[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-Disclosure] Web sites compromised by IIS attack

To: "Denis Dimick" <denis@xxxxxxxxxx>, "Frank Knobbe" <frank@xxxxxxxxx>
Subject: Re: [Full-Disclosure] Web sites compromised by IIS attack
From: "Aditya, ALD [ Aditya Lalit Deshmukh ]" <aditya.deshmukh@xxxxxxxxxxxxxxxxxxxxxxxxxxxxx>
Date: Thu, 1 Jul 2004 11:08:55 +0530

> > Right. But we also need better methodologies for vendors to fix their
> > products. The emphasis here is on "the vendor fixing the broken
> > product". It should not be a burden on the consumer, but on the vendor.
> > 
> 
> Like I said, Do you REALLY want a vendor to install patches for you?

i would never trust any patch from red hat / sun system / microsoft  without 
actually testing it on a sacrificial lamb before going in production use. 



ÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿ
éb½êÞvë"?axZÞx÷«²?Ú?Gb¶*'¡ó?[kj¯ðÃæj)mªÿr?ÿ

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

References:
- [Full-Disclosure] Web sites compromised by IIS attack
  - From: TIERNAN RAY, BLOOMBERG/ NEWSROOM:
- Re: [Full-Disclosure] Web sites compromised by IIS attack
  - From: Frank Knobbe
- Re: [Full-Disclosure] Web sites compromised by IIS attack
  - From: Paul Schmehl
- Re: [Full-Disclosure] Web sites compromised by IIS attack
  - From: Frank Knobbe
- Re: [Full-Disclosure] Web sites compromised by IIS attack
  - From: Denis Dimick

Prev by Date: Re: [Full-Disclosure] Tools for checking for presence of adware remotely
Next by Date: [Full-Disclosure] [securitytrap] Jun 2004 Top 10 security list on securitytrap.com
Previous by thread: Re: [Full-Disclosure] Web sites compromised by IIS attack
Next by thread: Re: [Full-Disclosure] Web sites compromised by IIS attack (fully off topic!)
Index(es):
- Date
- Thread