AU Government To Build "Unhackable" Netbooks

bennyboy64 writes "In what may be one of the largest roll-outs yet of Microsoft's new Windows 7 Operating System, Australia's Federal Government decided to give 240,000 Lenovo IdeaPad S10e netbooks to Year 9-12 students. Officials are calling them 'unhackable.' iTnews reports that the laptops come armed with an enterprise version of the Windows 7 OS, Microsoft Office, the Adobe CS4 creative suite, Apple iTunes, and content geared specifically to students. New South Wales Department of Education CIO Stephen Wilson said that schools were 'the most hostile environment you can roll computers into.' While the netbooks are loaded with many hundreds of dollars worth of software, 2GB of RAM, and a 6-hour battery, the cost to the NSW Department of Education is under $435 (US) a unit. Wilson praised Windows' new OS: 'There was no way we could do any of this on XP,' he said. 'Windows 7 nailed it for us.' At the physical layer, each netbook is password-protected and embedded with tracking software that is embedded at the BIOS level of the machine. If a netbook were to be stolen or sold, the Department of Education is able to remotely disable the device over the network. Each netbook is also fitted with a passive RFID chip which will enable the netbooks to be identified 'even if they were dropped in a bathtub.' The Department of Education also uses the AppLocker functionality within Windows 7 to dictate which applications can be installed."

Sure...

[gregthebunny]

This needs a "goodluckwiththat" tag...

Re:

[2.7182]

No they need openbsd with that...

Re:Sure...

[Jurily]

Famous last words.

Re:Sure...

[hawk]

In fact, it sounds kind of like naming your daughter, "Chastity" . . .

hawk

Re:

[Anonymous Coward]

CS4 on a 1.6Ghz Atom.. good luck with that indeed. Never mind the rest of the "unhackable" stupidity.

Re:Sure...

[Spatial]

For anyone wondering why that's so bad, a 1.6GHz Atom is somewhere around an 800Mhz Pentium 3 in terms of performance.

Re:Sure...

[tangent3]

The main issue with the Atom is that it does not do Out of order execution [wikipedia.org].
ARM processors do, so an equivalently speed ARM will easily out perform the Atom

Place your bets here

[iCantSpell]

100 worthless USD for cracking it open in less than 30 days

Comment removed

[account_deleted]

Comment removed based on user account deletion

Re:So stupid

[Culture20]

Footnote: Yes, I'm aware that security through obscurity is no security at all, but that's not the issue here. The issue is that instead of nobody caring or trying to break the reasonable security they've implemented, now they've got thousands of people working on it. THAT does matter.

Security through obscurity's little brother? Security through "meh"?

Comment removed

[account_deleted]

Comment removed based on user account deletion

Re:Absolutely

[SanityInAnarchy]

All security, no matter what type it is or how it is implemented, is basically designed to slow down anybody who might try to break it.

I think you're confusing real security with poor security. Granted, often real security is difficult or impossible...

It is possible to create a system which is actually impossible to crack, short of social engineering or unprecedented changes in technology. Example: SSH keypairs. The last major vulnerability in this was due to a stupid, stupid flaw in the implementation. You can argue that such flaws are inevitable, but I'd argue that this is an argument about human fallibility, not about the theoretical limitations of a software system. Depending how much you're willing to invest, it's possible to write a program in such a way that you can mathematically prove it to be correct.

The only other way SSH keypairs are likely to be defeated is when quantum computers become feasible.

That said, I think it's unlikely they've created a truly invincible system with all the software they mentioned. There's likely to be a bug somewhere in Win7, CS4, Office, or Tunes.

Re:Absolutely

[apoc.famine]

By opening up, you can get a bunch of people working on your security to strengthen it, to help offset the few people who might be interested in breaking it.

But that only works for software you can fix, or you can get the vendor to fix. I highly doubt that's the case here.
 
Nobody is out to burn my house down, because nobody cares. But if I go out and shout, "My House is UNBURNABLE....MUAHHAHAHA!", there's a chance that some asshat will put a torch to it just to prove me wrong.
 
Security through obscurity doesn't work. Security through provoking asshats into action really doesn't work, unless you have the power to fix what they break.

Re:

[lorenlal]

Security through "meh" vs. Security through "I am INVINCIBLE" provides quite a difference in response. As summary/article/etc points out though, when you tell someone they can't do something, the first thing they want to do is... find a way to do it.

I suggest they send out flares and try to get others to make the same claim on bigger projects to divert the attention.

