Skip to main content

MS Office sees 2 flaws a month...

...and that’s only so far this year. Apparently, people are using a lot of “buzzer” programs to find flaws. It took MS four months to respond to the flaw exposed by an attempted eBay auction of the details, and that’s apparently a normal response time for them.

As well as MS-Office, many web tools, iTunes & much security software has been ‘hit’ this year. I suspect that flaws in core, seldom-updated and internal chunks of software would be more disconcerting for security people.

This looks to me like a fine time to recommend using OpenOffice instead. (-:

Comments

Leon RJ Brooks said…
Sorry, forgot to mention: here is a reliable Oz download site for OpenOffice.
24 July, 2006 10:31
Anonymous said…
I have a suspicion that many are now ignoring the operating systems and concentrating on the typical installed applications ie any version of an office app, virus scanners,security apps etc
24 July, 2006 19:06
Leon RJ Brooks said…
That's distinctly probable (for this batch, anyway), but then again their tricks will be addressed at the most common suites, which is not (yet) OpenOffice — and when it begins to become OOo, the malware authors will be particularly aiming for the Vista versions.

Linux versions of OOo will see more regular updates, as well (ie through their automatable package management), which will thwart malware authors both directly and by giving them a more erratic moving target to aim for instead of a static one.
24 July, 2006 19:29
Post a Comment

Popular posts from this blog

every-application-is-part-of-a-toolkit at work

I have a LibreOffice Impress slideshow that I wish to turn into a narrated video. 1. export the slideshow as PNG images (if that is partially broken — as at now — at higher resolutions, Export Directly as PDF then use ‘pdftoppm’ (from the poppler-utils package) to do the same). 2. write a small C program (63 lines including comments) to display those images one at a time, writing a config file entry for Imagination (default transition: ‘cross fade’) based on when the image-viewer application (‘display,’ from the GraphicsMagick suite) is closed on each one; run that, read each image aloud, then close each image in turn. 3. run ‘Imagination’ over the config file to produce a silent MP4 video with the correct timings. 4. run ‘Audacity’ to record speech while using ‘SMPlayer’ to display the silent video, then export that recording as a WAV file. 4a. optionally, use ‘TiMIDIty’ to convert a non-copyright-encumbered MIDI tune to WAV, then import that and blend it with the speech (as a quiet b
1 comment
Read more

new life for an old (FTX) PSU, improved life for one human

the LEDs on this 5m strip happen to emit light centred on a red that does unexpectedly helpful things to (and surprisingly deeply within) a human routinely exposed to it. it has been soldered to a Molex connector, plugged into a TFX power supply from a (retired: the MoBo is cactus) Small Form Factor PC, the assorted PSU connectors (and loose end from the strip) have been taped over. the LED strip cost $10.24 including postage, the rest cost $0, the PSU is running at 12½% of capacity, consumes less power than a laptop plug-pack despite running a fan. trial runs begin today.
Post a Comment
Read more

boundaries

pushing the actual boundaries of the physical (not extremes, the boundaries themselves) can often remove barriers not otherwise perceived. one can then often resolve an issue itself, rather than merely stonewalling at the physical consequences of the issue.
Post a Comment
Read more