Microsoft gives users a patch break, and time to prep for certificate slaying

[JMH]

Microsoft today said it will issue two security updates next week for its Visual Studio development platform and its System Center Configuration Manager, the company's enterprise patch and software distribution console.

The Redmond, Wash. developer outlined the two bulletins, company-speak for its security updates, in today's advance notification.

The light month -- in August, for instance, Microsoft shipped nine updates -- will give IT admins time to prepare for an October update that invalidates all certificates with keys less than 1,024 bits long.

"Customers will want to take advantage of September's quiet bulletin cycle to review their asset inventories," said Angela Gunn of the Trustworthy Computing group, in a Thursday blog post.

http://www.computerworld.com/s/arti...tificate_slaying?source=rss_keyword_microsoft

 

[AceInfinity]

Onto this digital certificate signature bug that hackers can exploit still it seems lol. I wonder if they will truly fix it or just get rid of the concept.