posted on November 17, 2009 by Bryant Zadegan
For those of you visiting from AeroXperience, you guys are likely well aware of how AeroXperience was started. We began as a set of forums in March of 2004 dedicated to Windows Code Name Longhorn, which later became Windows Vista. We’ve prided ourselves with breaking news about some of the most coveted features in Vista during the Vista development process as well as with breaking the initial reports of the direction of Windows 7. AeroXperience has been one of the most accurate (and most opinionated, in some cases) sources of Windows coverage and news; amongst our bloggers, we’ve had the pleasure of having both Stephen Chapman and Rafael Rivera posting on behalf of AeroXperience during our run, and as I sit here next to them now in the PDC press room, I want to shift the attention to what winJade is and how we plan on rolling this out.
winJade is, in some senses, a new direction for us while allowing us to persist in our current mission of delivering relevant and informative Microsoft coverage. During this initial blog roll-out (planned for PDC), the purpose of the blog will still be to deliver the informative material and solid commentary on the world of Windows which you’ve come to expect. However, the purpose of the forums will shift from merely being a place to discuss Windows to becoming more of a home for novice Windows users, experienced users, and Windows experts to come together and not only talk about Windows and help each other but to also work on individual and group projects. winJade will be a home for people with ideas to implement those ideas, gather feedback, and gain an audience for the next great Windows program, tool, or concept. Stan and I have a few ideas we will be revealing on winJade when the time comes in addition to the innovative ideas which continue to find development time on the forums.
My utmost thanks go to Sam Johnson for implementing my vision for the new winJade blog, to Frank with Contrast Hosting for helping us in this transition, and to the many members on the forums who kept track of our progress and offered the many suggestions we’ve read.
From AeroXperience’s start as a home for discovery in Windows Longhorn to winJade’s mission for information and innovation, we’re looking forward to being your home not only for Microsoft news but for some of the most promising Windows-related projects.
posted on October 25, 2009 by Bryant Zadegan
Good evening, Slashdotters. Feel free to check out the rest of our Windows 7 launch coverage, including a quick video interview with Microsoft Corporate Vice President Brad Brooks as well as a rundown of how the Windows 7 tweet-up went on Thursday night
We’ve tried to withhold ourselves from sourcing our news from leaky valves in Microsoft as of late (and you can see where that’s gotten us. ahem), but we don’t just stay away for the sake of keeping ourselves out of that eternally stressful race for content. We tend to stay out of it because behind every leak, someone’s job suffers as a result.
I had a very open interview with someone at the launch event. This person frequently deals with product leaks, and as a result, it’s fair to say that the person knows exactly how said leaks impact work, the lives of everyone connected to the project, the public perception of a product, and so forth. My interview with this particular Microsoft employee was fulfilling in the sense that I’m able to offer an uncensored glimpse into what Microsoft has to deal with whenever someone decides to leak a build, leak a screenshot, break an embargo, and what not.
Check the break to read about how it all went down. Keep in mind that there’s no video or audio and that this is, indeed, a long read apparently not as long as some people have seen in the past. Thanks is due to the anonymous commentators who pointed this out.
posted on October 24, 2009 by Bryant Zadegan
For a week or two after the official Windows 7 launch, I’ll be posting all sorts of videos, interviews, and other content. Stay tuned and either bookmark this post (and check repeatedly) or simply check AeroXperience for more updates. These will be the last major posts prior to the rollout of winJade, of which I’m intentionally withholding details because I’m mean and simultaneously awesome.
- The day after 7: perspective… and Brad Brooks (October 23, 2009) (Update: video brightened)
- The Windows 7 tweet-up in New York City, Winners, etc. (October 24, 2009)
- The Effects of Leaks: A Candid Interview (October 25, 2009)
- Unfortunately, the Windows 7 Keynote Interview with Thorsten Ganz cannot be published due to technical issues.
That’s it. Keep an eye on us for PDC!
posted on September 9, 2009 by Maurice
On Tuesday, some no-good hackers decided to post a vulnerability, complete with a proof-of-concept Python script, that can remotely crash any Windows-based computer that has the SMB 2.0 network protocol enabled, which includes any system running Windows Vista or later. So like anybody with a bunch of free time would do, I cracked open a couple of VM’s and had some BSoD fun with Vista but noticed that 7 didn’t budge whenever I sent the exploit packets, so I suspected that they probably tested the RC version against this exploit
Well my gut feeling was right, and Microsoft released a security advisory later that day stating that it only affected Windows Vista and Server 2008, as well as the Windows 7 RC, but no mention of the 7 RTM (or Server 2008 R2). Plus, the scope was narrowed further when it was revealed that Public network locations were unaffected (they blocked incoming connections anyway). So nothing that bad to get riled over.
Of course, until a hotfix is released, if you’d like to completely protect yourself from the exploit you can follow the directions to either
- Block ports 139 and 445 from inbound connections using a firewall
- Disable the SMB2 driver
- Both (why not? unless you’re actively using file/printer sharing)
posted on July 30, 2009 by Maurice
As those involved in the Windows 7 community may know, Microsoft has failed to fix a crucial flaw in the User Account Control feature of the operating system which allows a specific whitelist of applications to inject code that can allow any application to silently elevate. The code was released about a month ago as a proof-of-concept by Leo Davidson showcasing the flaw elevating a command prompt window using the whitelisted explorer.exe process.
