The Sounds of Patching
When a person or company discovers a flaw in Microsoft's software, the right thing to do, according to Microsoft and perhaps most vendors out there, is to disclose the discovery in private with the software maker. In the reverse scenario, where Microsoft discovers a flaw in its own software, should Microsoft offer up details of its discoveries to its customers, as it seeks out a solution? Reporter Jabulani Leffall writes about one company
, Core Security Technologies, who is alleging that, based on some investigative work of its own, Redmond hasn't been completely transparent about flaws it finds in its internal processes and has been quietly patching those flaws as systems ping Microsoft's servers for fixes and updates.
As a user, I see no harm in what Microsoft is doing. But then again, I'm no admin. I'd love to hear what you'd have to say. Chime in here or by e-mail and tell me if there's some inherent danger for Microsoft -- or for that matter, any company -- to patch quietly.
Posted by Michael Domingo on 05/13/2010 at 11:59 AM