Full Disclosure: Re: Web sites compromised by IIS attack

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Full Disclosure mailing list archives

Re: Web sites compromised by IIS attack

From: "Aditya, ALD [ Aditya Lalit Deshmukh ]" <aditya.deshmukh () online gateway technolabs net>
Date: Thu, 1 Jul 2004 11:08:55 +0530

Right. But we also need better methodologies for vendors to fix their
products. The emphasis here is on "the vendor fixing the broken
product". It should not be a burden on the consumer, but on the vendor.


Like I said, Do you REALLY want a vendor to install patches for you?


i would never trust any patch from red hat / sun system / microsoft  without actually testing it on a sacrificial lamb 
before going in production use. 



ÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿ
éb½êÞvë"axZÞx÷«²ÚGb¶*'¡ó[kj¯ðÃæj)mªÿrÿ

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

By Date By Thread

Current thread:

Re: Web sites compromised by IIS attack Frank Knobbe (Jun 30)
- Re: Web sites compromised by IIS attack Paul Schmehl (Jun 30)
  - Re: Web sites compromised by IIS attack Frank Knobbe (Jun 30)
    - Re: Web sites compromised by IIS attack Denis Dimick (Jun 30)
    - Re: Web sites compromised by IIS attack Aditya, ALD [ Aditya Lalit Deshmukh ] (Jun 30)
  - Re: Web sites compromised by IIS attack Denis Dimick (Jun 30)
  - Re: Web sites compromised by IIS attack (fully off topic!) Aditya, ALD [ Aditya Lalit Deshmukh ] (Jun 30)
  - Re: Web sites compromised by IIS attack Valdis . Kletnieks (Jul 01)
    - Re: Web sites compromised by IIS attack Raj Mathur (Jul 01)
    - Re: Web sites compromised by IIS attack Maarten (Jul 01)