lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [thread-next>] [day] [month] [year] [list] 
From: b.griffin at cqu.edu.au (Brad Griffin)
Subject: another product affected by recent MS IE '@' patch

 Comments inline

> -----Original Message-----
> From: David Farinic [mailto:davidf@....com] 
> Sent: Monday, February 09, 2004 6:25 PM
> >> In Germany, and maybe in other parts of the world, some 
> providers are 
> >> attracting customers by announcing webpage packages where email 
> >> address == web address. so, john@....de is the email, and 
> john@....de 
> >> is the website, while jane@....de may be the website of 
> john's wife.
> 
> >From: Nick FitzGerald [mailto:nick@...us-l.demon.co.uk] Well silly 
> >them.
> 
> >What kind of technical support can you expect from a "technology 
> >company" that deliberately flouts the standards of the technology it 
> >employs and provides a service based on known incorect and non- 
> >standards conforming behavior in a generally available 
> software product 
> >it has no control over?
> 
> Company which is exploring current technology  not just obey 
> masses that what internet is about ... if you run any company 
> on the internet u know that creativity is that what counts 
> and making things easier 4 ppl is part of their job as well.
> This "feature" has been adopted because it was easy 4 ppl and 
> saved them time increasing there productivity. Unfortunately 
> sometimes increasing of productivity means decreasing level 
> of security and we might get such setbacks but it's not 
> reason to not go forward.
> 
> Regards David|F

Hi David and all

Totally ignoring documented Standards to make a buck is NOT going
forward. 'Creativity' and all the 'what the Internet is about' stuff
does not mean you should ignore a Standard, especially in business. 

Fuel companies love diluting petrol with Ethanol nowadays because they
can save/make a buck, but would you call that 'going forward' when you
discover your engine life has been drastically reduced? 

I would suggest that the better way to go would be to stick to the
standard, lest the company go broke because their 'creativity' sent them
that way.


> 
> This mail was content-checked for malicious code and viruses... 

*Snipped the two paragraph advert for GFI*

> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.netsys.com/full-disclosure-charter.html
>

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