Re: Securing a Windows 2003 server

From: Alun Jones [MS MVP - Security] (alun_at_texis.invalid)
Date: 05/18/04

Next message: Alun Jones [MS MVP - Security]: "Re: Securing a Windows 2003 server"
Previous message: Salonge: "Unable to access shared folders"
In reply to: chris_at_nospam.com: "Re: Securing a Windows 2003 server"
Next in thread: Roger Abell [MVP]: "Re: Securing a Windows 2003 server"
Messages sorted by: [ date ] [ thread ]

Date: Tue, 18 May 2004 14:28:21 GMT

In article <t09ga012hov0fc1up5svttu9n7t7lp41lo@4ax.com>, chris@nospam.com
wrote:
>On Sun, 16 May 2004 14:02:23 GMT, jcochran.nospam@naplesgov.com (Jeff
>Cochran) wrote:
>>Most Microsoft patches are out before the exploit is tracked in the
>>wild, yet still many admins and most home users get compromised
>>because they haven't installed the patch. Even with all the
>>automation available for updating the systems.
>
>That's because the exploit is usually created using the documentation
>provided with the patch.

Wait, I thought you were suggesting that patches should be released sooner,
and with much public fanfare... if exploits come from "using the
documentation provided with the patch", wouldn't this suggest that the best
way to patch vulnerabilities is to hide patches inside regular feature
packs?

And no, I'm not suggesting this myself - it's just a natural endpoint for
that part of your argument. Refine your argument, make sure it's logically
consistent, and you might have something we can all use. At the moment,
you're contradicting yourself, and making it sound like all you want to do
is disagree with Microsoft and anyone who posts anything that sounds like a
defence of them.

Alun.
~~~~

[Please don't email posters, if a Usenet response is appropriate.]

-- 
Texas Imperial Software   | Find us at http://www.wftpd.com or email
1602 Harvest Moon Place   | alun@texis.com.
Cedar Park TX 78613-1419  | WFTPD, WFTPD Pro are Windows FTP servers.
Fax/Voice +1(512)258-9858 | Try our NEW client software, WFTPD Explorer.

Next message: Alun Jones [MS MVP - Security]: "Re: Securing a Windows 2003 server"
Previous message: Salonge: "Unable to access shared folders"
In reply to: chris_at_nospam.com: "Re: Securing a Windows 2003 server"
Next in thread: Roger Abell [MVP]: "Re: Securing a Windows 2003 server"
Messages sorted by: [ date ] [ thread ]

Relevant Pages

Re: Securing a Windows 2003 server
... >>Most Microsoft patches are out before the exploit is tracked in the ... >>because they haven't installed the patch. ... Wait, I thought you were suggesting that patches should be released sooner, ... Cedar Park TX 78613-1419 | WFTPD, WFTPD Pro are Windows FTP servers. ...
(comp.security.misc)
Re: Securing a Windows 2003 server
... >>Most Microsoft patches are out before the exploit is tracked in the ... >>because they haven't installed the patch. ... Wait, I thought you were suggesting that patches should be released sooner, ... Cedar Park TX 78613-1419 | WFTPD, WFTPD Pro are Windows FTP servers. ...
(microsoft.public.windows.server.security)
Re: Securing a Windows 2003 server
... >>In regards to the fact the windows takes forever for a patch to get ... The number of inadequately tested microsoft patches ...
(comp.security.misc)
Re: Securing a Windows 2003 server
... >>In regards to the fact the windows takes forever for a patch to get ... The number of inadequately tested microsoft patches ...
(microsoft.public.windows.server.security)
Re: Securing a Windows 2003 server
... >>In regards to the fact the windows takes forever for a patch to get ... The number of inadequately tested microsoft patches ...
(microsoft.public.windows.server.networking)