lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
Open Source and information security mailing list archives
| ||
|
Message-ID: <1079145801.24236.13.camel@d1f1.d1f.org> From: flur at d1f.org (flurdoing) Subject: Re: MS Security Response is a bunch of half-witted morons They think we are morons too!! Just in case you don't know how to read and have somehow found yourself working on security with MS products, you can listen to a CISSP (they are trained and certified readers) read the security bulletins to you as well as promote whatever crap they feel like selling you todayTM. http://msevents.microsoft.com/CUI/EventDetail.aspx?EventID=1032247504&Culture=en-US What is the world dot coming to? PS: MS04-010 is more serious then they want everyone to believe. Think of all the files with static paths that contain the location of other sensitive files or information (office ini? mail spools? sam?) etc etc... You get the idea- no need to watch the webcast. On Fri, 2004-03-12 at 13:13, Kim Scarborough wrote: > > Try to read Microsoft's latest security epistles: > > > > http://www.microsoft.com/technet/security/bulletin/ms04-009.mspx > > http://www.microsoft.com/technet/security/bulletin/ms04-010.mspx > > > > with a browser that does not have JavaScript enabled... > > It works in Lynx. If you look at the page source, all the content is there. > The problem is this tag just before the technical description: > > <div id="s3l1-4" style="display:none"> > > I've been playing around with custom stylesheets but I can't seem to find a > way to override that. > > In the meantime, I'd recommend people go here: > > <http://cgi.w3.org/cgi-bin/html2txt?url=http%3A%2F%2Fwww.microsoft.com%2Ftechnet%2Fsecurity%2Fbulletin%2Fms04-009.mspx>
Powered by blists - more mailing lists