Peeve Farm

g r o t t o 1 1

Peeve Farm
Breeding peeves for show, not just to keep as pets

  Blog \Blôg\, n. [Jrg, fr. Jrg. "Web-log".
     See {Blogger, BlogSpot, LiveJournal}.]
     A stream-of-consciousness Web journal, containing
     links, commentary, and pointless drivel.

On My Blog Menu:

InstaPundit
USS Clueless
James Lileks
Little Green Footballs
As the Apple Turns
Entropicana
Cold Fury
Capitalist Lion
Red Letter Day
Eric S. Raymond
Tal G in Jerusalem
Secular Islam
Aziz Poonawalla
Corsair the Rational Pirate
.clue

« ? Blogging Brians # »

Book Plug:

Buy it and I get
money. I think.
BSD Mall

10/6/2003 -  10/8/2003
9/29/2003 -  10/5/2003
9/22/2003 -  9/28/2003
9/15/2003 -  9/21/2003
  9/8/2003 -  9/14/2003
  9/1/2003 -   9/7/2003
8/25/2003 -  8/31/2003
8/18/2003 -  8/24/2003
8/11/2003 -  8/17/2003
  8/4/2003 -  8/10/2003
7/28/2003 -   8/3/2003
7/21/2003 -  7/27/2003
7/14/2003 -  7/20/2003
  7/7/2003 -  7/13/2003
6/30/2003 -   7/6/2003
6/23/2003 -  6/29/2003
6/16/2003 -  6/22/2003
  6/9/2003 -  6/15/2003
  6/2/2003 -   6/8/2003
5/26/2003 -   6/1/2003
5/19/2003 -  5/25/2003
5/12/2003 -  5/18/2003
  5/5/2003 -  5/11/2003
4/28/2003 -   5/4/2003
4/21/2003 -  4/27/2003
4/14/2003 -  4/20/2003
  4/7/2003 -  4/13/2003
3/31/2003 -   4/6/2003
3/24/2003 -  3/30/2003
3/17/2003 -  3/23/2003
3/10/2003 -  3/16/2003
  3/3/2003 -   3/9/2003
2/24/2003 -   3/2/2003
2/17/2003 -  2/23/2003
2/10/2003 -  2/16/2003
  2/3/2003 -   2/9/2003
1/27/2003 -   2/2/2003
1/20/2003 -  1/26/2003
1/13/2003 -  1/19/2003
  1/6/2003 -  1/12/2003
12/30/2002 -   1/5/2003
12/23/2002 - 12/29/2002
12/16/2002 - 12/22/2002
12/9/2002 - 12/15/2002
12/2/2002 -  12/8/2002
11/25/2002 -  12/1/2002
11/18/2002 - 11/24/2002
11/11/2002 - 11/17/2002
11/4/2002 - 11/10/2002
10/28/2002 -  11/3/2002
10/21/2002 - 10/27/2002
10/14/2002 - 10/20/2002
10/7/2002 - 10/13/2002
9/30/2002 -  10/6/2002
9/23/2002 -  9/29/2002
9/16/2002 -  9/22/2002
  9/9/2002 -  9/15/2002
  9/2/2002 -   9/8/2002
8/26/2002 -   9/1/2002
8/19/2002 -  8/25/2002
8/12/2002 -  8/18/2002
  8/5/2002 -  8/11/2002
7/29/2002 -   8/4/2002
7/22/2002 -  7/28/2002
7/15/2002 -  7/21/2002
  7/8/2002 -  7/14/2002
  7/1/2002 -   7/7/2002
6/24/2002 -  6/30/2002
6/17/2002 -  6/23/2002
6/10/2002 -  6/16/2002
  6/3/2002 -   6/9/2002
5/27/2002 -   6/2/2002
5/20/2002 -  5/26/2002
5/13/2002 -  5/19/2002
  5/6/2002 -  5/12/2002
4/29/2002 -   5/5/2002
4/22/2002 -  4/28/2002
4/15/2002 -  4/21/2002
  4/8/2002 -  4/14/2002
  4/1/2002 -   4/7/2002
3/25/2002 -  3/31/2002
3/18/2002 -  3/24/2002
3/11/2002 -  3/17/2002
  3/4/2002 -  3/10/2002
2/25/2002 -   3/3/2002
2/18/2002 -  2/24/2002
2/11/2002 -  2/17/2002
  2/4/2002 -  2/10/2002
1/28/2002 -   2/3/2002
1/21/2002 -  1/27/2002
1/14/2002 -  1/20/2002
  1/7/2002 -  1/13/2002
12/31/2001 -   1/6/2002
12/24/2001 - 12/30/2001
12/17/2001 - 12/23/2001

Wednesday, April 17, 2002
01:16 - Hey, keep up the good work, guys! http://www.wired.com/news/technology/0,1282,51899,00.html	(top)
Remember a couple of months ago when Microsoft announced to the world that they would abruptly stop pursuing "more features" as their primary development goal, and instead focus on "more security"? How they would place security above all other priorities? How they would rework all their corporate action policies to take security very very very seriously indeed, thereby to address the long-standing, well-supported, and unwavering public perception that Microsoft software is about as secure as a cat on vacuuming day? Well, gee, guess what: there's another egregious IE security hole. And it's easily exploited, requiring the user to do nothing more complex than press the Back button. And Microsoft refuses to acknowledge that it's a problem. "Originally, I was only able to produce the same result when the user pressed the refresh button," Sandblad said in an e-mail. "I contacted Microsoft about it in November and they confirmed the problem. On Feb. 28, I received mail from them saying that they didn't think the problem was serious enough to fix." "Later, I e-mailed Microsoft with additional information, describing how it was possible to trigger the same flaw with the back button. A couple of days later I received a mail explaining that they might fix the problem in a future service pack. I told them that I was planning to go public with the vulnerability but that I could wait if they could convince me that they were going to fix the issue in reasonable time. They didn't respond at all." ... "Why the hell did they put a back button into the browser toolbar if they didn't want me to use it?" Martin Montez, a stockbroker, wondered. "I'm one of the few people in the world who actually reads the manuals and there's no warning anywhere that using the back button could compromise your system." Microsoft's spokesman said that the company "remains vigilant in our commitment to keeping users information safe and will be addressing this issue in an upcoming release." Yeah. Of course we believe you. After all, what reason could you have to lie? What I'm waiting for is the Big One-- the security flaw that results in a huge amount of lost national-security data, bank customer information, or critical government files. Something that will get the Big Boys so seriously pissed-off at Microsoft that they will smush them into the dirt like a big, indolent cockroach. I'm almost sad to see that they're abandoning .NET so early-- because it was our best hope to date of seeing that happen.