Dailydave: Re: The lack of hard questions

[Charles Miller <cmiller () securityevaluators com>]

I don't want to argue this to death, but I think everyone is missing  
my point.  Okay, MS has lots of smart people and Matt Miller kicks  
ass.  We all agree on this.  However, I'm sure Matt is still  
occasionally surprised by something some other researcher does or is  
amazed when some guy no one has ever heard of from Argentina manages  
to exploit some bug no one thought was possible.  All I'm saying is it  
is very hard to determine how reliably exploitable a particular  
vulnerability is.  Although, maybe I'm the only one who finds it  
difficult...

Also, I know the MS party at Blackhat was good, but this has gotta be  
the first time in history someone on a security list has been given so  
much grief about mentioning that MS might not have the absolute best  
security folks in the world :)

Charlie


On Sep 2, 2008, at 2:05 AM, Matthieu Suiche wrote:

> Ergosum is right. For instance, as you can see here,
> http://blogs.msdn.com/michael_howard/archive/2008/08/18/matt-miller-joins-the-security-science-team.aspx
> , MSFT recently hired Matt Miller/skape. And I'm sure they also have
> several unknow engineers who are very talented regarding security  
> field.
_______________________________________________
Dailydave mailing list
Dailydave () lists immunitysec com
http://lists.immunitysec.com/mailman/listinfo/dailydave