“Here at the Microsoft Security Response Center, we investigate thousands of security reports every year. In some cases, we find that a report describes a bona fide security vulnerability resulting from a flaw in one of our products; when this happens, we develop a patch as quickly as possible to correct the error. In other cases, the reported problems simply result from a mistake someone made in using the product. But many fall in between. They discuss real security problems, but the problems don’t result from product flaws. Over the years, we’ve developed a list of issues like these, that we call the 10 Immutable Laws of Security. Don’t hold your breath waiting for a patch that will protect you from the issues we’ll discuss below. It isn’t possible for Microsoftor any software vendorto “fix” them, because they result from the way computers work. But don’t abandon all hope yetsound judgment is the key to protecting yourself against these issues, and if you keep them in mind, you can significantly improve the security of your systems.” [Link]
Sorry, comments are closed for this post.