Re: full disclosure

Bennett Todd (bet@std.sbi.com)
Mon, 28 Nov 1994 13:58:20 -0500 (EST)

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Pat Myrto: "Re: [8lgm]-Advisory-14.UNIX.SCO-prwarn.12-Nov-1994"
Previous message: Paul Howell: "Re: [8lgm]-Advisory-14.UNIX.SCO-prwarn.12-Nov-1994"
In reply to: der Mouse: "full disclosure"
Next in thread: Gene Spafford: "Re: full disclosure"

>Feh.  I'm disappointed to see you spouting this silliness, spaf,
>especially since if anyone ought to know better, it'd be you.

I thought spaf was on record as being opposed to disclosing exploitation
info for security holes.

Personally, I agree with you, it's important to get the info out there. But
I can see why the vendors would be opposed to it: by and large, they don't
really support their OSes, and so they'd much rather the exploitation info
stay secret, known only by them and by the hard-core burglers.

Happily, there is at least one vendor out there offering _good_ support. I'm
really looking forward to seeing BSDI's product on Suns.

-Bennett
bet@sbi.com

Next message: Pat Myrto: "Re: [8lgm]-Advisory-14.UNIX.SCO-prwarn.12-Nov-1994"
Previous message: Paul Howell: "Re: [8lgm]-Advisory-14.UNIX.SCO-prwarn.12-Nov-1994"
In reply to: der Mouse: "full disclosure"
Next in thread: Gene Spafford: "Re: full disclosure"