[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] RE: [FW1] The information for users Firewall-1 for NT (complex ho tfix v6.23).
Igor, What I really mean is that if people start distributing compacted security patches, cracker/hacker, during the process, can append Trojan-like binaries into it where innocent user may not notice. What I am just saying is that it is a good practice to ensure the integrity/creditability of hotfixes/patches. Many vendor releases software while posting a one-way hashes value so that user can verify the integrity of each patch downloaded. Microsoft is just one vendor who didn't bother... In terms of re-booting NT so many times... If Microsoft had to release hotfixes in such a "difficult-to-manageable" way, user is gonna to have to stick with it. And Of course, all of these are of my own opinion and have nothing to do with my employer. Regards, Matthew Tam HP Consulting Hewlett-Packard (Hong Kong) Limited mailto: [email protected] Tel: (852) 2599-7403 fax: (852) 2506-3592 p.s. further discussion of this shall go offline since it is getting out of the scope of the checkpoint thread. :) -----Original Message----- From: Igor U.Miturin [mailto:[email protected]] Sent: Thursday, February 08, 2001 6:20 PM To: TAM,MATTHEW-SK (HP-HongKong,ex1); Firewall-1 Mailing List Subject: Re: [FW1] The information for users Firewall-1 for NT (complex hotfix v6.23). Hi! File POSTSP6HOTFIX23.EXE - ZipSelfExtract and does not contain secrets for users :-) > It is nice > to have a page that summarize all post SP6a hotfix The file contains corrections only for core OS. > but I think it would be > safer to download the binaries from the vendor directly. And 23(!) times to reboot a computer? ;-) Best regards, Igor Miturin http://www.chat.ru/~imiturin/index.html ----- Original Message ----- From: "TAM,MATTHEW-SK (HP-HongKong,ex1)" <[email protected]> To: "Firewall-1 Mailing List" <[email protected]> Sent: Thursday, February 08, 2001 12:07 PM Subject: RE: [FW1] The information for users Firewall-1 for NT (complex hotfix v6.23). > > Hi all, > > I am not trying to be offensive here but... > > Is there anyway to verify the trust worthiness of this binary file? I would > think twice before running that binary... > > Will you patch your servers using patches from untrusted source? It is nice > to have a page that summarize all post SP6a hotfix, but I think it would be > safer to download the binaries from the vendor directly. > > Regards, > > Matthew Tam > HP Consulting > Hewlett-Packard (Hong Kong) Limited > > mailto: [email protected] > Tel: (852) 2599-7403 > fax: (852) 2506-3592 > > > > -----Original Message----- > From: Igor U.Miturin [mailto:[email protected]] > Sent: Thursday, February 08, 2001 4:12 PM > To: Firewall-1 Mailing List > Subject: [FW1] The information for users Firewall-1 for NT (complex > hotfix v6.23). > Importance: Low > > > > Hi! > > Just in case. > New complex PostSP6hotfix v6.23 for Microsoft Windows NT 4.0 (Server & > Workstation). > > http://www.chat.ru/~imiturin/index.html > > Best regards, > Igor Miturin > > > > > ============================================================================ > ==== > To unsubscribe from this mailing list, please see the instructions at > http://www.checkpoint.com/services/mailing.html > ============================================================================ > ==== > > > ============================================================================ ==== > To unsubscribe from this mailing list, please see the instructions at > http://www.checkpoint.com/services/mailing.html > ============================================================================ ==== ================================================================================ To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================================================
|