Tweet
Since this is for tech related topics, I thought I would post this from a newsgroup I am a member of. It is from the SANS (Systems Administration and Network Security) Institite... Any comments on the state of Microsoft's way of patching their faulty systems?
--Three Critical Microsoft Vulnerabilities Patched
Microsoft Corp. released the second installment of its now monthly
security bulletins, patching three software holes in Windows systems
that it said were "critical" security risks and a fourth problem with
Microsoft Office that the company rated "important."
[Editor's Note (Paller): As I read today's news stories about
Microsoft's new patches, what stood out most was the lack of outrage by
the reporters. Microsoft's PR people must be cheering. By moving to
monthly release of new patches, they have made bad programming
announcements so regular that the press is giving them a free pass.
These patches fix one, or many programming errors made by Microsoft's
vaunted software development team. The errors are there because that
team didn't adequately check its code. Hundreds of thousands or
millions of people will not install the patches, because it still takes
work and expertise on the part of users. Hackers will write worms that
take over those unprotected machines and use them to steal information
or attack others. Some of those attacks will be low and slow so you'll
never know your systems were compromised or by whom. That's the bottom
line on Microsoft's patch announcements.]
--Three Critical Microsoft Vulnerabilities Patched
Microsoft Corp. released the second installment of its now monthly
security bulletins, patching three software holes in Windows systems
that it said were "critical" security risks and a fourth problem with
Microsoft Office that the company rated "important."
[Editor's Note (Paller): As I read today's news stories about
Microsoft's new patches, what stood out most was the lack of outrage by
the reporters. Microsoft's PR people must be cheering. By moving to
monthly release of new patches, they have made bad programming
announcements so regular that the press is giving them a free pass.
These patches fix one, or many programming errors made by Microsoft's
vaunted software development team. The errors are there because that
team didn't adequately check its code. Hundreds of thousands or
millions of people will not install the patches, because it still takes
work and expertise on the part of users. Hackers will write worms that
take over those unprotected machines and use them to steal information
or attack others. Some of those attacks will be low and slow so you'll
never know your systems were compromised or by whom. That's the bottom
line on Microsoft's patch announcements.]
Comment