Want to read Slashdot from your mobile device? Point it at m.slashdot.org and keep reading!

 


Forgot your password?
Close
typodupeerror
×
Security

Microsoft Blames the Messengers 731

Posted by michael from the see-no-evil-speak-no-evil dept.
Roger writes: "In an essay published on microsoft.com, Scott Culp, Manager of the Microsoft Security Response Center, calls on security experts to "end information anarchy" and stop releasing sample code that exploits security holes in Windows and other operating systems. "It's high time the security community stopped providing the blueprints for building these weapons," Culp writes in the essay. "And it's high time that computer users insisted that the security community live up to its obligation to protect them." See the story on Cnet News.com."
This discussion has been archived. No new comments can be posted.

Microsoft Blames the Messengers More

Microsoft Blames the Messengers

Comments Filter:

  • Security Through Obscurity (Score:2, Funny)

    by FreakOfTheWeek ( 415378 ) on Wednesday October 17, 2001 @05:35PM (#2443440)
    boy, we're sure learning that lesson fast!

  • So basically... (Score:5, Funny)

    by 11thangel ( 103409 ) on Wednesday October 17, 2001 @05:35PM (#2443441) Homepage
    They're trying to say "stop finding holes faster than we can make...err...fix them". My my what a cheap political backstab.

  • They Have a Point (Score:2, Funny)

    by ZeroLogic ( 11697 ) on Wednesday October 17, 2001 @05:36PM (#2443454)
    Yes, I realize that this isn't a fix, but if obscurity makes it just a little harder for people to do bad things then I don't see why it's such a bad thing. Especially in the case of Microsoft, where only they can fix the source, why should the security companies publish the source on the web instead of sending it directly to microsoft? What gains are there to be had by having the source displayed all over the web?

  • And in similar news.. (Score:5, Funny)

    by cnkeller ( 181482 ) <cnkeller@nOsPAM.gmail.com> on Wednesday October 17, 2001 @05:37PM (#2443463) Homepage
    Gun manufacturer Smith & Wesson has asked that ammunition maker Black Talon stop making bullets since "guns don't kill people, bullets do."

    Because, if the security hole didn't exist in the first place, then Microsoft wouldn't have to worry about all this bad press starting to cost them business; and more importantly mindshare.

  • A weak point (Score:2, Funny)

    by crumbz ( 41803 ) <[moc.liamg>maps ... uj>maps_evomer> on Wednesday October 17, 2001 @05:38PM (#2443469) Homepage
    Information Anarchy? What? Do doctors complain about information anarchy when patients research treatments for diseases on the web?
    Doesn't this guy realize that our systems are becoming more secure everyday, now that people have to take worms, trojans, DoS attacks seriously. Maybe he should bet back to securing Microsoft products and spend less time complaining about system admins trying to share info.

  • Let's stop anthrax, too! (Score:5, Funny)

    by Mike Schiraldi ( 18296 ) on Wednesday October 17, 2001 @05:39PM (#2443475) Homepage Journal
    It's high time we stopped teaching Chemistry and Biology! People are spreading information that essentially maps out exactly how the human body works, which allows for all sorts of chemical and biological weapons! And explosives, too!

    In other news, Master Lock wants to release a new model made out of twine and butter. They ask the community to avoid discussing the security of the lock, since they anticipate it getting deployed widely, and once the ButterLock is being used to secure mission-critical systems, it will be extremely important to keep its flaws a secret.

  • What fscking loser (Score:3, Funny)

    by The Panther! ( 448321 ) <panther@austin.YEATSrr.com minus poet> on Wednesday October 17, 2001 @05:39PM (#2443487) Homepage
    In other news, Microsoft has purchased a secret weapon of vast destruction, code named Blamethrower. It strikes out at random targets, displacing reality at near the speed of light.

    Zot!

  • Bug control (Score:3, Funny)

    by nougatmachine ( 445974 ) <johndagen@@@netscape...net> on Wednesday October 17, 2001 @05:41PM (#2443505) Homepage
    Eh? The security community should stop documenting weaknesses?

    What a great idea! Then all the malicious hackers will know how to exploit security holes, while those in charge of security won't. Wait a second...isn't that kind of like asking security guards not to carry guns, because those guns might hurt someone?

  • Re:When you point the finger of blame... (Score:2, Funny)

    by irksome ( 106742 ) on Wednesday October 17, 2001 @05:44PM (#2443540)
    which is why you should always point with an open hand ;)

    -

  • Re:And in similar news.. (Score:5, Funny)

    by cyberformer ( 257332 ) on Wednesday October 17, 2001 @05:47PM (#2443556)
    And the ammunition maker has called on the law-enforcement and medical community to stop revealing that people can be killed by bullet wounds. Such information can only help the wrong-doers.