Re:

[PC and Sony Fanboy]

Security through "meh" vs. Security through "I am INVINCIBLE" provides quite a difference in response.

After spending that sort of money, did you expect them to say "We've got a bunch of sorta-hackable laptops we're lending to children, and we'd really like you to respect the boundaries that we can't enforce"?

Re:So stupid

[hot soldering iron]

Exactly. The purpose of any lock is to provide a speed bump. Hopefully a big enough bump that you'll decide the effort isn't worth the payoff. This asshat increased the payoff 1000 fold in notoriety, and social recognition.

Roku is a perfect example of 'Meh'

[ezrec]

The Roku vidio player is an excellent example of security through "meh". It's almost an ideal box for a Boxee or MythTv frontend, but it is pretty much unhackable (cryptographically signed u-boot, kernel, and ramdisk). They've released their sources (but not their crypto key) months ago, yet not one single crack is available for it.

Why? Because (a) they don't make a big deal of the security features to the public, b) it's stupid cheap ($99 USD), and (c) It Just Works.

The combination of all three make 'meh'. Due to (a) there is no implicit challenge to the security community, (b) trumped the TiVo problem of trying to get 'more value for your money' out of an expensive piece of kit, and (c) prevents your Average Joe hacker from wanting to break a working (and useful to him) device.

Good counterexamples are TiVo, Linksys routers, and the Wii.

For TiVo, it was expensive enough that people wanted to get more value for their money, and felt it was time well spent to hack it.

With Linksys routers, It just Doesn't Work caused people to spend a lot of time finding a way to make some perfectly good equipment work at all for them.

The Wii advertised to the community that it was unhackable, which promptly cause all manner of security professionals to take up arms and figure out how to hack it.

Titanic Syndrome

[tverbeek]

It's analogous to the Streisand Effect. And when the machines get hacked, the id10t who declared them "unsinkable" will experience Titanic Syndrome.

Re:

[account_deleted]

Comment removed based on user account deletion

Re:

[JAlexoi]

WoW on S10e will not run in any capacity.

Re:

[PC and Sony Fanboy]

WoW on S10e will not run in any capacity.

Best. Security. Ever.

With crappy hardware, all they can do is browse porn, and, uh, use cs4, apparently.

Re:

[ultranova]

Instead, some asshat announces to the world "Bow to our unhackable laptops! We are awesome! HAHAHA!", and now thousands of hackers and security researchers out there have made it their personal crusade to find a way to totally decimate all the security on the box. You're right... It's gonna take about 1 month for an exploit for these things to make it to the front page on slashdot. Fucking idiots.

Perhaps. But then again, this is Australia we're talking about. You know, the country who's government is despe

Re:So stupid

[Johnny Loves Linux]

>What is it with governments and hubris? If they had just shipped all these laptops without any mention of "unhackableness", you know what would have happened?

Here are some clues for why they announced such a thing. From the article: 'There was no way we could do any of this on XP,' he said. 'Windows 7 nailed it for us.' *and* the cost to the NSW Department of Education is under $435 (US)

Care to make a wager as to whether or not a certain large corporation in the Pacific Northwest gave them an extra special deal on the hardware & software on the condition that they praise Windows 7 over XP? I mean, they're purchasing netbooks and running Windows 7 on them instead of the lighter weight XP? Anybody else see anything wrong with this picture?

Re:

[account_deleted]

Comment removed based on user account deletion

The Slashdot editor degraded the story.

[Futurepower(R)]

It seems to to me that, given the Slashdot summary, GradiusCVK is correct when he said this in his original comment, although he could have shown more elegant manners:

'Instead, some[one] announces to the world "Bow to our unhackable laptops! We are awesome! HAHAHA!", and now thousands of hackers and security researchers out there have made it their personal crusade to find a way to totally decimate all the security on the box.'

However, the problem is with kdawson, the Slashdot editor, not the Australian government or the article to which the Slashdot summary links.

The article says, "[government] seeks to build 'unhackable' netbook network". The meaning is that the Australian government is doing the best it can in building a network.

kdawson, the Slashdot editor says, "... Government To Build "Unhackable" Netbooks".

kdawson made the title sensationalist and misleading. This amazes me: In all these years, Slashdot editors seem to have learned nothing about being editors. kdawson turned a wonderful story into a misleading experience.

Re:

[echucker]

I bet he did exactly what was intended. He created a story that would incite the summary reader to respond. More comments = more page views = more ad revenue.

