RE: [Full-Disclosure] Re: Microsoft Coding / National Security Risk

From: madsaxon (madsaxon_at_direcway.com)
Date: 03/26/04

  • Next message: Valdis.Kletnieks_at_vt.edu: "Re: [Full-Disclosure] Message - Banner's Styles" 
    To: full-disclosure@lists.netsys.com
Date: Fri, 26 Mar 2004 13:34:28 -0600

    At 01:23 PM 3/26/2004 -0500, joe wrote:

    >I would hope the US government isn't using Windows in the way normal home
    >users are. And in fact having personally spoken with several folks from the
    >US Government and the US Military (US Army specifically which was
    >interesting...) in charge of this stuff this week at a conference I can
    >actually in fact say that they don't use Windows like normal home users.

    A sample size of "several" is hardly adequate for drawing a
    conclusion of this magnitude. The fact is that there are no
    universal standards for Windows installations in the US government.
    There are mountains of best practices, mandates, regulations,
    and policies, but none of these ensure rigid compliance. The
    degree to which Windows workstations are "locked down" runs the
    full spectrum, right up to 'virtually wide open.'

    The US military is considerably more rigorous than the civilian
    government in this regard, but even then there are systems which
    have slipped through the cracks. Evidence for this is the fact that
    Web defacement mirrors still occasionally contain both .gov and
    .mil entries.

    m5x

    _______________________________________________
    Full-Disclosure - We believe in it.
    Charter: http://lists.netsys.com/full-disclosure-charter.html

  • Next message: Valdis.Kletnieks_at_vt.edu: "Re: [Full-Disclosure] Message - Banner's Styles"

    Relevant Pages

    • Re: to be suitable or real will teach giant lifetimes to elsewhere swing
      ... windows. ... successions. ... frail collection is the killing that enables completely. ... One more rapid musical government ...
      (sci.crypt)
    • Re: Failed Win XP Upgrade Wipes Out UK Government Agency
      ... Please point out in this article where it say this was a Windows XP upgrade that caused the problem. ... > inquiry into the role of Microsoft and the American contractors EDS, ... > The disruption is the latest in a line of government technology failures ... > The DWP said some new and amended benefit claims this week would be ...
      (microsoft.public.windowsxp.general)
    • Re: Apple issues warning on Vista
      ... YOU sir, seem to be the one who has FAILED to inform himself. ... the Windows environment yet. ... Well, sir, since I have nothing to hide from our government, I have nothing to ... corruption, the sooner the mess will be cleaned up. ...
      (comp.sys.mac.advocacy)
    • Re: Open source in the national interest
      ... It is more important for me to have the MSFT Source Access than work on FreeBSD source because MSFT is *really* changing the world and from a professional standpoint, it is more important to be involved with and aware of what MSFT is doing than any OSS company. ... you seem to think because the government deals with lots of money it is organized in some way. ... I see 100k+ Windows Kerberos implementations nearly every week and people running them that don't have the slightest clue how Kerberos works or in some cases don't even know what Kerberos is and things work relatively well... ... As for patching, though this thread really isn't about that, I wasn't talking about patch stability, I as talking about patch and binary management which is a very different thing. ...
      (microsoft.public.security)
    • Re: NSA given a back door into every copy of Windows sold
      ... Your paean to the US government that deeply respects and cherishes the ... Tears of laughter. ... the question is whether Windows has been backdoored. ...
      (alt.privacy)