Home page logo

fulldisclosure logo Full Disclosure mailing list archives

Re: Operating Systems Security, "Microsoft Security, baby steps"
From: Nico Golde <nion () gmx net>
Date: Fri, 19 Mar 2004 15:29:22 +0100

Hallo Schmehl,

* Schmehl, Paul L <pauls () utdallas edu> [2004-03-19 14:51]:
Updating any OS is a pain in the ass, but all of them have 
flaws and need to be updated.  I find that at least with the 
UNIX-like ones, you can go on the Net and do your updates 
faster than you get rooted.

This is foolish thinking.  Do you really think that, when a patch comes
out, *then* the hackers start working on exploits?  The exploits were
being used *long* before the patch comes out.  The only thing a patch
gets you is protection against *future* hack attempts against *that*

and thats quite logic because noone writes a patch before he tested this
vulnerability for example with an exploit.
if the exploiter releases his exploit on public websites is another
regards nico
Nico Golde                | nico () ngolde de      | 310777820 () ICQ | nion () gmx net
http://www.ngolde.de      | GnuPG Key: http://www.ngolde.de/gpg/nico_golde.gpg
Fingerprint               | FF46 E565 5CC1 E2E5 3F69  C739 1D87 E549 7364 7CFF 
echo             "[q]sa[ln0=aln256%Pln256/snlbx]sb729901041524823122snlbxq"|dc

Attachment: _bin

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]