[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Full-disclosure] MS launch subscription-based security service
- To: imipak <imipak@xxxxxxxxx>
- Subject: Re: [Full-disclosure] MS launch subscription-based security service
- From: Georgi Guninski <guninski@xxxxxxxxxxxx>
- Date: Fri, 13 May 2005 18:58:06 +0300
On Fri, May 13, 2005 at 10:31:37AM +0100, imipak wrote:
> Security gripes? Microsoft feels your pain
> Published: May 12, 2005, 9:00 PM PDT
> By John Borland
> Staff Writer, CNET News.com
>
>
there is another interesting story at the register:
according to:
http://www.theregister.co.uk/2005/05/09/microsoft_on_sp2_security_process/
a female with the romantic name "*Window* Snyder" (security strategist for
Microsoft) claims:
-------------------------------
Moreover, the company found and fixed two classes of vulnerabilities that
have not been discovered elsewhere, she said.
"These are entire classes of vulnerabilities that I haven't seen externally,"
Snyder said. "When they found these, (the developers) went on a mission,
found them in all parts of the system, and got rid of them."
Snyder *remained mum on the details*, however, even giving the families of
vulnerabilities fake code names: "Ginger" and "Photon."
---------------------------------
for those who missed it, m$ are keeping classes of bugs for themselves, but
they want everyone to cooperate with them and handle m$ their 0days, so
they have more bugs and billg have more $$$.
nice, clever and ethical plan.
--
where do you want bill gates to go today?
** junk below
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/