Re:The Slashdot editor degraded the story.

[multisync]

However, the problem is with kdawson, the Slashdot editor

kdawson, the Slashdot editor says, "... Government To Build "Unhackable" Netbooks".

kdawson made the title sensationalist and misleading.

kdawson turned a wonderful story into a misleading experience

Your obvious derision for kdawson notwithstanding, the "NSW seeks to build 'unhackable' netbook network" headline came from the itnews.com.au site, which you would have discovered for yourself if you had clicked the second link in the article.

Your anti-kdawson rant also misses the real point, which is that this "wonderful story," as you describe it, is nothing more than part of Microsoft's Windows 7 launch campaign. The real story lies in this paragraph:

incredibly, while the netbooks are loaded with many hundreds of dollars worth of software, 2GB of RAM and a six hour battery, the cost to the NSW Department of Education is under $500 a unit.

Wow! That is incredible, and a real coincidence that this is occurring just as Microsoft prepares to roll out Windows 7.

What you should be taking Slashdot to task for is allowing this advertisement - replete with Microsoft marketing phrases like "Total Cost of Ownership (TCO) " and quotes from DET executives gushing that "There was no way we could do any of this on XP" - to run, instead of an insightful analysis of what this little Microsoft publicity stunt was really all about. Of course your TCO will be way down when Microsoft gives you enterprise versions of their software for free.

As someone mentioned above, this is a victory for "trusted computing," and other technologies for enabling corporations to control your hardware. Someone should write an article about that.

Comment removed

[account_deleted]

Comment removed based on user account deletion

Re:

[v1]

physical access >> root access

Way I look at it is, if they only have remote access, it's possible to make it unhackable. If they have physical access, it's always going to be possible to hack into it. Maybe very very difficult, and possibly very expensive, but never impossible.

Satellite TV boxes have been exploring this truth for many years now, they're probably the experts in the field. Right now what it takes is an expensive microscope and a lab. If they can't keep hackers out, what on earth is

Someone is gonna open it.

[bertoelcon]

It runs Windows.

Your setup is flawed from the start.

Re:

[nurb432]

True the OS will be at risk ( regardless of the OS ), but getting into the firmware ( TPM/DRM/Call for help ) will be much harder. Not impossible of course, but the people that can do that wont be stealing 400 dollar school laptops.

Re:

[cratermoon]

For computer security professionals, we might as well start with the proposition that it's already been hacked and start working on what the consequences will be.

Re:

[Xugumad]

Forget Windows, in security terms if someone has the hardware, you can fairly much consider it merely a matter of time. There are some hardware systems that are essentially unhackable, but... not in this price range. Consider that "unhackable" smart cards cost $100+ a piece, and infer from there...

Re:

[bertoelcon]

Your odds of getting broke by a simple script kiddie are much higher on windows, if an experienced black hat is trying to hack it all bets are off.

Re:

[pjt33]

Here though they have physical access to the device. You don't need to be an experienced black hat to take a hard drive, mount it in another machine, and modify /etc/shadow. Or possibly simply boot from a USB drive to do the same, in which case it really is script kiddie territory.

usb boot?

[reiisi]

I wonder if the BIOS will allow disabling USB boot. Or if the admins who sold the AU government the bill of goods will think to disable it.

Re:

[account_deleted]

Comment removed based on user account deletion

I long for the day...

[Anonymous Coward]

...when Slashdot news beginning with "Australian Government" won't necessarily end with a rephrasing of "shows off its technological naivety".

Re:

[the_womble]

...when Slashdot news beginning with "Australian Government" won't necessarily end with a rephrasing of "shows off its technological naivety".

....when Slashdot news about any government won't necessarily end with a rephrasing of "shows off its technological naivety".

Same Govt.

[retech]

This is the same govt. that put a guy in jail on child pornography charges for having a Simpson's parody porno on his computer.

Ignorance and arrogance seem to always walk hand in hand.

Re:

[afaik_ianal]

No, it's not actually. This is the New South Wales government, whereas the "child abuse" case (I don't believe he was actually accused of distributing child porn) was the Queensland government.

Australian government is much like US government in that we have separate state governments plus a federal government. The states are technically sovereign over the federation, but like the US, there's constant to-ing and fro-ing about how much power they've chosen to hand over to the federal government.

We in NSW ha

Re:Same Govt.

