lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
Open Source and information security mailing list archives
| ||
|
Message-ID: <15533237421C6E4296CC33A2090B224A01270BD2@UTDEVS02.campus.ad.utdallas.edu> From: pauls at utdallas.edu (Schmehl, Paul L) Subject: Operating Systems Security, "Microsoft Security, baby steps" > -----Original Message----- > From: full-disclosure-admin@...ts.netsys.com > [mailto:full-disclosure-admin@...ts.netsys.com] On Behalf Of > Todd Burroughs > Sent: Thursday, March 18, 2004 2:17 AM > To: full-disclosure@...ts.netsys.com > Subject: [Full-Disclosure] Operating Systems Security, > "Microsoft Security, baby steps" > > Updating any OS is a pain in the ass, but all of them have > flaws and need to be updated. I find that at least with the > UNIX-like ones, you can go on the Net and do your updates > faster than you get rooted. This is foolish thinking. Do you really think that, when a patch comes out, *then* the hackers start working on exploits? The exploits were being used *long* before the patch comes out. The only thing a patch gets you is protection against *future* hack attempts against *that* weakness. Paul Schmehl (pauls@...allas.edu) Adjunct Information Security Officer The University of Texas at Dallas AVIEN Founding Member http://www.utdallas.edu/~pauls/
Powered by blists - more mailing lists