lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [thread-next>] [day] [month] [year] [list] 
Message-ID: <Sea1-F154AFsTmIClmp0004ec5a@hotmail.com>
From: randomisedletters at hotmail.com (Random Letters)
Subject: [Bug Proofing Microsoft.com with Internet Explorer ** Part

<opinion>

I think this demonstrates that the web design people haven't a clue about 
security. They're opening up their webserver to all sorts of potential 
expliots. If he can get some simple javascript to run then maybe other 
people can also do more sophisticated stuff.

Also, if they're that lax about security on their own machines, even their 
externally facing machines, then what does that say about the products they 
sell? They're supposed to be in the software business and stress in their 
marketing campaigns that their top concern is now security.

Is is hypocrisy or is it incompetence?

</opinion>

_________________________________________________________________
Use MSN Messenger to send music and pics to your friends 
http://www.msn.co.uk/messenger

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