[laughingcoyote]

And, of course, since we're already into "thought crime" territory here, how long until they make it illegal to even talk about what happened (since you obviously must be thinking about the video in some way to comment on it, you sick pervert!) At some point soon, this will have to be stopped.

MS must have given a great

[AHuxley]

Lunch or deal. Some state politician and/or bureaucrat must be getting a nice thanks later in life.
The PR reads like pure MS marketing slop with a cute upgrade hint.

Re:

[kayoshiii]

MS currently has the NSW school system eating out of its hands I remember talking to a highschool teacher a few years back who was sharing his concerns that MS had basically brokered a deal with them where they could not teach competing products. I have not seen the actual agreement so I don't have anything solid to back it up with.

Reading between the lines when talking with the IT head of TAFE in my region of NSW basically told the same story. (We were trying to reach an arangement for Tafe to use some fac

windows "installs" applications

[Gothmolly]

And thus, the FAIL. How does this prevent anyone from RUNNING other applications, i.e. via the classic "download the exe with IE but tell it to run instead of save" trick, or from a non "installed" Firefox, etc from a USB drive?

Re:

[MikaelC]

AppLocker restricts which applications are allowed to run, not which are allowed to be installed. See e.g. this review [4sysops.com].

Too late

[Anonymous Coward]

I just spoke to a friend in Australia.. its been pwned already using the nuke the bios and boot from a livecd method.

They even disabled the RFID.

Re:Too late

[poetmatt]

yeah, nuking the bios from a cd is ridiculously easy. It's actually a feature that people can do so. Hirens boot CD [hiren.info] comes with very simple methods for that.

I bet someone will just make an app that unlocks the laptop and wipes the firmware for them so that the laptops can have actual use.

Re:

[nurb432]

That is if you can boot from a cd. If they let you, then their admins are a waste.

Re:

[Shikaku]

Or you can just take out the hard drive and put the programs/OS to do it on the hard drive.

Re:Too late

[wes33]

hey - some guy on slashdot said he talked to some other guy
who Australia who heard from somewhere that these computers
could be hacked

It *must* be true!

Re:Too late

[Anonymous Coward]

I am not some guy, I am Anonymous Coward, I have more posts than anybody else here, and I am a trusted member of this community. Your sarcasm is completely out of place.

Re:

[bertoelcon]

These are netbooks, if they could boot from cd then the admins must have rigged in a drive and are doing something.

Re:

[Tony Hoyle]

Depends if it's BIOS or EFI. The tools to nuke EFI really aren't there yet (although they'll likely appear in the next few months).

Of course with EFI if you can break into the shell you've got command line access the machine is basically hosed.

Re:Too late

[Proudrooster]

There were these guys that made this ship that was "unsinkable" which on its maiden voyage ran into an iceberg and sank. Compromising the BIOS in this case is analogous to the iceberg. "Unsinkable, Unhackable, Waterproof." BTW, isn't the Thinkpad supposed to work underwater?

Re:

[NotQuiteInsane]

BTW, isn't the Thinkpad supposed to work underwater?

You're thinking about the Panasonic Toughbook. Weatherproof, waterproof, dustproof, drop-proof. For a while, British Gas / Transco were sending them out with gas engineers -- from what I was told, they used them for work tracking (read: glorified Filofax) and for storing gas equipment service manuals (beats carrying a dozen A4 binders around with you, even if the machine weighs about as much as a concrete block).

From what I've heard, the US and UK Military like them quite a bit, and they tend to get feature

Re:

[ignavus]

I just spoke to a friend in Australia.. its been pwned already...

Australia's been pwned already!?!

Well, yeah, any Aboriginal person can tell you that.

This looks pretty solid

[davide marney]

This looks like a pretty well thought out plan. The fact that the entire application suite will be getting automatic upgrades is great; this is something that Linux users have enjoyed for many years. The "unhackable" claim is PR fluf, sure, but making such a claim should inspire their budding engineers to explore the edges of their new boxes. Since the boxes are tagged with RFID, I certainly hope no student keeps them after graduation (not that they're likely to -- 4 years is a long time to keep a netboo

Bathtub & RFID

[Lord Satri]

From the summary:

Each netbook is also fitted with a passive RFID chip which will enable the netbooks to be identified 'even if they were dropped in a bathtub.'

What's the relation between RFID [wikipedia.org] and water immersion? RFID will allow knowing where the netbook is and can pass along some information, but it is not by itself the RFID chip that will tell you you took swim with your netbook! No?

