Educause Security Discussion mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Upgrading Eudora clients due to recent vulnerability

From: Valdis Kletnieks <Valdis.Kletnieks () VT EDU>
Date: Thu, 10 Feb 2005 16:56:56 -0500
On Thu, 10 Feb 2005 12:43:52 PST, Joe St Sauver said:


  -- Windows Update is NOT going to automatically check Fire Fox for
     needed updates, and

  -- Windows Update is NOT going to automatically get and *install* that
     needed update for the user, if one is needed.


--- Windows Update *MAY* go and automatically get and install an update
that breaks Firefox.  Intentionally.  There was verbiage in one of the EULAs
that basically gave Microsoft free reign to install "security updates".

I bet at least one evil-minded guy at Microsoft has looked at the recent
Firefox IDN vulnerability, and thought of pushing a patch that breaks Firefox
"for the user's own good - force them to use IE, which isn't vulnerable".

Either the preceeding paragraph needs a smiley, or I need more tinfoil.
I wish I knew which.... ;)



**********
Participation and subscription information for this EDUCAUSE Discussion Group discussion list can be found at 
http://www.educause.edu/groups/.

Attachment: _bin
Description:

Previous By Date Next
Previous By Thread Next

Current thread: