Full Disclosure mailing list archives
Re: Support the Sasser-author fund started
From: "Shane C. Hage" <shage () optonline net>
Date: Sat, 15 May 2004 20:31:25 -0400
Why should Microsoft have more blame? In my opinion, I believe that software companies, especially Microsoft, have taken all of the appropriate steps to provide security within their products. Imagine you own a home and installed a security system on all the doors and windows. You set the alarm and leave for a weekend. A thief comes up to your house, breaks a window, and slides through the opening. The alarm does not go off because the thief found a vulnerability in the security system. Do you blame the security company that installed your intrusion detection system? Software companies like Microsoft spend a lot of money developing their software. In particular, Microsoft halted development on its products so that all of its developers could receive training in 'secure coding' techniques. Above and beyond that, Microsoft and other software companies undergo 3rd-party security testing of their software before it is released. Plus, most of the software is released to the public in the form of Betas or Release Candidates months ahead of the release date. If identifying security holes was that easy then why aren't there more vulnerabilities reported before the 'gold' release of products. I do expect that any computer user should have fundamental security training before using it. After all, the computer is a tool. Nobody should operate a microwave or chainsaw without reading the safety instructions. The same care should be taken for computers. Thanks for taking the time to listen to my thoughts. Sincerely, -Shane ----- Original Message ----- From: "Georgi Guninski" <guninski () guninski com> To: "Tobias Weisserth" <tobias () weisserth de> Sent: Friday, May 14, 2004 6:00 PM Subject: Re: [Full-disclosure] Support the Sasser-author fund started
On Fri, May 14, 2004 at 07:12:08PM +0200, Tobias Weisserth wrote:My personal opinion is that more blame should be put on M$.The company is called Microsoft or MS in short. Why don't you use its proper name?are you sure it is MS and not M$ ???? i was always taught it was M$. -- When I answered where I wanted to go today, they just hung up -- Unknown _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
_______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
Current thread:
- Re: Support the Sasser-author fund started, (continued)
- Re: Support the Sasser-author fund started Tobias Weisserth (May 13)
- Re[2]: Support the Sasser-author fund started Thierry (May 13)
- Re: Support the Sasser-author fund started Valdis . Kletnieks (May 13)
- Re: Support the Sasser-author fund started Georgi Guninski (May 13)
- Re: Support the Sasser-author fund started Mister Coffee (May 13)
- Re: Support the Sasser-author fund started Valdis . Kletnieks (May 13)
- Re: Support the Sasser-author fund started Tobias Weisserth (May 13)
- Re: Support the Sasser-author fund started Konstantin Gavrilenko (May 14)
- Re: Support the Sasser-author fund started Tobias Weisserth (May 14)
- Re: Support the Sasser-author fund started Georgi Guninski (May 15)
- Re: Support the Sasser-author fund started Shane C. Hage (May 15)
- Re: Support the Sasser-author fund started Mike Roetto (May 15)
- Re: Support the Sasser-author fund started James Bliss (May 15)
- Re: Support the Sasser-author fund started Ron DuFresne (May 16)
- Re: Support the Sasser-author fund started fd (May 16)
- Re: Support the Sasser-author fund started Seth Alan Woolley (May 16)
- Re: Support the Sasser-author fund started scosol () scosol org (May 16)
- Re: Support the Sasser-author fund started Georgi Guninski (May 16)
- Re: Support the Sasser-author fund started scosol () scosol org (May 17)
- RE: Support the Sasser-author fund started Bill Royds (May 16)
- Re: Support the Sasser-author fund started Shane C. Hage (May 17)