Hacker News new | ask | show | jobs
by Zirro 3914 days ago
Microsoft _should_ not be anything like where you work. I'm not a Windows-user, but if I were I would hope and expect that the update mechanism for one of the worlds most used pieces of software was closely guarded by several layers of computer-based signing and human approval.
2 comments
gdulli 3914 days ago
Employees of a company like Microsoft aren't special, they're like anyone else and they make mistakes. There's extra bureaucracy to catch mistakes, but the bureaucracy was also designed by people, who make mistakes. You'll never get perfection no matter how much you try. Windows has had few big failures for me in 20+ years. Measured against its considerable complexity, that's shockingly impressive.
link
odonnellryan 3914 days ago
There are certainly test environments that these updates are pushed to much more freely than the production environment. Mistakes happen.
link
Zirro 3914 days ago
I certainly understand what you are saying, but I must repeat the essence of my previous post. For something so critical, there should simply be too many safeguards for any test to make it through all the way to end users.

If a test update really did make it through, it would warrant significant questioning of the procedures at Microsoft. If a test could get through without being discovered, then so might malicious code.

link
dpark 3914 days ago
It was a test update and there will undoubtedly be a review of this. http://www.zdnet.com/article/microsoft-accidentally-issued-a...

The fact that a test patch got to this stage doesn't mean the safeguards aren't in place or that malicious code could have slipped through, though. Assuming even basic competence, this test update could not have been signed, and if someone had managed to push malicious code, the same would be true, so it wouldn't have been installed onto target machines.

link
jdmichal 3914 days ago
> For something so critical, there should simply be too many safeguards for any test to make it through all the way to end users.

The only way to guarantee that is to not allow updates to be published at all.

> If a test could get through without being discovered, then so might malicious code.

You are conflating very different things. MSFT being able to publish updates is normal and does not require a security breach, even if one particular update shouldn't have been published. An external entity being able to publish an update containing malicious code would be a huge security breach, requiring both the ability to sign the update and to publish it.

link