Re: full disclosure

betstd.sbi.com

• Messages sorted by: [ date ][ thread ][ subject ][ author ]
• Next message: Pat Myrto: "Re: [8lgm]-Advisory-14.UNIX.SCO-prwarn.12-Nov-1994"
• Previous message: Paul Howell: "Re: [8lgm]-Advisory-14.UNIX.SCO-prwarn.12-Nov-1994"
• In reply to: der Mouse: "full disclosure"
• Next in thread: Gene Spafford: "Re: full disclosure"

>Feh.  I'm disappointed to see you spouting this silliness, spaf,
>especially since if anyone ought to know better, it'd be you.

I thought spaf was on record as being opposed to disclosing exploitation
info for security holes.

Personally, I agree with you, it's important to get the info out there. But
I can see why the vendors would be opposed to it: by and large, they don't
really support their OSes, and so they'd much rather the exploitation info
stay secret, known only by them and by the hard-core burglers.

Happily, there is at least one vendor out there offering _good_ support. I'm
really looking forward to seeing BSDI's product on Suns.

-Bennett
betsbi.com

• Next message: Pat Myrto: "Re: [8lgm]-Advisory-14.UNIX.SCO-prwarn.12-Nov-1994"
• Previous message: Paul Howell: "Re: [8lgm]-Advisory-14.UNIX.SCO-prwarn.12-Nov-1994"
• In reply to: der Mouse: "full disclosure"
• Next in thread: Gene Spafford: "Re: full disclosure"