for this to stop? Well, I'll tell ya. First: LOWER the price of Vista Ultimate Edition- This is the version that people will be able to use and protect themselves in the best way. Microsoft, by putting most people into the class where they HAVE to buy the lesser versions, are actually depriving users of needed utilities and MMC Snap ins that are STANDARD for Windows 2000 and XP Pro and MCE.

I do not mind walking into the lions den here and telling the lion that his breath stinks. WGA STINKS.

WPA is one thing, and I accept that. But, it is ENOUGH. I do not believe I should have to activate Vista And Validate it.

Since Vista is the most Microsoft has tried to COPY Macintosh, then learn a lesson from MACOS:

MACOS, last I saw, does not need to be validated every 4 and 3/4 seconds. MACOS DOES NOT REQUIRE ridiculous resources for some pretty GUI. MACOS Jaguar runs on a 400 MHz Motorola Processor and 128 MB of RAM and I have it sitting in my other room and it is just as fast as my Vista machine.

But VISTA... Well, I have 1 Gig of Ram and a 3 Gig P-IV CPU and it is just about enough. Most 500-dollar machines with Vista Home are only given 512 MB... Well it is not enough.

Therefore, I find this new Phishing scheme both humorous and ironic... Because the floodgates are open, and Microsoft opened them.

If you dare someone to knock a chip off your shoulder, you can bet someone WILL knock it off- And that is what WGA is to most people: An "I dare you" that a lot of clever people are willing to deal with.

I say, drop it and make Vista more like XP so that it will run our expensive programs without having to wait for all the software companies to redesign everything...

OR, Stop developing Vista, and give us back XP MCE... Which not only was a superior OS, but it did not make me ask for permission to get up and go to the bathroom.

Remember: This is a bad thing of course, hackers fooling people into revealing personal banking info... But you have to admit... Even your cleverest WGA developer... How could they NOT have predicted that this was going to happen?

Well: Good Luck to you and I hope you can figure out a way to protect people from it.

"Beer Good Vista bad"

-James Hetfield