The patch that doesn't work...
-
[url]http://searchsecurity.techtarget.com/originalContent/0,289142,sid14_gci1115321,00.html[/url]
See the link. Apparantly Oracle even sucks at patching the sucking bugs in their sucking system... [:(]
-
Did you even RTFA, or did you take a look at it and start
bashing? 2 out of the 5 reasons listed are user error, not Oracle
error. 2 of the others happen to other companies too. The
only real issue I see there is that if you remove a patch, it's not
always listed as being removed. There's a catch-22 in that;
If your Sysadmin is so fucking incompetent that they can't keep their
system properly patched, they need to get fired.
-
Oh, yes... I've read it. For example, this:
On many occasions Oracle has supplied a "fix" for vulnerabilities discovered by NGSSoftware, yet on examining those "fixes" they fail to properly address the root of the problem. As such, the flaws can still be exploited on a "patched" server.
Clearly makes this a clear Oracle blooper.
So when a fix doesn't fix the problem, is it still a fix?
And to be honest, if a system needs highly educated professionals while other products can deliver the same quality with the use of trained monkeys, then I would prefer the tool with the monkeys...
Because monkeys are always fun... [:D]
-
Patches not fixing what they are supposed to isn't just an Oracle
issue. I gave it some thought, and was hard pressed to think of a
company that hasn't had that issue. 90% of Windows 'security'
patches don't fix the root of the issue; that's why the same
security holes still exist in one form or another. The same can
be said of many an MMO, and even of some FOSS products; Firefox
had a similar problem not too long ago. My point in all of this
is that picking on Oracle for an issue that appears to exist everywhere
in this business is pure crap. If it was only Oracle, fine;
however, that's clearly not the case.
-
@JThelen said:
(...)My point in all of this
is that picking on Oracle for an issue that appears to exist everywhere
in this business is pure crap. If it was only Oracle, fine;
however, that's clearly not the case.
Hey, there's a little difference. You pay havy money for the Oracle
DBMS you are using. Don't forget that. You have a right to demand more
then from your firefox.