Re:

[pelrun]

Sure, for subcutaneous use, but there's nothing stopping one being put in a ceramic package and placed on the motherboard looking like just another IC.

Get me one of these and find out how long it lasts

[marcansoft]

"Tracking software embedded at the BIOS level"? Last I checked, those "tracking schemes" just force-fed Windows some driver/app at the BIOS level. Install any other OS and it becomes useless (not to mention that BIOSes these days aren't even hard to hack). As for the RFID, I don't see how disassembling it and taking it out is rocket science. Nevermind that the students themselves are going to be owning any kind of app installation protection in the blink of an eye.

Sorry, using software to secure a platform against its physical holder has never worked for long, but even just trying to do it on an insecure platform like an x86 PC is beyond useless. None of this is has even a remote chance of working without the heaviest-handed TPM-on-CPU-die functionality and signing of each and every piece of software, but that has no chance of working because no one would want such a platform, it would be painful and expensive to develop, and it could never exist given the buggy and insecure nature of PC software in general.

Video game consoles with strong hardware security and tightly controlled software environments with little interoperability requirements get cracked all the time to run homebrew and/or pirate games, what makes these people think their little netbook won't be?

For what it's worth, Linux vs. Windows here makes little difference. The entire scheme is doomed to fail from the start due to the nature of a PC solution like this. Sounds like Microsoft just sold these guys a bunch of nonexistent security.

Re:Get me one of these and find out how long it la

[nurb432]

"Tracking software embedded at the BIOS level"? Last I checked, those "tracking schemes" just force-fed Windows some driver/app at the BIOS level.

That is the 'consumer level' sort of protection. There is another level that is available to 'special customers', but i do agree that you wont see it on some cheapo school laptop.

Unhackable like the Australian Porn Filter?

[dncsky1530]

Setting aside the fact that I don't think giving students laptops is the most efficient use of resources (smaller class sizes, more funding for teachers, arts and science programs etc would be better)... I can't help but wonder if this will be as unhackable as $84 million porn filter [slashdot.org] released a couple years ago.

AppLocker

[GF678]

AppLocker WILL make it more difficult to run unauthorised apps, even if they're distributed/run via USB. It won't block things entirely but just like every security measure, it will make things more difficult, and that's all you should be able to expect. Give Microsoft some credit - I'd love to get a hold of one of these netbooks.

Muahahahaha

[Cytlid]

Our evil plan to control the students has become reality. Muahahhahaa!

so let me get this straight

[HangingChad]

While the netbooks are loaded with many hundreds of dollars worth of software, 2GB of RAM, and a 6-hour battery, the cost to the NSW Department of Education is under $435 (US) a unit.

The netbooks have hundreds of dollars of software loaded and still only cost $435 a unit. So the cost of the unit is being subsidized and the department is hailing this as some big leap forward in cost of ownership? And some of the big changes are related to the BIOS.

Already, the department has noted the loss or damage of just six netbooks out of the 20,000 rolled out since August - and have tracked one teacher using their device on a field trip in New Zealand.

Yeah, really cool that the school can track and potentially monitor everyone using one of these devices, even if the machine is not physically turned on via the RFID tags. Now there's a big win.

DET also uses the AppLocker functionality within Windows 7 to dictate which applications can be installed on the device.

Even better. Add McAfee filtering to control content and MSFT's own antivirus technology...add up what all that would cost in a real world enterprise. Just the software costs alone would dwarf the cost of the device.

I look at the cost of the device, the software and all the centralized control and think, "Or just install Linux and get 95% of that functionality right out of gate." And the 5% you don't get is the spying and monitoring part. What lesson is the school teaching here?

This is certainly a win for someone, but I'm not sure it's the students and teachers.

Why?

[whisper_jeff]

Why would anyone issue a challenge like that over netbooks for students? Unhackable? Bullshit! Some hacker out there is going to take that as a challenge and hack into the thing in, I'm guessing, less than a week. And some poor student is going to have his netbook hacked because some nimrod decided to talk smack about how awesome-sauce these netbooks are and described it a "unhackable." Unreal...

Re:Why?

[MattBD]

I don't think too many kids will have their netbooks broken into by hackers - most school-age kids don't have credit cards. More likely someone will find a crack and release it to the world for the kids to use.

Haha.. no

[Anonymous Coward]

I work for one of the departments involved, hence the anonymous post.

This is typical government posturing, and has nothing little to do with the what's actually going on.

