RE: [Full-Disclosure] Support the Sasser-author fund started

• Previous message: Aditya, ALD [Aditya Lalit Deshmukh]: "RE: [Full-Disclosure] Sasser author ( off thread post about duplicate emails )"
• In reply to: Ron Jackson: "Re: [Full-Disclosure] Support the Sasser-author fund started"
• Next in thread: Paul Schmehl: "RE: [Full-Disclosure] Support the Sasser-author fund started"
• Reply: Paul Schmehl: "RE: [Full-Disclosure] Support the Sasser-author fund started"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

To: "Ron Jackson" <ISSecurity@lifenet.org>, "full-disclosure" <full-disclosure@lists.netsys.com>
Date: Fri, 14 May 2004 23:06:27 +0530

> Umm,
> I'm confused. Fairly new to the security scene, but, didn't
> the worm come out AFTER the patch? I guess Microsoft could have
> patched it sooner so that the worm could have come out sooner.
> The biggest question I have is why all the hostility at Microsoft
> for patching their system?

the problem is many times when the patch is released it tends to break many applications and other random stuff! ms is patching a hole but manages to break other things in the process quite frequently.

> There are plenty of holes still in
> the system that warrant your wrath. When I see a worm that comes
> out before Microsoft patches, I'll be all over Microsoft just as
> the rest of you "Microsoft can do no right" doomsayers.

just wait till the next worm / malware that comes and tries to infect all the computers then we will welcome u to our clan.

-aditya

p.s i am not a ms basher but i wish the ms products were not a glass house where repairing one thing causes other things to crack.

________________________________________________________________________
Delivered using the Free Personal Edition of Mailtraq (www.mailtraq.com)

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

• Previous message: Aditya, ALD [Aditya Lalit Deshmukh]: "RE: [Full-Disclosure] Sasser author ( off thread post about duplicate emails )"
• In reply to: Ron Jackson: "Re: [Full-Disclosure] Support the Sasser-author fund started"
• Next in thread: Paul Schmehl: "RE: [Full-Disclosure] Support the Sasser-author fund started"
• Reply: Paul Schmehl: "RE: [Full-Disclosure] Support the Sasser-author fund started"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages Re: [Full-Disclosure] Potential Microsoft PCT worm (MS04-011) ... This advisory below however is not from Microsoft, ... Non of the people I talked this over see a worm yet, ... | to test and apply the patch widely. ... (Full-Disclosure) Re: Homeland Security "Worm" ... I was being a little facetious, calling it a worm. ... I know I can delete cookies, but if Microsoft is co- ... >prevents it from booting or getting to the patch on the ... >> I generally trust Microsoft, ... (microsoft.public.security) Re: RPC security error is restarting my comp ... Yesterday while having looked at the microsoft support ... Is the original problem actually the worm which I have ... >install the patch mentioned above. ... >It is suggested that you first download the patch to your ... (microsoft.public.windowsxp.security_admin) Re: Worm in Patch ... > I have just received a Patch for October 2004 in wqhich ... > Norton Anti Virus found a worm. ... Microsoft information in the hopes of garnering more victims. ... Information on Bogus Microsoft Security Bulletin Emails ... (microsoft.public.windowsxp.security_admin) Re: [Full-Disclosure] When do exploits get used? ... >>worm writers are getting faster. ... >>patching as, at most, the easy, but most critical, 50%. ... If we don't patch, we're just left vulnerable. ... or mitigate over 90% of the vulnerabilities in Windows 2000. ... (Full-Disclosure)