{"id":893,"date":"2001-11-04T13:41:44","date_gmt":"2001-11-04T18:41:44","guid":{"rendered":"http:\/\/hill-kleerup.org\/blog\/wp\/?p=893"},"modified":"2001-11-04T13:41:44","modified_gmt":"2001-11-04T18:41:44","slug":"what_do_you_hav","status":"publish","type":"post","link":"https:\/\/hill-kleerup.org\/blog\/2001\/11\/04\/what_do_you_hav.html","title":{"rendered":"What do you have in <i>your <\/i>wallet?"},"content":{"rendered":"<p>An open-source programmer spent about a half-hour combining a couple of known web site vulnerabilities to come up with a mechanism to <a href=\"http:\/\/www.zdnet.com\/zdnn\/stories\/news\/0,4586,5099186,00.html\">let someone exploit the Microsoft Passport scheme<\/a> and steal (or take advantage of) credit card information.<\/p>\n<p>Microsoft&#8217;s response?<\/p>\n<p>Well, they admitted the security analysis was &#8220;valid.&#8221;<\/p>\n<p>They removed the vulnerability.  This vulnerability, at least.  Beyond that?<\/p>\n<p class=\"block\">&#8220;Ultimately, the big takeaway from this is that there is no evidence that anyone has ever taken advantage of this,&#8221; said Adam Sohn, pro<a href=\"http:\/\/www.zdnet.com\/zdnn\/stories\/news\/0,4586,5099186,00.html\"><\/a>duct manager for Microsoft&#8217;s .Net platform strategy group. <br \/>\n[&#8230;] He added that the attack would not have been successful if the potential victim had been using Windows XP, Microsoft&#8217;s new operating system.<\/p>\n<p>So don&#8217;t worry, kids.  Nobody seems to have figured this out before someone pointed it out to Microsoft (so much for the inherently stultifying effects of open source), and even if they had, everyone would be safe if they upgraded to the newest Micro$oft product.<\/p>\n<p>I feel so much better &#8230;.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>An open-source programmer spent about a half-hour combining a couple of known web site vulnerabilities to come up with a mechanism to let someone exploit the Microsoft Passport scheme and&#8230;<\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_seopress_robots_primary_cat":"","_seopress_titles_title":"","_seopress_titles_desc":"","_seopress_robots_index":"","_jetpack_memberships_contains_paid_content":false,"footnotes":"","jetpack_publicize_message":"","jetpack_publicize_feature_enabled":true,"jetpack_social_post_already_shared":false,"jetpack_social_options":{"image_generator_settings":{"template":"highway","default_image_id":0,"font":"","enabled":false},"version":2}},"categories":[20],"tags":[],"class_list":["post-893","post","type-post","status-publish","format-standard","hentry","category-hi-tech"],"jetpack_publicize_connections":[],"jetpack_featured_media_url":"","jetpack_sharing_enabled":true,"jetpack-related-posts":[{"id":774,"url":"https:\/\/hill-kleerup.org\/blog\/2001\/11\/15\/ignorance_stren.html","url_meta":{"origin":893,"position":0},"title":"Ignorance, Strength","author":"***Dave","date":"Thu 15-Nov-01 3:29pm","format":false,"excerpt":"\"Your Ignorance is Our Strength A good article in The Register on Mico$oft's \"Security through Obscurity\" initiative. It basically says that M$ is trying to keep others from revealing security...","rel":"","context":"In &quot;Hi-Tech&quot;","block_context":{"text":"Hi-Tech","link":"https:\/\/hill-kleerup.org\/blog\/category\/hi-tech"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":1326,"url":"https:\/\/hill-kleerup.org\/blog\/2002\/01\/24\/hey_this_is_kin.html","url_meta":{"origin":893,"position":1},"title":"Hey, this is kind of work-related","author":"***Dave","date":"Thu 24-Jan-02 8:31am","format":false,"excerpt":"Under the Tunney Act, individuals may submit comments to federal courts about proposed settlements. Specifically, if you think Micro$oft is getting a