From what I've seen, the RFID chips are redundant, they're using the machine's BIOS UUID to track machines through software, I don't think they even record the embedded RFID codes at all, as that requires a physical reader device, and they're not handing them out to schools. Normally, RFID tags aren't used for anti-theft, but for inventory tracking.

The BIOS tracking is pretty standard and off-the-shelf, it's not designed to stop professionals, but it will catch stupid thieves. Software protection is not huge, but most 'problems' will be met with an F12 network boot and a fresh system image, so the harm students can do will be limited and easily reversible. Students get limited space to save their work, and that is backed up centrally, so they shouldn't lose any data. On top of that, most questionable sites are blocked by the internet proxies, so that cuts out lots of potential sources of harmful stuff.

Really, the true protection the laptop gets is that every student receives one for free, but a replacement laptop has to be paid for out of their parent's pockets. Students will learn to be careful with them or face punishment from their parents.

There's lots of other silliness going on though, especially as it's my tax dollars going to waste.

For example, the enterprise agreement for the Adobe CS4 suite was a big deal. They spent millions purchasing the software before anyone had actually tried running any of it on an actual laptop. Only after the government had signed the contracts did they bother, only to find out that the screens were too small. All of the Adobe dialog boxes were designed for a vertical height larger than the physical screen resolution, so the OK/Cancel buttons are cut off. The workaround was to install a driver that supports a larger virtual desktop and pans the screen around. It's hideous. This is what happens when you let politicians make technical purchasing decisions.

Similarly, the laptops are rather anemic, which is expected for a netbook, but a lot of the software and content they want to publish is very video-centric. Apparently some types of video, like Flash content and h264, don't always play well, and high-res content is a slide show.

Re:

[MrKaos]

There's lots of other silliness going on though, especially as it's my tax dollars going to waste.

I wonder how many 10's of millions of dollars will be spent on licencing fees? The entire infrastructure could have been built upon Linux distributions and tailored to the education departments requirements. As it stands I wonder if they even looked at a Linux distribution.

What waste of money.

Re:

[Maelwryth]

"Really, the true protection the laptop gets is that every student receives one for free, but a replacement laptop has to be paid for out of their parent's pockets. Students will learn to be careful with them or face punishment from their parents."

A couple of thoughts on that. The first is that my daughter went through six cellphones one year (not paid for by me). Children have no idea how much things cost because generally they don't have to work for them. The second is that the loss of your lapto

From Lenovo?

[DoofusOfDeath]

If I recall, China's People's Liberation Army is part-owner of Lenovo.

Exactly why do the Aussies thing there won't be back doors built into the hardware or BIOS?

Re:From Lenovo?

[PC and Sony Fanboy]

If I recall, China's People's Liberation Army is part-owner of America.

Fixed that for ya.

Re:

[wvmarle]

If Lenovo would build in back doors, and is found out, then at best they go bankrupt. I think that is enough of a reason for any company NOT to build in that kind of back doors. And they will be found: non-standard chips present in the hardware are a prime target for further investigation, and BIOSes can be flashed (or, presumably, the original software checked against known-good implementations or at the very least decompiled for investigation).

So even if the PLA is part-owner of Lenovo, why would you thi

Unhackable laptop?

[Chief Crazy Chicken]

etch-a-sketch!

Re:

[Russianspi]

Shake, shake, shake. Pwned!

Re:

[Anarchduke]

Sorry, try again, but thank you for playing

http://hackaday.com/2004/11/14/hack-an-etch-a-sketch/ [hackaday.com]

There sure are a lot of stories on /. that...

[Informative]

... give the impression that Austalia's governors are stupid fucks.

unhackable Windows 7 ?

[viralMeme]

"Stephen Wilson said that schools were 'the most hostile environment you can roll computers into.' While the netbooks are loaded with many hundreds of dollars worth of software, 2GB of RAM, and a 6-hour battery, the cost to the NSW Department of Education is under $435 (US) a unit. Wilson praised Windows' new OS: 'There was no way we could do any of this on XP,' he said. 'Windows 7 nailed it for us.' At the physical layer, each netbook is password-protected and embedded with tracking software that is embed

Can't RTFA

[1u3hr]

All I get is an "interstitial ad" that counts down from 40, then starts over again. And again.

WTF?

cs4 on a Atom cpu with intel gma video?

[Joe The Dragon]

that thing is very under powered for that and they they want windows 7 on top of that?

give me one

[FudRucker]

i will flash the bios and wipe win7 off and have Linux running on it in less than an hour.

itunes on a locked down laptop? student owners?

