[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-Disclosure] Vulnerability Disclosure Debate

To: Florian Weimer <fw@deneb.enyo.de>
Subject: Re: [Full-Disclosure] Vulnerability Disclosure Debate
From: Georgi Guninski <guninski@guninski.com>
Date: Thu, 07 Aug 2003 22:36:09 +0300

Florian Weimer wrote:
> The free software camp has adopted the responsible disclosure process
> while Microsoft still was struggling with significant security issues

Unless you can prove this, I consider this pure FUD.
 From personal experience with losers like m$ and on the other hand open source 
camp, your statement is completely wrong.
Personally don't see any open source in the OIS crap.

> 
> ..., but the days of full
> disclosure are over.

lol.
This is pure FUD.
Full disclosure is alive and well, no matter what you think.
Virus writing is illegal, but are virii dead?
If full disclosure becomes "obfuscated", people like you will have troubles 
reconstructing exploits from sniffer logs - just check the only exploit which m$ 
fixed soon.

georgi

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

References:
- [Full-Disclosure] Vulnerability Disclosure Debate
  - From: gridrun <gridrun@likes.smart-girlies.org>
- Re: [Full-Disclosure] Vulnerability Disclosure Debate
  - From: Florian Weimer <fw@deneb.enyo.de>

Prev by Date: [Full-Disclosure] Incident response kit? Really OT, but need some help.
Next by Date: Re: [Full-Disclosure] Vulnerability Disclosure Debate
Prev by thread: Re: [Full-Disclosure] Vulnerability Disclosure Debate
Next by thread: Re: [Full-Disclosure] Vulnerability Disclosure Debate
Index(es):
- Date
- Thread