  • Hmmm, let's see here (Score:3, Funny)

    by TheEviscerator ( 240966 ) on Wednesday October 17, 2001 @05:48PM (#2443571) Homepage
    Ah yes, just found my "MSspin2english" translator. Let's see how those comments look now:

    "It's high time that the security industry stopped pointing out all of the blatant security flaws in our programs", Culp writes. "Since we insist on developing OSes and highly-integrated applications tuned for usability, rather than security, we can't make as much money as we're accustomed to making, what with all of these viruses/worms targeted at our products."

    Culp adds, "it's time that the security industry be held responsible for these worms and viruses, rather than the companies who make products such as ours. By pointing the finger at the amorphous 'security industry', we're better able to deflect blame for the recent rash of high-profile MS OS and web server exploits."

  • Re:So basically... (Score:4, Funny)

    by Happy Monkey ( 183927 ) on Wednesday October 17, 2001 @05:54PM (#2443628) Homepage
    We'll soon be able to find out the Culp ability to shift blame...

  • Yea, I blame the messengers too. (Score:1, Funny)

    by Anonymous Coward on Wednesday October 17, 2001 @05:55PM (#2443635)
    Microsoft Messenger
    Microsoft Outlook
    Microsoft Outlook Express
    Microsoft Internet Explorer
    Microsoft.........

  • YOU Are The Problem (Score:5, Funny)

    by PRickard ( 16563 ) <(moc.cb-sm) (ta) (rp)> on Wednesday October 17, 2001 @05:56PM (#2443645) Homepage
    "Yes," said kingdom spokesman Jim Dilldunnam, "the Emperor is aware of his nudity. But His Majesty's nakedness would not be a problem for the uneducated masses if you irresponsible media types would just cease telling them about it."

  • Let's go one step farther than that! (Score:1, Funny)

    by Anonymous Coward on Wednesday October 17, 2001 @05:58PM (#2443661)
    I think we should AGREE with Microsoft on this one and then go one step farther: call for a total silence from all security people about Microsoft products. Don't publish or report ANY bugs, holes, or security problems. But don't change a thing when it comes to full disclosure of other products.

    A temporary negative side effect would be Microsoft would get a boost in marketing ("See, we don't have as many bugs as reports show other software packages/OSs do.").

    The long-term positive effect would be Microsoft would no longer get free debugging by the community, and would end up suffering even more from security through obscurity while other software developers and open source packages would become more secure. In the long run, this would be of great benefit to everyone except Microsoft.

    Let's do it! Total silence from now on about ALL Microsoft security problems/bugs/etc.

  • Re:Linus better do some complainin'... (Score:2, Funny)

    by Lonath ( 249354 ) on Wednesday October 17, 2001 @06:11PM (#2443740)
    Holy shit...I wonder if they do have a nefarious plan to make Linus waste his resources protecting his trademark. After all, you gotta protect it, or you lose it... That's really scary.

  • Re:And in similar news.. (Score:4, Funny)

    by Slak ( 40625 ) on Wednesday October 17, 2001 @07:11PM (#2444034)
    And the NRA has asked people to stop procreating since "guns don't kill people, people kill people".

  • What a cop out! (Score:2, Funny)

    by LoudMusic ( 199347 ) on Thursday October 18, 2001 @12:31AM (#2445225)
    That has to be the world's biggest cop out that I've ever seen. Pathetic! "Stop showing the smart people our sloppy code, they make it break!"

    ~LoudMusic

  • EULA (Score:4, Funny)

    by skabb ( 115949 ) on Thursday October 18, 2001 @03:35AM (#2445604)
    Probably the next thing in the MS EULA is;
    Any SECURITY HOLE bundled with the SOFTWARE PRODUCT is the property of Microsoft and protected by copyright laws and international copyright threaties.

  • Keep the cluelessness secret, too. (Score:2, Funny)

    by valentyn ( 248783 ) on Thursday October 18, 2001 @04:36AM (#2445666) Homepage
    We at Slashdot can help them. Please end the information anarchy. Please stop releasing critical information about Microsoft's managers. It's high time the free speech community stops providing blueprints for writing critical essays about Microsoft's responsibility.

    And it's high time that people insisted that the free speech community live up to its obligation to protect them from reality.

Slashdot Top Deals

"What man has done, man can aspire to do." -- Jerry Pournelle, about space flight

Close