News
Microsoft Reframes ‘Responsible Disclosure’ into Coordinated Vulnerability Disclosure
The Microsoft Security Response Center announced earlier today via their TechNet blog a change in the practice of disclosing vulnerabilities. Responsible disclosure being the hot topic for last month shows its cause-effect relationship with today’s announcement being the ‘effect’ part. Microsoft is sticking to its guns and holds fast “that coordination and collaboration are required to resolve issues in a way that minimizes risk and disruption for customers.”
Coordinated Vulnerability Disclosure is mostly just a way of spelling out the concept of responsible disclosure that most people seem to already understand. Microsoft explains ideally how disclosure would occur:
Onto the Next Theme
All weekend, I’ve been tinkering with a new theme here at 404 Tech Support. If you’ve visited over the course of the weekend, you’ve definitely seen it (and I apologize if my tinkering disrupted your visit). I’ve still got a small handful of changes I’d like to make but the majority of the installation is done. I’m enjoying it because it has made my site more responsive and introduced new features. For a reminder of what the old theme looked like, here’s your reminder.
Today’s iPhone 4 Press Event – Free Cases For All!
Apple is hosting a press event today to address the issues that are being discussed daily in the media: iPhone 4 dropped calls by holding the phone a particular way. Since we can’t all make it to Cupertino, Macworld is doing an excellent job covering the event with a Macworld Live Blog. Be sure to check that out for the full scoop. Apple has a video and I’ve included some quotes to highlight below.
Apple is providing a video of the conference and shows their testing of antenna problems on other smartphones. You can also take a tour of Apple’s $100 million building for testing antenna design and learn about it and watch a video showcasing it.
Mozilla Recalls Two Add-Ons
Yesterday, Mozilla announced that they pulled two add-ons from the Mozilla Add-ons site. One add-on was not approved but still installed by roughly 1,800 users with 334 users currently reportedly using it. The problem with this add-on, appropriately called Mozilla Sniffer, is that it compromised users security. If somebody with this add-on installed submitted a login form with a password, it would also submit all of that information to a remote location. The Mozilla Sniffer add-on was listed as still being experimental, which means it required somebody to login and review a prompt that warned them that the code had not been reviewed by Mozilla yet.
End of the Line for Windows XP SP2 While Adobe Reader Changes Without Improving
Support for Windows XP SP2 Ends
With today’s Patch Tuesday, it marks the end of support for Windows XP Service Pack 2. This shouldn’t be that much of a news story except at the same time, we find out from Microsoft that 74% of business computers are still running Windows XP. Chances are that there is a significant percent of those that might not be running the latest service pack.
A Google Fiber for Communities Update
Google has provided an update today regarding their Google Fiber for Communities project. Posted to the Official Google Blog, the update doesn’t say much and it certainly doesn’t say what we all want to hear: which communities have been selected for the fiber trial towns. What it does tell us is that 1,100 communities responded and almost 200,000 individuals lobbied for their community. You can browse to see which communities have applied from this listing.
Two other things were included in this article. The first being the announcement of the Google Fiber for Communities site.
Comments