free ride (with complementary peanuts) in the proposed...","rel":"","context":"In &quot;Hi-Tech&quot;","block_context":{"text":"Hi-Tech","link":"https:\/\/hill-kleerup.org\/blog\/category\/hi-tech"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":5858,"url":"https:\/\/hill-kleerup.org\/blog\/2004\/07\/09\/security_is_a_c.html","url_meta":{"origin":893,"position":2},"title":"Security is a &#8220;competitive advantage&#8221;","author":"***Dave","date":"Fri 9-Jul-04 9:44am","format":false,"excerpt":"Micro$oft is selling security as a \"competitive advantage\" that it has over the industry. Attendees at last year's event, in New Orleans, cheered when Microsoft Chief Executive Officer (CEO) Steve...","rel":"","context":"In &quot;Hi-Tech&quot;","block_context":{"text":"Hi-Tech","link":"https:\/\/hill-kleerup.org\/blog\/category\/hi-tech"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":12555,"url":"https:\/\/hill-kleerup.org\/blog\/2008\/03\/25\/outlook_google_hmmmmm.html","url_meta":{"origin":893,"position":3},"title":"Outlook + Google = Hmmmmm &#8230;","author":"***Dave","date":"Tue 25-Mar-08 8:48pm","format":false,"excerpt":"There have been lots of half-way and somewhat kludgy sync tools between Microsoft's Outlook and Google Mail to date (including the ongoing disaster which is the Google Calendar Sync). But...","rel":"","context":"In &quot;Hi-Tech&quot;","block_context":{"text":"Hi-Tech","link":"https:\/\/hill-kleerup.org\/blog\/category\/hi-tech"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":112,"url":"https:\/\/hill-kleerup.org\/blog\/2003\/06\/12\/msdinner.html","url_meta":{"origin":893,"position":4},"title":"MSDinner","author":"***Dave","date":"Thu 12-Jun-03 1:33pm","format":false,"excerpt":"From a correspondent: INSTRUCTIONS FOR MICROSOFT'S NEW TV DINNER PRODUCT You must first remove the plastic cover. By doing so you agree to accept and honor Microsoft rights to all...","rel":"","context":"In &quot;Jokes&quot;","block_context":{"text":"Jokes","link":"https:\/\/hill-kleerup.org\/blog\/category\/jokes"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":129640,"url":"https:\/\/hill-kleerup.org\/blog\/2016\/02\/03\/microsoft-is-buying-swiftkey.html","url_meta":{"origin":893,"position":5},"title":"Microsoft is buying SwiftKey","author":"***Dave","date":"Wed 3-Feb-16 7:20am","format":false,"excerpt":"SwiftKey has been my Android keyboard of choice for some time now. I'm not particularly thrilled that MS is buying them, but that's more on general principles than the, um, paranoia I've seen in some of the comment threads.At any rate, congratulations to the founders, and I hope your baby\u2026","rel":"","context":"In &quot;~PlusPosts&quot;","block_context":{"text":"~PlusPosts","link":"https:\/\/hill-kleerup.org\/blog\/category\/blogging\/plusposts"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]}],"_links":{"self":[{"href":"https:\/\/hill-kleerup.org\/blog\/wp-json\/wp\/v2\/posts\/893","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/hill-kleerup.org\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/hill-kleerup.org\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/hill-kleerup.org\/blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/hill-kleerup.org\/blog\/wp-json\/wp\/v2\/comments?post=893"}],"version-history":[{"count":0,"href":"https:\/\/hill-kleerup.org\/blog\/wp-json\/wp\/v2\/posts\/893\/revisions"}],"wp:attachment":[{"href":"https:\/\/hill-kleerup.org\/blog\/wp-json\/wp\/v2\/media?parent=893"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/hill-kleerup.org\/blog\/wp-json\/wp\/v2\/categories?post=893"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/hill-kleerup.org\/blog\/wp-json\/wp\/v2\/tags?post=893"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}