[Joe The Dragon]

How much work will IT have to do for each itunes update? how about all the ipod updaters?

also will they be unlocked should the student finish his or her studies at the school. So the student can install what software they want.

or are they left with system with The update service switches off once a student finishes Year 12 and that has a lock of lockdown carp still on with no way to get rid of it or any way to update any software left on it?

I've used one

[bbqsrc]

Right, well, I actually attend one of the schools who have a deployment of these laptops.

There's a label on the bottom that threatens you that if you steal it the police will find you. There's tamper-proof screws, so normal phillipshead's wont do the job. The BIOS is obviously passworded, and I managed to break the bootloader of Windows 7 by pressing ESC twice. No OS found apparently.

For "secure" laptops, you can right click pretty much anything and run it as an admin. We ran cmd.exe as an admin to create a proper Admin account. Completely bypasses AppLocker. Apparently, according to the laptop admins, the government wont allow printer drivers that aren't already part of Windows 7, so no printing for you.

The laptop maintainers don't even have administrator access. They have to box the laptops up and ship them to a centre to be "fixed", even if it's as simple as reinstalling a driver. Pathetic.

It's only early days, and the nuking of the bios can be done easily, through Wubi or other means, but USB boot is disabled so you'll have to find alternative means. And I know it's likely moot to post so late after the rush, but I had to say it.

Btw, it's CS4 Elements, it's not the true suite. And it includes Dia, the open-source diagram editor, which I found odd. Open source deployments always amuse me.

To finish, Firefox is not included by default and has many issues when installing, as you don't have access to Program Files, so it confuses the installer to no end unless you change where you're installing it to.

These laptops require ethernet access to activate and are mapped to a single username, so good luck using it if you don't have a Department of Education account. The all have filtering software so no porn for you kids, even when at home. Myspace and Facebook are blocked even from home connections. It's a rather horrible crippled setup that I'd wish upon no-one.

Welcome to the future of computing. Homeschool your kids.

So much for Open Source

[DaMattster]

Stephen Wilson and New South Wales were supposed to be pro open source. I guess Microsoft and a bunch of others ridiculously discounted their software again to get them to bite. Stephen Wilson was reputed to be pro Linux. I guess the powers that be got to him. Too bad, so sad. Notice how these netbooks are eerily Orwellian in their surveillance. Also, no computer is unhackable - given a short length of time, we will see the Slashdot posting that these netbooks have been hacked. The only unhackable computer is the one not connected to any outside network.

From a Students View

[LifesABeach]

OK, let's ignore for now, the "Un-Hackable" nonsense. What if I want to learn Physics Modeling using LISP? Sign Language? I have to go buy it? But it's free software! Wait? I have to wait to have some faceless multinational corporation "grant" permission? My homework is due next Thursday, and my teacher says, "no excuses". How about my paper due on Shakespeare's Histories? Bing says, "do you mean Shake Spears? Sorry, no matches" I can get extra credit if I make, and submit a short video on the properties of a Candle Flame; YouTube uploads are now blocked? What Educator said, "It's OK to only learn a tiny subset of knowledge."

Hackable yes, but has a kill switch.

[w0mprat]

"If a netbook were to be stolen or sold, the DET is able to remotely disable the device over the network. Even if the hard drive of the machine was swapped out or the operating system wiped, it would be useless to unauthorised users."

It may be hackable yes, /. groupthink even posits how easy it may be. I think we've seen 'Windows' mentioned and somehow assumed they would inevitibly make obvious mistakes like allowing booting from usb/cd.

They appear to have some kind of kill switch at the BIOS level, which sounds pretty potent and difficult to circumvent to me. I would presume when the stolen machine connects ot the internet, it calls home, if it's been nuked, it then bricks itself and refuses to boot of anything.

Doesn't mean you couldn't strip the laptops for parts if stolen. That is if you didn't go the trouble of replacing bios chip (if not flashable)

Despite that, they do seem to have to gone to significant lengths to thwart theft more than anything. However whatever IT outfit told them that the product would be 'unhackable' is guilty of telling lies, that kind of statement smacks of marketing department (not engineers) of some company telling it's ignorant client what it wants to hear (yet can't reasonably expect to get) just to get paid.

So it will be hacked, of course and the blame will fall everywhere (ie students) except the marketing people who made the claims.

These machines will be as unhackable as...