The company stands by UAC in its final form, but they’re taking it a step further by blocking the program that causes the exploit using their own security software.
Today, I just happened to download the zip file that causes the exploit when Microsoft Security Essentials greeted me with a nice dialog telling me that what I just downloaded is malware, specifically HackTool.Win32/Welevate.A and HackTool.Win64/Welevate.A (depending on architecture). While I’d agree that this can be considered a form of malware, it’s just a very bad way of dealing with the situation. However, Leo noted that Windows Defender in Vista did not detect this exploit, and Bryant confirmed that the same is true for Windows 7 (where the trick would actually work), so this seems to be exclusive to Microsoft Security Essentials.
It’s not clear what method the signatures take to detect it, but I promptly recompiled the source code under the Visual C++ 10.0 toolkit using VS 2010 Beta and the application ran undetected. Not a very good solution if it actually hash checks for the specific applications.
Leo, and I (or Bryant) will update our respective pages accordingly as we discover more. Bryant is seeking official word from Microsoft on what’s going on. Meanwhile, you can see the VirusTotal report here and grab the exploit here.
Update (~Bryant): let’s take a look at what’s going on here from a different approach. Microsoft says that the vulnerability here is not actually a vulnerability and is, in fact, by design. However, they’ve also classified Leo’s proof-of-concept as malware. Logically speaking, if a process whose sole purpose is to exploit a perceived vulnerability is marked as malware, then it’s reasonable to assume that the perceived vulnerability is indeed a significant problem. Basically, Microsoft contradicted themselves by listing the proof-of-concept as malware.
Update 2 (~Bryant): A friend of mine proposed one particular argument as a potential explanation to this issue, whereby this is a bug within Microsoft Security Essentials. The reasons I don’t believe this to be the case are:
- This exploit was specifically named as
HackTool:Win32/Welevate.A (A quick googling shows only three links; one is to the aforementioned virustotal link, the second and third to a Microsoft encyclopedia entry.
- This particular label only applies to this specific proof-of-concept
- A reasonable vulnerability assessment (”Medium”) was applied to this particular proof-of-concept, which makes sense given that this security vulnerability in UAC is only really an issue if either a user runs a malicious application or if some other internet-facing application were to be compromised. I covered the latter in an older post of mine where I explain how this flaw essentially raises the vectors of attack many-fold.
Leo and Bryant contributed to this post.
posted on June 16, 2009 by Bryant Zadegan
It has come to my attention (Thanks, William and Pastor Johnnie Sloan!) that a number of spambots took advantage of our lenient forum registration mechanisms to spam other blogs and forums. To this end, I’d like to personally apologize for the inconvenience caused. We are also trying to curb spam on our own blog and board, but this new form caught us off guard mainly due to its implementation.
Spambots were registering zero-post user accounts and filling the About-Me profile information with ads for the usual cocktails of worthless medications. We’ve done a mass deletion of all zero-post accounts made after the 20th of May and temporarily disabled the ability for a member with less than 100 posts to edit his/her profile. As a result, the spam links associated were typically in this format:
http://www.aeroxp.org/board/index.php?showuser=insert_number_here
We expect to return back to normal operating conditions soon.
Again, my sincerest thanks to William and Pastor Johnnie Sloan for tipping me off, and to the Akismet crew for guidance on the matter.
For those looking for IPs and emails to block, I can’t give block-worthy IPs as the automated nature of the spam meant that new IPs were used for each account. However, one domain suffixed to the bulk of our spam was “@top-medz.com”. If you operate your own forums and have recently fallen victim to spammers using your board to spam others, please check for this domain and any others and pass it to the guys at Akismet.
Comments Off
posted on October 31, 2008 by Bryant Zadegan
This is the segment where I talk about how PDC went and what I thought of everything tied to it, including but not limited to such factors as my flight here, my hotel stay, the conference itself, the quality of the sessions, etc. in order to give people a feel of what to expect should said people ever decide to come to PDC, for example, next year.
I’m doing this because many people have contacted me during the course of PDC to find out what I would recommend doing in order to get the most out of PDC and other similar events, so I’ll almost definitely put up posts like this after every single major event which I attend.
You can catch the list after the break, though here’s the quick summary:
Virgin America: Overrated.
The Omni Hotel in Downtown Los Angeles: Amazing.
AMD: Awesome, even if afflicted by some minor foibles.
Microsoft: Wonderful with most everything this time around.
Read More »
posted on October 30, 2008 by Bryant Zadegan
The taskbar team has an amazing innovation up their sleeves, but if you ask any of the team directly, what do you get? They’ll tell you that the taskbar is more an “evolution” than a “revolution” in the Windows UI.
For those of you who aren’t convinced, the old taskbar actually happens to still be around, but only in the sense that the opened applications can have text next to their icons in the new taskbar. Besides that, the new taskbar functionality will all still remain intact, even though you can bring it close to looking like the old taskbar. Take a gander below; you’ll see more in our interview next week.
posted on October 28, 2008 by Bryant Zadegan
Yesterday was packed with much news about Azure and other cloudy things. Thus, I’ll focus instead on some of the other things which took place on the 27th of October, the first day of PDC.
Today’s happenings, likely including images from the party as well as images from other goings-on, will come near the end of the night (pacific time).
Read More »
Follow Bryant on Twitter! 
