Re: Security Alert: Unofficial IE patches appear on internet

[<bart.lansing () hushmail com>]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Opinion on actual topic forthcoming:

As someone not hiding behind a pseudo-leet handle, who actually
does get to deal with ramifications of Microsoft's (and others, of
course) patch policies,  I heartily endorse the release of the eEye
patch as beneficial and as a patch that will be in the hands of
large numbers of users outside the infosec community in short
order.  In fact, it already is.  The Washington Post,
ComputerWorld, ZDNet, Business Wire, The Register, and a host of
others are all publicing its existence...kudos to them.

n3td3v, whoever you are, you have been little more than a source of
occasionally amusing noise on this list.  However, when you attempt
to put yourself into a position where some poor unsuspecting IT sot
might  actually listen to what you have to say and impact real
people doing real business...well, maybe you need to rethink your
need for self-gratification and this hopeless quest for recognition
from anyone who in fact 'does' have a clue or a legitimate place on
this list.  Try, if you can, to weigh the needs of your obviously
undernourished ego with the real needs of people who might
accidently follow some of your advice.



On Tue, 28 Mar 2006 14:45:18 -0600 n3td3v <n3td3v () gmail com> wrote:
> No security alert? Unofficial patches is very much a security
> alert. You say
> i'm not adding anything to the list, but what are *you* adding,
> apart from
> off-topic bitch remarks about thread authors. When you have the
> confidence
> to post your opinion on the actual topic, then i'll be glad to
> hear from
> you.
>
>
>
> On 3/28/06, Micheal Espinola Jr <michealespinola () gmail com> wrote:
> > Patch Tuesday = Good before third party patches appear
> > Third party patch = Evil
> > Patch Tuesday = Bad for everyone after third party patches
> appear,
> > even Microsoft...
> >
> > Ahh, but you forgot one:
> >
> > n3td3v = Annoying.  Posting as an individual or as a "group"...
> >
> > Your "security alert" has offered nothing in terms of Full
> Disclosure
> > or any actual security alert.  You'd be better served to send
> your
> > "opinion" to the Patch Management list.
> >
> > _______________________________________________
> > Full-Disclosure - We believe in it.
> > Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> > Hosted and sponsored by Secunia - http://secunia.com/
-----BEGIN PGP SIGNATURE-----
Note: This signature can be verified at https://www.hushtools.com/verify
Version: Hush 2.5

wkYEARECAAYFAkQppNYACgkQuCj5fjTzkbAjXgCfVUkFQ6Gc5W5TG3Mz5gfU47cbB9IA
oL30dCyCafI4Cx8S6NFJDXqUnoy9
=7hC9
-----END PGP SIGNATURE-----


_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/