Props to Mr Sweden for this.
It may be the most-used vendor bug reporting address in history. This week Redmond put "secure@microsoft.com" out to pasture in favor of a handy Web form.
To improve the information-gathering phase of its security investigations Microsoft is moving away from the use of a dedicated e-mail address for contacting the company about security bugs, the company said Tuesday.
The Microsoft Security Response Center (MSRC) will continue to monitor secure@microsoft.com to accept vulnerability reports and to communicate with customers, according to a spokesman. But last weekend the company removed the e-mail address from the "Alert Us" page at its security site. In its place is a new Web-based input form designed to gather the information needed to start an investigation, the Microsoft representative said.
The new vulnerability reporting form coaches bug reporters through the steps of describing which products are affected, the nature of the flaw and how an attacker might exploit it. Once a report is submitted, the process operates exactly as before, primarily through e-mail between the customer and MSRC staff, Microsoft said.
Under the previous reporting system, Microsoft typically needed to exchange several e-mails with the vulnerability finder before launching its own investigation, Microsoft said.
To encourage security professionals to work with Microsoft confidentially on security bugs, in 2000 the company began formally acknowledging experts who discretely report vulnerabilities to Microsoft. The acknowledgements appear in a special section of the firm's security bulletins.
Microsoft's security group received over 5,000 e-mails during the first eight months of 2000, according to the company's Web site.
Reaction to the new reporting system was mixed among the white hat hackers and security researchers most accustomed to telling Microsoft about its security holes.
A security researcher with EyeOnSecurity.net said he welcomed the new system. "I hope this standardization may be better for them and the security researcher -- so that both speak the same language," said "Obscure," who noted that Microsoft has recently had difficulty reproducing vulnerabilities he has reported to the company.
News source: Security Focus
It may be the most-used vendor bug reporting address in history. This week Redmond put "secure@microsoft.com" out to pasture in favor of a handy Web form.
To improve the information-gathering phase of its security investigations Microsoft is moving away from the use of a dedicated e-mail address for contacting the company about security bugs, the company said Tuesday.
The Microsoft Security Response Center (MSRC) will continue to monitor secure@microsoft.com to accept vulnerability reports and to communicate with customers, according to a spokesman. But last weekend the company removed the e-mail address from the "Alert Us" page at its security site. In its place is a new Web-based input form designed to gather the information needed to start an investigation, the Microsoft representative said.
The new vulnerability reporting form coaches bug reporters through the steps of describing which products are affected, the nature of the flaw and how an attacker might exploit it. Once a report is submitted, the process operates exactly as before, primarily through e-mail between the customer and MSRC staff, Microsoft said.
Under the previous reporting system, Microsoft typically needed to exchange several e-mails with the vulnerability finder before launching its own investigation, Microsoft said.
To encourage security professionals to work with Microsoft confidentially on security bugs, in 2000 the company began formally acknowledging experts who discretely report vulnerabilities to Microsoft. The acknowledgements appear in a special section of the firm's security bulletins.
Microsoft's security group received over 5,000 e-mails during the first eight months of 2000, according to the company's Web site.
Reaction to the new reporting system was mixed among the white hat hackers and security researchers most accustomed to telling Microsoft about its security holes.
A security researcher with EyeOnSecurity.net said he welcomed the new system. "I hope this standardization may be better for them and the security researcher -- so that both speak the same language," said "Obscure," who noted that Microsoft has recently had difficulty reproducing vulnerabilities he has reported to the company.
News source: Security Focus
What's it look like you say?
Heck, you can even get a Neowin theme for it from here.
To be fair I’m not gonna throw my Nokia away as there’s no way anyone would go out for a few beers with this thing in their back pocket. But that’s hardly the point of this device anyway. Its GPRS compatibility, along with the version of Pocket Internet Explorer that comes with Pocket PC 2002, means you can access both WAP and Web sites – including Neowin or Neowin Mobile Edition. You can, for example, pick up Web mail or access your company’s intranet and cache important pages to read offline. Pocket IE supports SSL, so it’s even possible to perform secure transactions.
As for email, I’m getting used to picking up my email using the wired or wireless ActiveSync, along with SMS messages which turn up in their own folder of the Inbox. No more being able to save only 10 or so on a SIM card, you get to save them all (sent, received, drafts etc.). This was a little weird at first but I really like it. As for using the phone app it’s a breeze, with all numbers being imported from the SIM card as well.
Courtesy of the version of Windows Media Player you can listen to music through the rather good headphones. However, with a view to the limited capacity its best to use the smallest sampling rate possible… leaving the sound a tiny bit rough on some tracks: although using Microsoft’s Media Player on my PC transferring them across is quite easy allowing for a higher rate to be selected if storing on a SD/MMC card.
So there you have it. If this is the sign of convergent devices to come then w00t.
By the way... yes this review ain't impartial: I'm too in love with the thing to be unbiased.
View: O2 XDA site
Commenting has either been disabled on this article or you are not logged in. Click here to login or register, its free!
Note: Anonymous commenting is disabled in order to keep the quality of responses to a high standard.