| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <200301281219.34295.steve@videogroup.com> From: steve at videogroup.com (Steve) Subject: FW: Security in a Connected World On Friday 24 January 2003 09:15 am, Richard M. Smith wrote: >FYI: > >-----Original Message----- From: Bill Gates [mailto:BillGates@...irman.microsoft.com] >Sent: Thursday, January 23, 2003 11:16 PM >To: rms@...puterbytesman.com >Subject: Security in a Connected World > > Even though each win32 process runs in its private memory space, device drivers run runs in kernel space. Add to that Win2k does not have any protection on read and writes for the above, allowing a driver to bypass the win2k security entirely. And the win32 API is hoplessly insecure and not likely to be rewritten. Everything else almost becomes moot. More marketing drabble obviously. After their top people met with a security consultant he confirmed that they did indeed not have a clue about security. The fact the some 50,000 programmers are stuck in a booth with minimum help or coordination, told to produce code in a tight development window or else, is not exactly inducive to security either. -- Steve Szmidt
Powered by blists - more mailing lists