lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Message-ID: <20040312150835.B502.THMAILLISTS@yahoo.com>
From: thmaillists at yahoo.com (Troy)
Subject: Re: MS Security Response is a bunch of half-witted morons

On Fri, 12 Mar 2004 16:09:21 -0500, jim_walsh@...dyear.com wrote:

> Your points are well taken and understandable.  But if you are supporting 
> a M$ operating system enough to need to read the SB's, then wouldnt your 
> IE be up to date to read them?  Even if you would just use IE to read M$'s 
> site?  To sit and scream about web design decisions in this mailing group 
> seems a little childish.  And if one was to argue that "Aanyone needs to 
> read these articles not just people that support M$ OS's", well to 
> that...most people that have a M$ OS as an end user have auto update 
> turned on and dont even think twice about it...if they update at all.

I took Nick's comments differently. The way I understood it, the problem
is that Microsoft forces you to use a scripting language to read a
security article. A scripting language could have security problems. As
a result, many people have JavaScript disabled for security reasons,
regardless of their version of IE.

I agree with Nick. It is ironic and unfortunate that MS would force
users to turn on a potentially unsafe scripting language to read a
security bulletin.

-- 
Troy


Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