Microsoft yanks Windows 7 tool over open-source code swipe
Blogger Rafael Rivera accuses Microsoft of lifting open-source code for netbook upgrade utility
Computerworld - Microsoft has yanked a tool it touted as a way for netbook owners to install Windows 7 without a DVD drive after a prominent blogger accused the company of using open-source code without acknowledging where it originated.
The free utility, Windows 7 USB/DVD Download Tool (WUDT), has been pulled from Microsoft's site, as has the page of instructions on how it was to be used.
Microsoft released the Download Tool last month, and at the time trumpeted the utility as a workaround that would let netbook owners create a bootable flash drive from a downloaded .iso file, or disk image, of Windows 7 purchased from Microsoft's online store.
"We are currently looking into this issue and are taking down WUDT from the Microsoft Store site until our investigations are complete," a Microsoft spokeswoman said in an instant message reply to questions Tuesday. "We apologize to our customers for any inconvenience."
Microsoft's move was prompted by Rafael Rivera's claim last Friday that WUDT included code gleaned from a GPLv2-licensed open-source project. Rivera, who writes the Within Windows blog, said Microsoft had "obviously lifted" code from the ImageMaster project, and had then compounded the problem by not sharing the source code for its modifications, or the tool itself, to the project, as required by the terms of GPL (GNU General Public License).
GPL is a widely-used free software license that was originally drafted by Richard Stallman of the GNU project.
Microsoft has previously released several code modules under GPL, including the Live Services Plug-in for Moodle last July.
Today, Microsoft declined to answer questions about the future of WUDT, including whether it would re-release the tool at some point, and whether the utility had been removed from its site because of the GPL brouhaha that Rivera instigated.
Rivera said he was "99.9999% sure" that Microsoft used the open-source code within WUDT, and provided code examples to prove his point.
"I'm not a GPL expert -- the thing reads like Latin -- but it is my understanding that the tool would have to be open-sourced, as required by GPL," Rivera said today in an interview conducted via instant messaging.
Actually, the algorithm in question originated with the open-source file archiving software, 7zip, which is licensed under the LGPL, or GNU Lesser General Public License, a software license published by the Free Software Foundation, said Rivera. Microsoft's tool grabbed code from the GPL-protected ImageMaster project, however.
As to Microsoft's next step, the company was mum, although Rivera took a stab at its alternatives. "Ultimately, I believe one of two things will happen: The tool will either be rewritten or open-sourced," said Rivera. "I suppose the third option would be [to make it] no longer available."
This isn't the first time that Rivera has called Microsoft on the carpet. Last January, he and fellow blogger Long Zheng, who writes I Started Something, argued that a change to User Account Control (UAC) in Windows 7 could be exploited by attackers to secretly disable the feature.
- Microsoft strips some Windows 7 users of IE11 patch privileges
- Windows 7 powers more than half of all PCs
- HP sticks thumb in Microsoft's eye, discounts consumer Windows 7 PCs
- Microsoft retracts Windows 7 PC end-of-sales deadline
- Microsoft ends Windows 7 retail sales
- Microsoft promises IE11 on Windows 7
- Boutique PC seller laughs all the way to the bank on the back of Windows 7
- Microsoft starts auto-installing Windows 7 SP1 on consumer PCs Tuesday
- Microsoft warns of looming retirement for Windows 7 RTM
- Consumer Reports makes case for Windows 7 PCs
Read more about Legal in Computerworld's Legal Topic Center.
- Top 10 Endpoint Backup Mistakes When considering endpoint backup options, be sure you're making the right decisions. Protecting data on endpoints has become more challenging because of recent...
- Transforming Security: Designing a State-of-the-Art Extended Team The information security mission is no longer about implementing and operating controls.
- The Big Data Security Analytics Era Is Here New security risks and old security challenges often overwhelm legacy security controls and analytical tools.
- Building an Intelligence-Driven Security Operations Center The openness of today's networks and the growing sophistication of advanced threats make it almost impossible to prevent cyber attacks and intrusions.
- Keep Servers Up and Running and Attackers in the Dark An SSL/TLS handshake requires at least 10 times more processing power on a server than on the client. SSL renegotiation attacks can readily...
- On Demand: Mastering the Art of Mobile Content Management Mobile device usage in the enterprise has skyrocketed, and it continues to escalate. IT must answer to users who demand access to their... All Legal White Papers | Webcasts