Results 1 to 3 of 3

Thread: Security News

  1. #1
    AntiOnline Senior Member souleman's Avatar
    Join Date
    Oct 2001
    Location
    Flint, MI
    Posts
    2,883

    Security News

    I notice earlier that it took CERT something like 15 days after microsoft posted a patch to send out a message warning about a buffer overflow in IE. About 10 years ago, sys admins all subscribed to CERT, because that was the first place to get news. Obviously, the way the internet runs now, 15 days after microsoft, means probably 30 days after the vuln is discovered. In that time, a lot of machines can be compromised.

    I was just wondering where everyone went to get there most up to date security news. Is it the vendors sites, like microsoft and redhat? A security site like securityfocus? A maillist like bugtraq? Especially now that AO doesn't have News on the front page

  2. #2
    I'd rather be fishing DjM's Avatar
    Join Date
    Aug 2001
    Location
    The Great White North
    Posts
    1,867
    As much as I hate to admit it, Microsoft's Technet seem to be faster than CERT these days. There is a subscription feature there and, like I said, they seem to be pretty timely. (a must for a Microsoft shop )


    DjM

  3. #3
    Senior Member
    Join Date
    Jan 2002
    Posts
    682
    Is it the vendors sites, like microsoft and redhat? A security site like securityfocus? A maillist like bugtraq

    yes...

    i never rely on any one site...i visit them all...(that are relevant...we don't run linux here) as well as all of the major AV software vendors...it's amazing how differently they all respond...

    just book mark em and make it a rountine with your morning coffee...
    I used to be With IT. But then they changed what IT was. Now what I'm with isn't IT, and what's IT seems scary and weird." - Abe Simpson

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •