Re: Analysis of Microsoft Critical Patches

From: charlie strauss <cems_at_earthlink_dot_net>
Date: Wed Jan 11 2006 - 14:44:48 CST

Maybe I'm not grocking the argument here but it seems to me that hanging your hat on the alleged imperviousness of a OS by counting it's public bugs is a weak argument. The real issue is can you inspect the source (and correlate it to the binary) to see if things that don't belong are removed.

this blog has some time from big to to patch data, but to me this is all about the difference between knowing what the code is doing and not.
http://blogs.washingtonpost.com/securityfix/2006/01/a_timeline_of_m.html

_______________________________________________
OVC-discuss mailing list
OVC-discuss@listman.sonic.net
http://lists.sonic.net/mailman/listinfo/ovc-discuss
==================================================================
= The content of this message, with the exception of any external
= quotations under fair use, are released to the Public Domain
==================================================================
Received on Mon Jan 8 20:24:36 2007

This archive was generated by hypermail 2.1.8 : Mon Jan 08 2007 - 20:24:39 CST