Full Disclosure mailing list archives
RE: Unofficial Microsoft patches help hackers, not security
From: "Todd Towles" <toddtowles () brookshires com>
Date: Wed, 4 Jan 2006 15:36:47 -0600
MW said:
this happened with the last pnp exploit one of the worms patched the hole, thus ensuring their malware stayed, and the box was no longer vuln ( to the competition??? can we say adware? ) looks like a growing trend.
Agreed, this is a problem. But real problem is that it was attacked, infected without detection. So cares if it is patched or not...if the person watching the box doesn't know it..then let it get infected with million things. The blame goes to the administrator is the box for not cleaning the infection. This trend does nothing to prove netdev's post however. The situtation that MW shows here, happens all the time. How many people are infected with SDBot, but then apply the correct Microsoft patch to fix the hole. They are still infected....the patch being applied after the fact has no real effect on the security of the system. _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Current thread:
- Re: Unofficial Microsoft patches help hackers, not security, (continued)
- Re: Unofficial Microsoft patches help hackers, not security ad () heapoverflow com (Jan 04)
- Re: Unofficial Microsoft patches help hackers, not security Morning Wood (Jan 04)
- Re: Unofficial Microsoft patches help hackers, not security bkfsec (Jan 05)
- Re: Unofficial Microsoft patches help hackers, not security Colin (Jan 05)
- Re: Unofficial Microsoft patches help hackers, not security Michael Holstein (Jan 04)