The love network

Recently, Linux fans kept me up late at night reading mail about why the "I Love You" virus, worm, or Trojan horse (depending on how you prefer to classify it) demonstrates that Microsoft's Windows architecture is inferior to that of Unix. Frankly, I never thought there was any question as to whether Unix is superior to Windows, although I should add that being superior to Windows is hardly a gargantuan achievement.

If you had asked me, I would have told you the weak link that allowed the I Love You virus to do so much damage was Microsoft Outlook. The flood of letters made me realise that it is not enough to stop there. But even after I considered all the issues my readers raised, I still don't think Linux is the answer to this problem.

Neither is the answer virus detection software, nor is it mail filters designed to catch problems at the mail server. In most cases, the only way to know when to look for a virus is after the trail of damage tells you it is loose. By then, it is too late for many people to use virus-detection software or e-mail filters to protect themselves.

You may be surprised to hear that I do not believe the answer is to cripple Outlook by disabling its capability of running attachments as programs.

It irks me that many technical users who were smart enough to avoid opening this particular attachment seem to feel superior to those who were caught by the virus. I challenge those users to give me a legitimate technical reason why people should not be able to open any attachment to any e-mail message.

Why isn't it preferable to create an environment where people don't have to know the difference between opening a file to view its contents and opening a file to run its contents? Most people I know don't want to know the difference between viewing and running a file. And I don't think they should have to.

Every reason why you can't safely open an executable e-mail attachment today can be traced back to a flaw in the design of the mail program, operating system, or both - but the concept is sound.

In that case, Microsoft is doing the right thing by attempting to deliver what people want. Where Microsoft has gone wrong is by delivering what people want without enough regard for the safety they need.

Microsoft has added a safety feature here and there, but, in fact, there is really only one reliable way to give users what they want without sacrificing the safety they need: you design the typical desktop computer to run programs only within a tightly controlled security sandbox.

Yes, I'm talking about network computing. No, I'm not talking about the Windows Terminal Server kind of network computing. Terminal Server is just warmed-over thin clients. And thin clients simply move the point of vulnerability from the client to the server, with potentially disastrous consequences.

I'm talking about Java-style network computing, although Java itself isn't the issue. The real issue is the capability of running applications without allowing them access to anything but the obvious necessities such as display, keyboard and mouse.

Microsoft can deliver this kind of environment. But it won't. The only way to build a truly safe execution environment for applications is to insulate them from the guts of the system. In other words, to make Windows safe, the Windows execution environment has to become more abstract.

This creates a big problem for Microsoft. A safe, abstract execution environment is relatively easy for competitors to reproduce on platforms other than Windows. And we all know which way the decision will go if Microsoft has to choose between its hold on the desktop and the safety of its customers.

Yes, Linux is already safer than Windows, but it isn't bulletproof. If Linux advocates want to capitalise on the failure of Windows to deliver a safe environment, Linux programmers should prove it can be done. One way might be for the Linux community to fully embrace Java.

Regardless, Linux alone won't solve the problem. Network computing will.

Join the newsletter!

Error: Please check your email address.
Rocket to Success - Your 10 Tips for Smarter ERP System Selection
Keep up with the latest tech news, reviews and previews by subscribing to the Good Gear Guide newsletter.
Show Comments

Most Popular Reviews

Latest Articles

Resources

PCW Evaluation Team

Ben Ramsden

Sharp PN-40TC1 Huddle Board

Brainstorming, innovation, problem solving, and negotiation have all become much more productive and valuable if people can easily collaborate in real time with minimal friction.

Sarah Ieroianni

Brother QL-820NWB Professional Label Printer

The print quality also does not disappoint, it’s clear, bold, doesn’t smudge and the text is perfectly sized.

Ratchada Dunn

Sharp PN-40TC1 Huddle Board

The Huddle Board’s built in program; Sharp Touch Viewing software allows us to easily manipulate and edit our documents (jpegs and PDFs) all at the same time on the dashboard.

George Khoury

Sharp PN-40TC1 Huddle Board

The biggest perks for me would be that it comes with easy to use and comprehensive programs that make the collaboration process a whole lot more intuitive and organic

David Coyle

Brother PocketJet PJ-773 A4 Portable Thermal Printer

I rate the printer as a 5 out of 5 stars as it has been able to fit seamlessly into my busy and mobile lifestyle.

Kurt Hegetschweiler

Brother PocketJet PJ-773 A4 Portable Thermal Printer

It’s perfect for mobile workers. Just take it out — it’s small enough to sit anywhere — turn it on, load a sheet of paper, and start printing.

Featured Content

Product Launch Showcase

Latest Jobs

Don’t have an account? Sign up here

Don't have an account? Sign up now

Forgot password?