Hacker News new | past | comments | ask | show | jobs | submit login

Wowza. I would ask a sort of rhetorical question about how could Microsoft let this happen. Then quickly realize that is Microsoft and I'm not all that surprised.

The icing on the cake? "The report was not considered meeting the bar for security servicing, nor is it considered a breach. No code change was made and so no CVE was issued for this report."

So basically, they know about it and don't seem to give a shit.




Your last line is the current operating position for Microsoft.

They hide this under marketing blogs.


Didn't you hear?

They <3 open source!!!


OME is also accepted/compatible with Gmail, Yahoo!, etc.

Would be interesting to know whether they suffer the same issue, or those implementations chose a proper encryption mode..




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: