Want to read Slashdot from your mobile device? Point it at m.slashdot.org and keep reading!

 



Forgot your password?
typodupeerror
Check out the new SourceForge HTML5 internet speed test! No Flash necessary and runs on all devices. Also, Slashdot's Facebook page has a chat bot now. Message it for stories and more. ×
Microsoft

Submission + - Microsoft calls an IIS 5.0 vulnerability a feature (microsoft.com)

rumith writes: The Inquirer tells us that Microsoft has posted details on a vulnerability (or rather, a feature) in IIS 5.0 that allows an anonymous user to bypass authentication and access documents he shouldn't be able to. The good part: they've already taken down the specifics of the exploit. The bad part: they claim that this behavior is by design, and the only way to fix it is to upgrade to IIS 6.0, which is shipped only with Windows Server 2003, the cheapest edition of which costs only $399. Isn't this called "money extortion"?

"What I've done, of course, is total garbage." -- R. Willard, Pure Math 430a

Working...