lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Message-ID: <1079145801.24236.13.camel@d1f1.d1f.org>
From: flur at d1f.org (flurdoing)
Subject: Re: MS Security Response is a bunch of half-witted morons

They think we are morons too!!

Just in case you don't know how to read and have somehow found yourself
working on security with MS products, you can listen to a CISSP (they
are trained and certified readers) read the security bulletins to you as
well as promote whatever crap they feel like selling you todayTM.

http://msevents.microsoft.com/CUI/EventDetail.aspx?EventID=1032247504&Culture=en-US

What is the world dot coming to?

PS: MS04-010 is more serious then they want everyone to believe. Think
of all the files with static paths that contain the location of other
sensitive files or information (office ini? mail spools? sam?) etc
etc... You get the idea- no need to watch the webcast.
 

On Fri, 2004-03-12 at 13:13, Kim Scarborough wrote:
> > Try to read Microsoft's latest security epistles:
> > 
> >    http://www.microsoft.com/technet/security/bulletin/ms04-009.mspx
> >    http://www.microsoft.com/technet/security/bulletin/ms04-010.mspx
> > 
> > with a browser that does not have JavaScript enabled...
> 
> It works in Lynx. If you look at the page source, all the content is there. 
> The problem is this tag just before the technical description:
> 
> <div id="s3l1-4" style="display:none">
> 
> I've been playing around with custom stylesheets but I can't seem to find a 
> way to override that.
> 
> In the meantime, I'd recommend people go here:
> 
> <http://cgi.w3.org/cgi-bin/html2txt?url=http%3A%2F%2Fwww.microsoft.com%2Ftechnet%2Fsecurity%2Fbulletin%2Fms04-009.mspx>


Powered by blists - more mailing lists