Re: Microsoft Makes Concessions to Security Software Makers

[Nick FitzGerald <nick () virus-l demon co uk>]

Dude VanWinkle wrote:

> I would like to see a an exploit for this pre-release, which would
> help answer an interesting question: If a working exploit was found in
> the wild, would MS delay the ship date or just release a patch as soon
> as they coded it.

It would depend when the exploit was released relative to the code 
going gold/RTM.  If "too close" to RTM (and there are far too many 
factors to consider in a hypothetical to give any idea of what that 
might be), or after it but before "public release", then you can bet 
that the security response folk would be working to ensure that it was 
either patched for the next Patch Tuesday (if it affected "enough" of 
the beta/RC releases) or at least to be ready for when the code was to 
be publicly released (November for corporate licensing programs, 
right?), so the first time Vista goes to WU (first time it goes online 
during/after install, yes?) it would pick it up.


Regards,

Nick FitzGerald

_______________________________________________
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.