[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [Full-Disclosure] Re: Microsoft Security, baby steps ?

To: "Simon Richter" <Simon.Richter@xxxxxxxxxx>, "Geoincidents" <geoincidents@xxxxxxxxxxx>
Subject: RE: [Full-Disclosure] Re: Microsoft Security, baby steps ?
From: "Geo." <geoincidents@xxxxxxxxxxx>
Date: Wed, 17 Mar 2004 11:12:24 -0500

>>Hrm, how about inventing an option (at install time) that places a very
restrictive firewall on the network connection by default, say, only
outgoing port 80 to windowsupdate.com (or even better, only let it
establish a secure tunnel there), so you can patch and then loosen the
firewall settings after that?<<

It doesn't address the issue. The requirement is that some MS customers need
to patch without putting the machine on the internet. For whatever reasons.

Is that such an unreasonable request?

Geo.

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Follow-Ups:
- RE: [Full-Disclosure] Re: Microsoft Security, baby steps ?
  - From: Nick FitzGerald

References:
- Re: [Full-Disclosure] Re: Microsoft Security, baby steps ?
  - From: Simon Richter

Prev by Date: RE: [Full-Disclosure] Re: Microsoft Security, baby steps ?
Next by Date: Re: [Full-Disclosure] Re: Microsoft Security, baby steps ?
Previous by thread: Re: [Full-Disclosure] Re: Microsoft Security, baby steps ?
Next by thread: RE: [Full-Disclosure] Re: Microsoft Security, baby steps ?
Index(es):
- Date
- Thread