On Wednesday 29 December 2004 10:39, Randall R Schulz wrote:
Derek,
On Wednesday 29 December 2004 01:45, Derek Fountain wrote:
On Wednesday 29 December 2004 16:41, Malte Gell wrote: ...
SSP offers protection against vulnerabilites that may not have been discovered yet and IMHO this is anything but shitty.
Er, a vulnerablility that hasn't been discovered isn't a danger to anyone and doesn't need protecting against! I'm not sure what you mean to say here.
That certainly does not follow. Black hats can discover vulnerabilities, and I doubt they'd report them to CERT or another risk tracking and reporting authority.
Actually a few do; After making the 0-days they need, and after they have what they want, they wait a while to have some fun, but then they do report it so they can say they found it to everyone.
...
Randall Schulz
-- ----------------------------------------------- http://www.misfits.com Punk Rock, Opiates, and SUSE Linux. das Blut in den Adern erstarren lassen. Kuerbis der Zuhaelter