resource center
  See your link here
|
IDG News Service -
Hackers are distributing a file that they say lets users of the corporate version of Microsoft Corp.'s Windows Vista operating system get around the software's antipiracy mechanisms.
Windows Vista must be "activated," or authorized by Microsoft, before it will work on a particular machine. To simplify the task of activating many copies of Vista, Microsoft offers corporate users special tools, among them Key Management Service (KMS), which allows a company to run a Microsoft-supplied authorization server on its own network and activate Vista without contacting Microsoft for each copy.
The software, Microsoft.Windows.Vista.Local.Activation.Server-MelindaGates, lets users spoof that KMS process, allowing them to activate copies of the enterprise editions of Vista, its creators say. The hacked download can be found on various file-sharing sites.
Microsoft's official KMS offering is available to customers with 25 or more computers running Vista. The machines activate the software by connecting to the KMS server and must reactivate every six months.
KMS is not the only option that enterprises have for volume activation of Vista: They can also call Microsoft by phone or connect over the Internet to activate the software.
The MelindaGates hack, which uses the name of the wife of Microsoft co-founder BIll Gates, allows users to download a VMware image of a KMS server, which activates Windows Vista Business/Enterprise edition, its creators claim.
Microsoft did not respond to requests for comment on the hack.
Vista is the first Windows operating system that requires volume users to activate each product. The new activation processes are aimed at reducing piracy.
One security expert said he isn't surprised that KMS has been cracked and noted that the MelindaGates hack offers some insight into piracy.
"This also shows how piracy is not just about kids swapping games," said Mikko Hypponen, chief research officer at F-Secure Corp. "The only parties that would need a KMS crack would be corporations with volume licensing."
IDG.net
The Tangled Web: Silent Threats & Invisible Enemies
Download Now
Data in Action: Making the Planet Smarter
Register Now
Email Archiving: A Business-Critical Application
Get this paper now!
Gene Kim's Practical Steps to Achieve and Maintain NERC Compliance
Learn seven steps operators can take to meet IT configuration requirements set forth in the NERC-CIP standards.
The Workday User Experience Video
Watch Workday's Creative Director, Scott Lietzke, discuss the business-centered design philosophy at Workday.
Not Just Words: Enforce Your Email and Web Acceptable Usage Policies
Get this paper now!
Business Process Framework Demo
Learn about Configurable Business Processes and Calculated Fields. Watch Now!
The New World of eCrime: Targeted Brand Attacks and How to Combat Them
Download This Whitepaper Now!
Manager Experience Demo
Go beyond self-service solutions to perform more effectively. Watch Now.
Sign up to receive updates on the latest Security resources
CIO
Computerworld
CSO
DEMO
GamePro
Games.net
IDC
IDG
IDG Connect
IDG Knowledge Hub
IDG TechNetwork
IDG Ventures
IDG.net
InfoWorld
ITwhitepapers
ITworld
JavaWorld
LinuxWorld
Macworld
Network World
PC World
The Industry Standard
Copyright © 1994 - 2010 Computerworld Inc. All
rights reserved. Reproduction in whole or in part in any form or medium
without express written permission ofComputerworld Inc. is prohibited. Computerworld and Computerworld.com and the respective logos are trademarks of International Data Group Inc. |
