GDI Vulnerabilities: An Open Letter to Microsoft
UnderAttack writes "Tom Liston, the guy that brought us the LaBrea Tarpit, wrote an open
letter to Microsoft regarding the GDI JPEG vulnerability, and Microsoft's scanning tool for this vulnerability, which he calls 'worse then useless'. Tom, who wrote his own scanning tool, ends his letter with 'Please stop treating your customers like idiots and give us information; information that we can use.' Like Tom explains, the official Microsoft scanning tool misses a lot of vulnerable DLL's installed by third parties, and Microsoft fails to explain if these libraries are a problem or not."
Please stop treating your customers like idiots and give us information; information that we can use.
Please stop crying like a crack whore on welfare. If you want timely information from Microsoft pay for it. Or pick something different.
Sheesh, does this guy think he's the first guy to complain about Microsoft's security and the information and sketchy patches and service packs? I've known this was just par for the course for years.
Yes, when my Ford pick-up is having engine trouble, I always drive it to the nearest Harley Davidson to get it fixed.
In the same way, Microsoft should be responsible for code written by everybody else on the planet.
Liberal (adj.): Free from bigotry; open to progress; tolerant of others.
So you're saying most lefties really aren't liberals, and a lot of conservatives are? That would be my conclusion.
You are in a maze of twisty little passages, all alike.
Service pack 2 Final helps the linux migration Now it may be considered as a joke, but regarding SP2 final and it`s bugs, the only thing windows fans can say in it`s defence is "it may crash alot, but IE has a really cool pop-up blocker, it might not let you install other software and trash the sistem while tryang ...but atleast the pop-up blocker works" SP2 final will be asociated with expresions like "whoop ...it all happend so fast, guess i`ll reinstall or something..." and "it was working a minute ago...". We will probabely write a manual "The windows dependent guy guide to linux migration" I`m certenely migrating. It started with the browser migration ...now M$ has a bigger problem. Windows crashes [direct reset] when i try to install the mouse software, and when it comes back the setting are all ...spooked up, resolution, quiq launch, etc, it doesn`t let me install firefox 0.9.3 so i installed 0.9, a friend after installing it discovered he has no login screen to log on to windows, how can he work ? he had to format:) and these are only a few ...
Mozilla fixed the bugs in they final release products [yes ...that`s before m$ did], so mozilla fixes m$ bugs...
Hapiness is a state of mind, I'm happy. I think.
you're kidding, right? Do we even want to waste the space listing off every instance of bigotry, close-mindedness, and intolerance from the current administration. Pull your head out of your ass...
I know I'm going to be modded up on this
Please back up your assertion that you are incapable of reading English or of not acting like a typical ./ nerd-boy hunting for things to complain about another poster - like I'm doing right now.
"Criminal negligence" applies to idiots who do something that results in a criminal act which could have been prevented by application of common sense and due diligence.
Microsoft absolutely fits the "idiot" requirement.
What part of this don't you comprehend, Windows troll?
Richard Steven Hack - This sig is TOO GODDAMN SHORT TO DO ANYTHING USEFUL WITH! MORONS!
I feel the need to lay out some ground rules before we go on:
1.) Microsoft is somehow responsible for all third-party DLLs on a system. Their scanner must contain a self-sufficient, learning AI that just "knows" which DLLs to scan on any system in existence.
2.) Mozilla was affected by this same vulnerability, but it's okay because it's Mozilla and not Microsoft.
3.) When Mozilla's XUL bug was marked "Confidential" since 1999 only to be revealed earlier this year when exploits came out for it, that's okay too. There won't be any "open letters" to Mozilla over it, because it's Mozilla and not Microsoft.
I hope we can all follow these simple ground rules in the discussion to follow. Thank you.
YHBT. YHL. HAND.
Love,
rd_syringe (aka Overly Critical Guy aka bonch)