Your suggestions, please: how to improve http://www.microsoft.com/security

From: Steve Riley (MCS) (steriley@MICROSOFT.COM)
Date: 09/10/01 

Message-ID:  <34E09E608C610A4195974ED54E58F45302F497F7@svc-msg-02.northamerica.corp.microsoft.com>
Date:         Mon, 10 Sep 2001 08:20:54 -0700
From: "Steve Riley (MCS)" <steriley@MICROSOFT.COM>
Subject:      Your suggestions, please: how to improve http://www.microsoft.com/security
To: NTBUGTRAQ@LISTSERV.NTBUGTRAQ.COM

Hello all. I'm Steve Riley, a consultant in Microsoft Consulting
Services. I work in the telecommunications practice (meaning that my
customers are telecom companies, cable companies, ISPs, ASPs, and the
like), specializing in security both generally and as it relates to our
products. Soon I will be working with some folks in TechNet and the MSRC
(Microsoft Security Response Center) to help redesign our security
pages. Some things that we think we need to improve on are:

  * Information in context ("I'm a small business customer; what do I
need to do to get secure?")
  * Complete descriptions of how to do things ("Help me get secure,
don't just give me parts.")
  * More scenario-based things
  * Find out where customers percieve gaps in the existing site.

If you have a moment, would you please write back to me and tell me what
you like and what you don't like about our security web site? What can
we do better? What kinds of things are missing?

A lot of times I've heard customers ask, "What more is there to
Microsoft security besides installing service packs and hotfixes?" Well,
a lot of what we want to do with the side redesign is help people
understand our philosophy on security and guide them toward the light --
how to do security right, as it were. We want /security to be more than
just a collection of checklists and hotfixes. What other recurring
questions have you heard from others?

Please respond only to me (rather than hitting "reply all") to keep list
traffic down. Thanks very much! I appreciate your suggestions.

___________________________________________________________
Steve Riley
Microsoft Telecommunications Consulting in Denver, Colorado
steriley@microsoft.com +1 303 521-4129 (mobile)
steriley@hotmail.com (MSN Messenger)
www.microsoft.com/serviceproviders/columns/
Applying computer technology is simply finding the right wrench to pound
in the correct screw.

======================================
Delivery co-sponsored by Trend Micro, Inc.
======================================
TREND MICRO SCANMAIL FOR EXCHANGE 2000 -- SECOND to NONE

If you are worried about email viruses, you need Trend Micro ScanMail for
Exchange. ScanMail is the first antivirus solution that seamlessly
integrates with the Microsoft Exchange 2000 virus-scanning API 2.0. ScanMail
ensures 100% inbound and outbound email virus scanning and provides remote
software management. Download a FREE 30-day trial copy of ScanMail and find
out why it is the best:
http://www.antivirus.com/banners/tracking.asp?siBI;$0&UL;=/smex2000
======================================

Relevant Pages

  • [NT] Cumulative Security Update for Internet Explorer (MS04-025)
    ... Get your security news from a reliable source. ... * Microsoft Windows NT Workstation 4.0 Service Pack 6a ... Navigation Method Cross-Domain Vulnerability ...
    (Securiteam)
  • SecurityFocus Microsoft Newsletter #75
    ... Microsoft's Internet Security & Acceleration Server with fault-tolerance ... The Microsoft UPnP Vulnerability ... Relevant URL: ...
    (Focus-Microsoft)
  • SecurityFocus Microsoft Newsletter #120
    ... Strengthening Network Security: FREE Guide Network security is a ... MICROSOFT VULNERABILITY SUMMARY ... Microsoft Windows File Protection Signed File Replacement... ... PlatinumFTPServer Information Disclosure Vulnerability ...
    (Focus-Microsoft)
  • Re: A 6% fix from Microsoft Security Bulletin MS03-040 - 828750
    ... Now if the geeks over at Microsoft could get "infected" with some of this ... The Internet is already mind blowing in the way it can bring people ... that creates an unacceptable risk of security compromise and we need to shut ... down all Internet browsing with IE. ...
    (microsoft.public.security)
  • Re: A 6% fix from Microsoft Security Bulletin MS03-040 - 828750
    ... Now if the geeks over at Microsoft could get "infected" with some of this ... The Internet is already mind blowing in the way it can bring people ... that creates an unacceptable risk of security compromise and we need to shut ... down all Internet browsing with IE. ...
    (microsoft.public.security.virus)