The problem is one of market share and compatibility. (not the normal market share argument)
- Microsoft made a bad decision long ago. - Changing that decision very early would have been good, but that didn't happen. - Changing that decision more recently (via OS upgrade or patch) would have a debilitating impact on compatibility, and we know how everyone gets on Microsoft when they break compatibility -- even for security! Even NOW, with exploits in the wild, we have people complaining about the impact on compatibility. I'm not necessarily going to praise them for how things have turned out, but we all know full well that companies make decisions about convenience and compatibility, even at their own long-term expense. Some of us have even worked for places running ancient and unsupported/unsupportable equipment because they won't bite the bullet to lose compatibility with something deemed (by them) to be of utmost importance. Such is life. *ASB *(My XeeSM Profile) <http://XeeSM.com/AndrewBaker> *Exploiting Technology for Business Advantage...* * * Signature powered by <http://www.wisestamp.com/email-install?utm_source=extension&utm_medium=email&utm_campaign=footer> WiseStamp<http://www.wisestamp.com/email-install?utm_source=extension&utm_medium=email&utm_campaign=footer> On Thu, Aug 26, 2010 at 9:46 AM, Ben Scott <[email protected]> wrote: > On Thu, Aug 26, 2010 at 9:08 AM, Steven M. Caesare <[email protected]> > wrote: > > For all of the bashing MS gets, I think it’s good to see that internally > the > > security teams take the vuln notifications seriously and were diligent in > > cooperating… > > Seriously? As I mentioned earlier, Microsoft's software has been > criticized for its search path behavior for literally decades. MS-DOS > had this problem and people pointed it out. Microsoft waited until > this started to be seriously attacked before doing anything about it. > They deserve condemnation on this one, not praise. > > -- Ben > > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ > ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ > > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~
