lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [day] [month] [year] [list] 
From: mds at helices.org (Michael D Schleif)
Subject: RE: Computer Sabotage by Microsoft

Thor Larholm <thor@...x.com> [2003:09:11:15:28:33-0700] scribed:
<snip />

> One thing is sure, we will see a greater level of automation for patch
> management in the future. I can reasonably imagine the default
> installation of Longhorn to automatically download and install
> critical
> security updates, and given an agreement like we already have with
> most
> AV software I see no problems in that.

And when that happens, m$oft will lose a very profitable bit of
business, especially regarding HIPAA governed medical facilities,
research labs, high security government applications, &c.

The fact is, it can take many months and tens of thousands of dollars to
get a single piece of medical equipment certified at a fixed and static
configuration, any change from which automatically nullifies said
certification.  These types of enterprises cannot allow anybody to just
up and change software -- patches or not -- or risk losing income, or --
worse -- going out of business.

Unfortunately, automatic updates are not quite the slam dunk some might
think them to be . . .

-- 
Best Regards,

mds
mds resource
877.596.8237
-
Dare to fix things before they break . . .
-
Our capacity for understanding is inversely proportional to how much
we think we know.  The more I know, the more I know I don't know . . .
--
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20030911/a63e698c/attachment.bin

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