Saturday, January 17, 2004
InfoWorld: Symantec reels from week of mishaps: January 14, 2004: By Kieren McCarthy, Techworld.com: Security
InfoWorld: Symantec reels from week of mishaps: January 14, 2004: By Kieren McCarthy, Techworld.com: Security: "Symantec reels from week of mishaps
LiveUpdate patch contains hole that could allow security breach
By Kieren McCarthy, Techworld.comJanuary 14, 2004
Anti-virus company Symantec Corp. is reeling from a series of mishaps this week that may have cost it dear in customer numbers.
Yesterday, the company issued a patch for its LiveUpdate feature that could have allowed someone with network access to bypass security into privileged areas. The problem affected all except the most recent version (2.0) of its Norton Anti-Virus suite and stemmed from the Liv"
Yeah, it wasn't the best week Symantec ever had, but aside from the LiveUpdate problem, the rest of the grief was actually caused by other people. An example is the mess caused by VeriSign when it let one of its major root security certificates lapse and then got a fine set of overloaded servers when a million or more Norton AntiVirus installations tried to update the certificate store at once.
This was unfortunate, but what everyone is managing to ignore is that it's another example of VeriSign doing its own thing without regard to possible consequences. And this is the company that they want to turn RFID over to? Let's just say I won't be too shocked if they manage to screw that up as well.
LiveUpdate patch contains hole that could allow security breach
By Kieren McCarthy, Techworld.comJanuary 14, 2004
Anti-virus company Symantec Corp. is reeling from a series of mishaps this week that may have cost it dear in customer numbers.
Yesterday, the company issued a patch for its LiveUpdate feature that could have allowed someone with network access to bypass security into privileged areas. The problem affected all except the most recent version (2.0) of its Norton Anti-Virus suite and stemmed from the Liv"
Yeah, it wasn't the best week Symantec ever had, but aside from the LiveUpdate problem, the rest of the grief was actually caused by other people. An example is the mess caused by VeriSign when it let one of its major root security certificates lapse and then got a fine set of overloaded servers when a million or more Norton AntiVirus installations tried to update the certificate store at once.
This was unfortunate, but what everyone is managing to ignore is that it's another example of VeriSign doing its own thing without regard to possible consequences. And this is the company that they want to turn RFID over to? Let's just say I won't be too shocked if they manage to screw that up as well.
Comments:
Post a Comment
#
