Microsoft: RDP Vulnerability Should Be Patched Immediately
wiredmikey writes "Microsoft is urging organizations to apply the sole critical update in this month's Patch Tuesday release as soon as possible. The critical bulletin – one of six security bulletins issued as part of Tuesday's release – addresses two vulnerabilities in the Remote Desktop Protocol (RDP). Those IT admins who use RDP to manage their machines over the internet, which is essentially the default in cloud-based installations such as Amazon's AWS, need to patch as quickly as possible, said Qualys CTO Wolfgang Kandek. Besides the RDP bugs, this month's Patch Tuesday addressed five other vulnerabilities: two denial-of-service bugs and an escalation of privileges issue in Microsoft Windows; a remote code execution vulnerability in Microsoft Expression Design; and an escalation of privileges issue in Microsoft Visual Studio."
Why do companies keep purchasing and spending thousands of dollars to an operating system that obviously isn't secure, while Linux is stable, free, open and has become easier to use thanks to a plethora of GUIs.
Yes, but Linux people are used to SSH and text based commands, at least for servers. What I mean is that Linux admins are much less used to / tempted to enjoy the luxury of a windowed environment to perform the administration of their servers, than Windows admins who learn from day 1 that administration goes through the nice and easy to understand GUI. I'm happy with a restricted SSH access, and this is not likely to change soon.
Slashdot, fix the reply notifications... You won't get away with it...
Microsoft bought RDP from Citrix. Microsoft doesn't develop software, they buy/steal and redistribute it. For example Internet Explorer and Stax...
Excuse me, but please get off my Pennisetum Clandestinum, eh!