Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Information-Security-News
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

[ISN] Government Agencies To Get Early Dibs On Windows Patches

from [InfoSec News] Network Security [Permanent Link]
Subject: [ISN] Government Agencies To Get Early Dibs On Windows Patches
Date: Mon, 14 Mar 2005 03:43:29 -0600 (CST) 
http://www.informationweek.com/story/showArticle.jhtml?articleID=159401297

By Eric Chabrow 
InformationWeek 
March 11, 2005 

Microsoft will give the Air Force and other federal agencies software
patches to test a month before the general public receives them. The
arrangement is part of Microsoft's Security Update Validation Program,
a "closed beta program" introduced within the past 12 months.

Microsoft will begin giving prerelease software patches to the Air
Force, The Wall Street Journal reported Friday. The Department of
Homeland Security will give advance notice of the new vulnerabilities
to other government agencies and distribute the patches to them after
they've been tested by the Air Force, the newspaper reported.

Advance testing will make it possible for government agencies to
install the patches as soon as Microsoft releases the final versions.  
That's aimed at helping agencies stay ahead of hackers, who often are
able to develop attacks that exploit a software hole less than a week
after Microsoft discloses the vulnerability.

The early-access program is also available to select business
customers.

The software updates are provided to program participants only for
testing purposes, a Microsoft spokesman says. "Customers are
specifically prohibited from deploying these security updates in a
production environment," the spokesman says via E-mail. "Participants
are testing prerelease software, therefore the updates are provided
only to deploy in a test environment. Participants can only deploy the
security updates to their entire infrastructure when they are released
to the general public."

The issue of providing advance access to security bulletins and
software patches is a sensitive subject for Microsoft and other
software vendors, who need to ensure that information and code don't
find their way to hackers before final patches are available for all
customers. And customers who don't receive advance notice may believe
they're at a disadvantage.



_________________________________________
Bellua Cyber Security Asia 2005 -
http://www.bellua.com/bcs2005
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
  • [ISN] Government Agencies To Get Early Dibs On Windows Patches, InfoSec News <=
Previous by Date:  [ISN] AOL's Terms of Service Update for AIM Raises Eyebrows, InfoSec News
Next by Date:  [ISN] Security experts hit out at "unethical" bug finder, InfoSec News
Previous by Thread:  [ISN] AOL's Terms of Service Update for AIM Raises Eyebrows, InfoSec News
Next by Thread:  [ISN] Security experts hit out at "unethical" bug finder, InfoSec News
Indexes:  [Date] [Thread] [Top] [All Lists]