Dominant stack (Score: 0) by Anonymous Coward on 2014-11-03 08:15 (#2TWA) I cringe to think what it would be like if this was a piece of a dominant stack like Microsoft or SAP Re: Dominant stack (Score: 1) by zafiro17@pipedot.org on 2014-11-03 11:24 (#2TWC) Drupal is pretty darned dominant though, in the web content world, anyway. I know Wordpress is probably the biggest one out there but Drupal is probably second I'd think, or not far away from the top, anyway. But on /. and elsewhere, wherever a Drupal thread comes up there's an instant reaction from people who have programmed for it, and they complain it's a hairball of spaghetti code. Maybe this was a train wreck in the making and anybody who knew the code knew sooner or later it would happen.Still, how would you like to be the person responsible for writing a security announcement that goes, "unless you've patched recently, you have probably already been compromised?" That's got to be pretty uncomfortable. Re: Dominant stack (Score: 1) by zafiro17@pipedot.org on 2014-11-03 11:25 (#2TWD) Oh, and before Microsoft pats itself on the back, there's a vuln going around now that uses freaking Powerpoint as a vector, so Microsoft isn't free and clear yet either:http://www.theregister.co.uk/2014/10/22/powerpoint_attacks_exploit_ms_0day/Powerpoint, fer Chrissake. How long have we been dealing with this? Adobe, same thing. So tired of updating Adobe products. Re: Dominant stack (Score: 2, Interesting) by Anonymous Coward on 2014-11-03 14:50 (#2TWG) That's what really gets me about these recent exploits. They get tons of publicity, but similar ones from the big proprietary vendors are kept quiet. So now my PHB thinks that security is only an issue with OSS. Re: Dominant stack (Score: 1) by zafiro17@pipedot.org on 2014-11-03 17:52 (#2TWJ) Sure seems like the exploits by big vendors' software make a pretty big splash too - there sure is a lot of press about the latest Microsoft hacks - The Register.co.uk for example has a field day with "Patch Tuesday." Re: Dominant stack (Score: 0) by Anonymous Coward on 2014-11-03 22:31 (#2TWK) The Register is not the sort of thing that a PHB reads. I've never seen a MS hack in anything mainstream, but the I would be so happy if I was wrong about this.
Re: Dominant stack (Score: 1) by zafiro17@pipedot.org on 2014-11-03 11:24 (#2TWC) Drupal is pretty darned dominant though, in the web content world, anyway. I know Wordpress is probably the biggest one out there but Drupal is probably second I'd think, or not far away from the top, anyway. But on /. and elsewhere, wherever a Drupal thread comes up there's an instant reaction from people who have programmed for it, and they complain it's a hairball of spaghetti code. Maybe this was a train wreck in the making and anybody who knew the code knew sooner or later it would happen.Still, how would you like to be the person responsible for writing a security announcement that goes, "unless you've patched recently, you have probably already been compromised?" That's got to be pretty uncomfortable. Re: Dominant stack (Score: 1) by zafiro17@pipedot.org on 2014-11-03 11:25 (#2TWD) Oh, and before Microsoft pats itself on the back, there's a vuln going around now that uses freaking Powerpoint as a vector, so Microsoft isn't free and clear yet either:http://www.theregister.co.uk/2014/10/22/powerpoint_attacks_exploit_ms_0day/Powerpoint, fer Chrissake. How long have we been dealing with this? Adobe, same thing. So tired of updating Adobe products. Re: Dominant stack (Score: 2, Interesting) by Anonymous Coward on 2014-11-03 14:50 (#2TWG) That's what really gets me about these recent exploits. They get tons of publicity, but similar ones from the big proprietary vendors are kept quiet. So now my PHB thinks that security is only an issue with OSS. Re: Dominant stack (Score: 1) by zafiro17@pipedot.org on 2014-11-03 17:52 (#2TWJ) Sure seems like the exploits by big vendors' software make a pretty big splash too - there sure is a lot of press about the latest Microsoft hacks - The Register.co.uk for example has a field day with "Patch Tuesday." Re: Dominant stack (Score: 0) by Anonymous Coward on 2014-11-03 22:31 (#2TWK) The Register is not the sort of thing that a PHB reads. I've never seen a MS hack in anything mainstream, but the I would be so happy if I was wrong about this.
Re: Dominant stack (Score: 1) by zafiro17@pipedot.org on 2014-11-03 11:25 (#2TWD) Oh, and before Microsoft pats itself on the back, there's a vuln going around now that uses freaking Powerpoint as a vector, so Microsoft isn't free and clear yet either:http://www.theregister.co.uk/2014/10/22/powerpoint_attacks_exploit_ms_0day/Powerpoint, fer Chrissake. How long have we been dealing with this? Adobe, same thing. So tired of updating Adobe products. Re: Dominant stack (Score: 2, Interesting) by Anonymous Coward on 2014-11-03 14:50 (#2TWG) That's what really gets me about these recent exploits. They get tons of publicity, but similar ones from the big proprietary vendors are kept quiet. So now my PHB thinks that security is only an issue with OSS. Re: Dominant stack (Score: 1) by zafiro17@pipedot.org on 2014-11-03 17:52 (#2TWJ) Sure seems like the exploits by big vendors' software make a pretty big splash too - there sure is a lot of press about the latest Microsoft hacks - The Register.co.uk for example has a field day with "Patch Tuesday." Re: Dominant stack (Score: 0) by Anonymous Coward on 2014-11-03 22:31 (#2TWK) The Register is not the sort of thing that a PHB reads. I've never seen a MS hack in anything mainstream, but the I would be so happy if I was wrong about this.
Re: Dominant stack (Score: 2, Interesting) by Anonymous Coward on 2014-11-03 14:50 (#2TWG) That's what really gets me about these recent exploits. They get tons of publicity, but similar ones from the big proprietary vendors are kept quiet. So now my PHB thinks that security is only an issue with OSS. Re: Dominant stack (Score: 1) by zafiro17@pipedot.org on 2014-11-03 17:52 (#2TWJ) Sure seems like the exploits by big vendors' software make a pretty big splash too - there sure is a lot of press about the latest Microsoft hacks - The Register.co.uk for example has a field day with "Patch Tuesday." Re: Dominant stack (Score: 0) by Anonymous Coward on 2014-11-03 22:31 (#2TWK) The Register is not the sort of thing that a PHB reads. I've never seen a MS hack in anything mainstream, but the I would be so happy if I was wrong about this.
Re: Dominant stack (Score: 1) by zafiro17@pipedot.org on 2014-11-03 17:52 (#2TWJ) Sure seems like the exploits by big vendors' software make a pretty big splash too - there sure is a lot of press about the latest Microsoft hacks - The Register.co.uk for example has a field day with "Patch Tuesday." Re: Dominant stack (Score: 0) by Anonymous Coward on 2014-11-03 22:31 (#2TWK) The Register is not the sort of thing that a PHB reads. I've never seen a MS hack in anything mainstream, but the I would be so happy if I was wrong about this.
Re: Dominant stack (Score: 0) by Anonymous Coward on 2014-11-03 22:31 (#2TWK) The Register is not the sort of thing that a PHB reads. I've never seen a MS hack in anything mainstream, but the I would be so happy if I was wrong about this.