Full Disclosure mailing list archives

Re: M$ - so what should they do?

From: Valdis.Kletnieks () vt edu
Date: Mon, 21 Jun 2004 21:53:16 -0400

On Mon, 21 Jun 2004 18:39:10 EDT, joe <mvp () joeware net>  said:

Absolutely, I posted that same message in a MS specific listserv today. My
comments were along the lines of treat it like a purchased app and set up a
new team to rebuild the app from the ground up, all new code. That way all
of the hidden nuggets waiting to bite people are gone and you can say from
the ground up security is considered. Anything built on old legacy code can
always be questioned as unsafe given the number of old issues that keep
popping up even now.


On the other hand, remember that we're talking about 35-50 *million* lines of
code here - that's a massive amount of rewriting that's not generating any
useful income for the company while it's going on. (You unixoids - we're
talking about something on the same scale as redoing the Linux kernel, XFree86,
and Mozilla from the ground up, from scratch).   Estimate how many
programmer-years it took to do it the first time, read Fred Brook's "The
Mythical Man-Month" and apply a suitable adjustment for "second system effect"
(bonus points if you can figure out how much the second system effect added to
the *first* time around ;).

And then realize that all those programmers are basically a boat anchor until
they get finished with the re-write....

Also, to fix many of the design issues will require changing so many APIs and
break so many programs that make use of the old way of doing things that they'd
lose backward compatability.

For instance - getting rid of 'con' as a special file name would remove all
those attacks that depend on 'con.txt' or similar not behaving the way you'd
expect. On the other hand, every single program that assumes that 'prn' gets
you the printer will get b0rked over....

It's not as simple as "throw it out and start again" - what's feasible for a
student's semester project or a small company's small software package isn't as
feasible when it's one of the largest sets of intertwined code ever written....

Attachment: _bin
Description:

Current thread:

RE: M$ - so what should they do?, (continued)
- - - RE: M$ - so what should they do? Eric Paynter (Jun 21)
    - RE: M$ - so what should they do? joe (Jun 21)
    - Re: M$ - so what should they do? Valdis . Kletnieks (Jun 21)
    - RE: M$ - so what should they do? Eric Paynter (Jun 21)
    - Re: PLEASE QUIT YACKING ABOUT M$ Steffen Schumacher (Jun 22)
    - Re: PLEASE QUIT YACKING ABOUT M$ Billy B. Bilano (Jun 22)
    - RE: PLEASE QUIT YACKING ABOUT M$ Sean Crawford (Jun 22)
    - Re: M$ - so what should they do? Aditya, ALD [ Aditya Lalit Deshmukh ] (Jun 22)
    - RE: M$ - so what should they do? Ron DuFresne (Jun 21)
    - RE: M$ - so what should they do? joe (Jun 21)
    - Re: M$ - so what should they do? Valdis . Kletnieks (Jun 21)
    - Re: M$ - so what should they do? Valdis . Kletnieks (Jun 21)
    - Re: M$ - so what should they do? Nick FitzGerald (Jun 21)
    - Re: M$ - so what should they do? Aditya, ALD [ Aditya Lalit Deshmukh ] (Jun 22)
    - Re: M$ - so what should they do? Valdis . Kletnieks (Jun 21)
    - RE: M$ - so what should they do? joe (Jun 21)
    - Re: M$ - so what should they do? Valdis . Kletnieks (Jun 21)
    - RE: M$ Getting Better? joe (Jun 21)
    - RE: M$ Getting Better? Eric Paynter (Jun 21)
    - RE: M$ Getting Better? joe (Jun 21)
    - RE: M$ Getting Better? Eric Paynter (Jun 21)

(Thread continues...)