Hacker News new | past | comments | ask | show | jobs | submit login

No, the "nefarious" means they are simply using APIs like WriteProcessMemory/ VirtualProtectEx/CreateRemoteThreadEx to modify the memory of runing programs or use SetWindowsHookEx to install global hooks (which inject your dll into every process for the non low-level events)



Is this any different than what a virus would do?


Yes. Intent matters.


Is these APIs are only used by viruses, why do they exist?


Because they are also used by debuggers, security tools, and other flavors of "keep the world humming along despite its best efforts to kill itself."


We might add to the list "tools and utilities desired by power users".


Sure, but if you use/build a tool that modifies how Windows runs by trawling through and manipulating internal process memory that explicitly is not meant to be modified by anything else, that's on you.

It's like asking why Nintendo won't support the NES you desoldered the CPU from and replaced with a higher clock capable CMOS 6502 and new crystal

"Nintendo is such a bad company, I upgraded my NES and now it can't play anything"

No buddy, you broke the machine!


I don't remember anybody in this thread making any claims about what Microsoft should or should not support.


Yeah. It's not fair to judge Microsoft for people abusing the API, but that's a different question from whether or not they should lock it out. That would be a big freedom reduction, and even though I'm sure it would make life slightly easier for for some parts of Microsoft, I'm pretty sure it wouldn't be for the best.

Going to the game console example, blaming Nintendo for the botched upgrade is dumb, but what if Nintendo puts security keys in every component to prevent repair? Yeah, it's fair and good that they foiled the 3 modders who bricked their devices and tried to claim warranty, but they also sent 3 million extra devices to the dump that otherwise could have been fixed by enterprising teenagers with soldering irons. It would be 100% fair to blame them for that.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: