MS Giving Exploit Writers Clues To Flaws

In the IT trench writes "How's this for a new twist on the old responsible disclosure debate? Hackers are using clues from Microsoft's pre-patch security advisories to create and publish proof-of-concept exploits. The latest zero-day flaw in the Windows DNS Server RPC interface implementation is a perfect example of the tug-o-war within the Microsoft Security Response Center about how much information should be included in the pre-patch advisory."

all your eggs in 1 basket

[Gothmolly]

Who would put their DNS server / user repository on the same box, and expose it to the Internet? Oh wait, thats EXACTLY what MS wants you to do... its easier, and the nice Wizard helps you through all those pesky details.