a pic of my brain The Compleat Iconoclast
 
...Vote For Your Favorite Wench...

mld, August 14, 2002 at 7:56:00 PM CEST

IE Flaws - Again

This one's been out for a few days - I'm just now mentioning it due to dereliction of duty, and the tiresome fatigue resulting from parroting the endless parade of M$ security flaws. Though chatting with Ceridwen last night until almost four AM may have a bit to do with it, too. :-)

I think I just need to tweak my templates to include a "New Exploder Flaw" link on every day's page. It would be true more often than not.

This one is worse than most:

  1. It's existed for five years.

  2. It lets the Bad Guys swipe your e-commerce info, that is, your credit card numbers.

  3. M$ says it's not really that exploitable, while security experts disagree. (what a surprise)

  4. No patch has yet been published.

Same as it ever was.


 
place your comment!  
scottr, 8/15/02, 2:53 AM
Of course, equal time would be nice...

A simple Google search turned up the following links:

http://www.apacheweek.com/security/
http://www.computerworld.com/softwaretopics/os/linux/story/0,10801,72089,00.html
http://www.pcworld.com/news/article/0,aid,87003,00.asp
http://www.linuxsecurity.com/articles/server_security_article-5157.html
http://www.internetnews.com/dev-news/article.php/1025541
http://www.landfield.com/isn/mail-archive/2002/Jan/0033.html
http://www.cigital.com/news/java-hole.html
http://www.cnn.com/2002/TECH/internet/01/30/netscape.flaw.idg/
http://www.ciac.org/ciac/bulletins/i-040.shtml
http://www.redhat.com/support/resources/gotchas/6.1/gotchas-6.1-3.html
http://zdnet.com.com/2100-11-520283.html?legacy=zdnn

The one thing these have in common? They detail security problems with non-Microsoft products. And this list was just the tip of the iceberg.

... Link

mld, 8/15/02, 8:54 AM
Ok, equal time

I'll give equal time to every single security bug that first, is in an application that is even half as widely used as Exploder, and second, as likely to be used by the average home user that does not have as part of his job description tracking security alerrts and patching software. That's why I mention them here - for everyday non-geek users that might not otherwise get a heads-up.

Joe Bagadonutz surfing at home isn't gonna get bit in the ass by some obscure bug in apache. He's not running it. He may get his personal info stolen by using Exploder.

... link


... Comment
 
...up and running for 8289 days
last touched: 9/11/15, 7:48 AM
...login status...
hello, stranger.
i live for feedback.
schmack me with your syllables...
but first you have to login. it's free.
...search this site...
...menu...
... home
... topics
... 
... 
...story index
...new readers start here
...trf pic o' the day
...email me
... antville home
November 2024
SunMonTueWedThuFriSat
12
3456789
10111213141516
17181920212223
24252627282930
September
...new posts and comments...
...bloggus amicus...
... beth
... capt. napalm
... craniac
... emdot
... genee
... gina
... kc
... macker
... rosalie
... sasha
... seajay
... spring dew
... stacia
... timothy
... wlofie
...antville amicae...
... ceridwen
... daveworld
... jane95
... kate
...obligatory blogrolling...
... steven den beste
... jack cluth
... susanna cornett
... cox & forkum
... kim du toit
... glenn frazier
... jane galt
... stephen green
... h-town blogs
... charles johnson
... james lileks
... robert prather
... bill quick
... glenn reynolds
... donald sensing
... rand simberg
... mike spensis
... andrew sullivan
... spinsanity
... bill whittle
... wretchard

...daily stops...
... domai
... google
... nation states
... yahoo
get email when the blog updates

email:
let me know   
quit bugging me      
mailbot powered by
Conman Labs Logo
...headlines from space.com...



RSS Feed

Made with Antville
powered by
Helma Object Publisher