Updated: 4/4/06; 6:56:08 PM.
Ted's Radio Weblog
Mission: Interoperable. Competition breeds Innovation. Monopolies breed stagnation. Working Well with Others is Good.
        

Wednesday, August 11, 2004

Microsoft released their monthly securty bulletins identifying yet another cross-site scripting error, this time with the beleagured Outlook Web Access (OWA) in Exchange 5.5. OWA has a long history of issues. I don't think that exposing Exchange via an HTML interface is a good idea. SMTP and POP with authentication, SSL, passwords and perhaps VPNs offer a far more secure way for clients to access Exchange remotely. Better yet, find a secure mail server. http://go.microsoft.com/fwlink/?LinkId=29234 for more details.

The second email I got was a "re-release" of MS04-020 showing that more products are affected. If you are running INTERIX 2.2 (what's that?), you'll want to review the bulletin at http://www.microsoft.com/technet/security/bulletin/MS04-020.mspx
9:00:08 AM    comment []


© Copyright 2006 Ted Roche.   

Creative Commons License This work is licensed under a Creative Commons License.

  

 

August 2004
Sun Mon Tue Wed Thu Fri Sat
1 2 3 4 5 6 7
8 9 10 11 12 13 14
15 16 17 18 19 20 21
22 23 24 25 26 27 28
29 30 31        
Jul   Sep


Click here to visit the Radio UserLand website.

Subscribe to "Ted's Radio Weblog" in Radio UserLand.

Click to see the XML version of this web page.

Click here to send an email to the editor of this weblog.
Blogroll