I am not sure comments like this ..

.. make things moving in the right direction:

What's up with Microsoft. This blog is supposed to be independant. I am not here to critics all the time what MS does. On the contrary, I make a living of their product. But this doesn't mean I am a pawn, just filtering what they can like or dislike.

I just think it's right to alert people about flaws so that they can protect their systems ASAP.

From G.Andrew Duthie:
...
For someone who has criticized what others post on the main feed, I would think that you would realize that nearly everyone on the main feed probably has other means of finding out about Windows flaws. It would be great if you would refrain from clogging up the main feed with posts like this.

But keep this one in mind from Frans Bouma:

Even worse, according to slashdot, MS knew about this bug for 6 (six) months... oops...

And finally the title of this post was exactly the one published by BBC today.

 

 

 

8 Comments

  • huh? Weird reaction from Duthrie. It's in MS interest that everybody and his brother patches every windows box in sight IMMEDIATELY. It's best for everyone that all the windows boxes are patched, otherwise a new worm is on the horizon... but I think Mr. Duthrie already thought of that ;)



    Blog what you want to blog, Pascal.

  • Agree Frans I blog what I want. Of course I am not pushng on the mainfeed what I don't find useful for the community, but there I find this useful to report the truth, nothing else than the truth. I just feel embarrassed myself by the repetitive number of patchs we faced recently, and I just expect some pause in the update continuous loop.

    Oh well just dreaming

  • Hi, Paschal: If I may make a suggestion...



    I have no objection to your posting a link to information about security vulnerabilities, or anything else you find blog-worthy. But I've noticed that you have a tendency to reproduce entire posts/pages from other sites, which is a waste of bandwidth. Post a link, and a comment if you wish, but let us visit the original site if we want details. Thanks!

  • I will simply repeat what I said before. It's not Paschal's job to notify us of Windows (or any other) flaws, however well-intentioned his post may be.



    If everyone who posted on weblogs.asp.net took it upon themselves to post about every Windows flaw, worm, etc. that came along, the main feed would become absolutely unusable.



    What's more, relying on blog posts as a way to find out about security flaws is inherently unreliable. If people are concerned about keeping their systems secure, they will enable automatic updates, check Windows Update regularly, run the Microsoft Baseline Security Analyzer, sign up for official notification lists from Microsoft, or otherwise keep themselves up to date. If they rely on blogs to keep informed on security flaws, what happens when Paschal misses one?



    Please understand, I'm not trying to beat anyone up here. I just don't see the weblogs.asp.net main feed as being an appropriate place for security or virus notices. Paschal certainly isn't the only one who's made such posts, but given his past complaints about keeping the main feed usable, I think it's entirely appropriate to ask him to reconsider whether his post was in keeping with that philosophy.

  • "Ah yes, but Paschels post was overkill GAD but finding out about David Hills signature change."



    Ah...I see, it's the old "if you don't criticize everyone, you can't criticize anyone" argument. Didn't we hear enough of that one after the Super Bowl?

  • I don't have a problem with the post (Post what you like) BUT it is a bit unnecessary seeing as everyone that visits weblogs.asp.net is a geek who already knew about the flaw anyway. Show of hands of those who didn't know about this flaw already? Shame on them :-)

  • G.Andrew Duthie whatever you can say I will continue like many others, to report bugs and Microsoft falws if I find this necessary. I am not an MS employee and I keep my mind open and rebel !

  • "G.Andrew Duthie whatever you can say I will continue like many others, to report bugs and Microsoft falws if I find this necessary. I am not an MS employee and I keep my mind open and rebel !"



    Paschal, get a grip!!!



    NO ONE, including myself, is telling you not to report flaws, or suggesting that because your blog is hosted on a Microsoft server that you're not allowed to be critical of Microsoft.



    To be blunt I DON'T CARE what's on your blog! What I expressed concern about is what you choose to add to the main feed. I am asking you to extend to consumers of the main feed the same courtesy you have in the past asked others to extend, that is, being thoughtful of what you post to the main feed, and whether it's truly something that's useful to the thousands of people who read the main feed.



    You are, of course, correct that nothing I do or say can *force* you to stop posting flaws to the main feed. But even if you do, I *do* wish that you would desist from misrepresenting what I'm trying to say. My criticism has *nothing* to do with whether or not you're a "rebel" and/or whether you criticize Microsoft. It has *everything* to do with whether or not you're being considerate of the readers of the main feed. IMO, you are not. Obviously you disagree, and quite defensively.

Comments have been disabled for this content.