[PhunkySchtuff]

These machines will be as unhackable as the Titanic was unsinkable.

All the Government are doing is putting out a challenge and ultimately proving that a committee of "IT Experts" will be no match for a determined teenage schoolboy who wants to look at porn.

Re:I dont understand ...

[Alain Williams]

I dont understand why this would be considered unhackable. Exploits have already been released for windowed 7.

It is quite simple: Microsoft said that it was unhackable, so as far as the idiot politicians were concerned it must be true.

What grates with me is that the Australian Federal Government is spending money training kids to use MS s/ware - something that will stay with them for the rest of their lives. The MS marketing department must be overjoyed.

What education should be about is understanding, if you just train someone in one version of s/ware many just adopt a point and click approach with little understanding of what they are doing. You need different sorts of s/ware to make them think. Schools should use a mixture of: MS, Mac & Linux PCs.

Re:I dont understand ...

[drsmithy]

What education should be about is understanding, if you just train someone in one version of s/ware many just adopt a point and click approach with little understanding of what they are doing. You need different sorts of s/ware to make them think. Schools should use a mixture of: MS, Mac & Linux PCs.

You seem to have severely misunderstood the purpose of these machines.

Re:

[plsuh]

What education should be about is understanding, if you just train someone in one version of s/ware many just adopt a point and click approach with little understanding of what they are doing. You need different sorts of s/ware to make them think. Schools should use a mixture of: MS, Mac & Linux PCs.

I think it's a little more subtle than that. 90% of the kids using these things will go on to be standard users in life, treating computers as one tool among many. Have you seen how regular users treat computers? Most of them are uncomfortable using a new app without formal training -- even today's twentysomethings. Even on a Mac (yes, I'm a Mac guy).

What concerns me more are the other 10%, who will become power users, sysadmins, and developers. If all they know is MS and their pitifully low standards for s

Re:

[gbjbaanb]

What grates with me is that the Australian Federal Government is spending money training kids to use MS s/ware - something that will stay with them for the rest of their lives. The MS marketing department must be overjoyed.

that depends on how big the media story is when several of these "unhackable" machines are hacked. If there's a big scandal ("politicians waste tax money on microsoft's latest, but easiest-to-hack OS") then not only will W7 be synonymous with 'hackable' regardless of its actual security b

Re:

[badfish99]

If they're so locked down that the students can't do what they want with them, then no, they won't. They will just teach the students to accept spoon-fed information and not to try to investigate anything for themselves.

Worthwhile educational investment?

[reiisi]

Okay, I'll play the straight man and ask, "MSWindows? Worhtwhile?"

Re:

[Arimus]

Running a live cd assumes that the BIOS boot options aren't locked down [and that it doesn't use a strong password and can't easily be circumvented just by shorting out the CMOS battery]

Re:

[Baron_Yam]

To run a live CD of Linux... wouldn't the BIOS have to be set to boot from CD-ROM? The locked BIOS?

So, now you're cracking the case open, and disconnecting the (possibly soldered) battery and hoping the BIOS resets to factory defaults that haven't been set to include the lockouts.

Or, pull out the hard drive, plug it into another machine and do what you will - which might not do a lot of good if they've got the processor set to run signed code only.

I'd try pulling the hard drive and cloning it then playing

Re:

[tverbeek]

Lenovo has done some remarkably bad engineering in some of their laptops. The place I work has a small fleet of TabletPC ThinkPads that have chronic problems with styluses that can't be removed from their storage nook, latches that fall apart, and hinges that die of metal fatigue. The design of these bits are "clever", but the materials just don't hold up and when they fail they do so utterly. After four years in the possession of a teenager, you won't be able to sell these things on eBay.

Re:

[PC and Sony Fanboy]

Even in the community of nations, someone has to have the least competent government on earth.

I guess the USA lost that title in the last election...

Re:

[schon]

When the communities say I told you so, I wanna see Bill Gates cry.

The problem is that won't happen.

This was issued with great fanfare, press releases all around. What happens next week when it gets broken?

Nothing. Nobody will hear about it. The government isn't gonna issue a press release saying "oops, we were wrong", and the hackers that pull it off either won't have the resources to buy a feed in PR Newswire, or if they do, nobody will publish it, out of fear of offending their advertisers (ie. MS.)

It will be published on Ars and BoingBoing, and the people who make t

Re:

[Ant P.]

Perhaps they meant "hack" in the original sense, i.e. you can't do anything useful with them.