| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
From: ben at algroup.co.uk (Ben Laurie) Subject: Operating Systems Security, "Microsoft Security, baby steps" Schmehl, Paul L wrote: >>-----Original Message----- >>From: full-disclosure-admin@...ts.netsys.com >>[mailto:full-disclosure-admin@...ts.netsys.com] On Behalf Of >>Todd Burroughs >>Sent: Thursday, March 18, 2004 2:17 AM >>To: full-disclosure@...ts.netsys.com >>Subject: [Full-Disclosure] Operating Systems Security, >>"Microsoft Security, baby steps" >> >>Updating any OS is a pain in the ass, but all of them have >>flaws and need to be updated. I find that at least with the >>UNIX-like ones, you can go on the Net and do your updates >>faster than you get rooted. > > > This is foolish thinking. Do you really think that, when a patch comes > out, *then* the hackers start working on exploits? The exploits were > being used *long* before the patch comes out. The only thing a patch > gets you is protection against *future* hack attempts against *that* > weakness. This is demonstrably not true - it depends who finds the problem.
Powered by blists - more mailing lists