lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [day] [month] [year] [list]
Message-ID: <42276FD7.6010306@pacbell.net>
Date: Thu, 03 Mar 2005 12:13:11 -0800
From: "Susan Bradley, CPA aka Ebitz - SBS Rocks [MVP]" <sbradcpa@...bell.net>
To: Jeroen van Rijn <xananda@...il.com>
Cc: bugtraq@...urityfocus.com
Subject: Re: Microsoft Antispyware Beta window docking issue


They spyware beta newsgroups are where feedback like this should go:

http://communities.microsoft.com/newsgroups/default.asp?ICP=spyware&sLCID=us

Jeroen van Rijn wrote:

>If you place your taskbar to the righthand side of the screen (I'm
>assuming it'll do this for all positions other than the default
>bottomhugging one):
>
>- Popup messages about hosts file changes and other such notifications
>float up and up and up and are damned hard to read or click. I'm
>assuming this is a bug in their window docking code.
>
>How is this a security issue? A user cannot confirm or deny the action
>taken by the software and has to hope the default action doesn't
>interfere with system operations.
>
>Another bug, not specifically security related, but which I found in
>Antispyware nonetheless is that it has a habit of doing scheduled
>scans twice. By this I mean that if I cancel the scheduled scan
>(because I know the system to be clean and can use the resources
>better at the moment), the software will happily popup again 10
>seconds later, and start scanning again.
>
>If anyone knows of an official Microsoft channel where these bugs can
>be reported... I'm yet to find one in the software itself.
>
>- Jeroen.
>
>  
>

-- 
Chapter 4 of The Complete Patch Management Book: 
https://www.ecora.com/ecora/jump/pm149.asp

So why is it the only book on NT Event Logging is out of print?
http://tinyurl.com/3kwc2

And if you don't know about www.eventid.net You should!



Powered by blists - more mailing lists