[ISN] Microsoft: To secure IE, upgrade to XP
InfoSec News
isn at c4i.org
Mon Sep 27 04:27:25 EDT 2004
Forwarded from: Gary Hinson <gary at isect.com>
> http://news.com.com/Microsoft+To+secure+IE%2C+upgrade+to+XP/2100-1032_3-5378366.html
> If you're one of about 200 million people using older versions of
> Windows and you want the latest security enhancements to Internet
> Explorer, get your credit card ready ...
Spot the difference:
1. Software is inevitably released with quality failures, some of
which create information security vulnerabilities.
2. The supplier warns people about bugs and offers to fix them, for a
price.
3. People who value security have little choice but to pay for the fixes,
and hope that they work.
4. Those who don't value or cannot afford security live with the bugs,
increasing the number of potential Internet zombies.
5. The whole Internet community suffers.
vs.
1. Motor vehicles are inevitably released with quality failures, some of
which create safety issues.
2. Legal, regulatory and market pressures force the manufacturer to solve
trivial issues at the first free service, and issue free recall notices
for serious safety issues that occur later.
3. Most people comply with recall safety notices because they fear for
their own safety.
4. Service centers resolve issues before too many people suffer.
Dr Gary Hinson CISSP CISM CISA MBA
Chief Executive, IsecT Ltd.
www.isect.com and www.NoticeBored.com
More information about the ISN
mailing list