|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: [ISN] Full Disclosure: How Much Security Info Is Too Much?
From: InfoSec News (isn
c4i.org)
Date: Fri Oct 05 2001 - 02:51:22 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Forwarded from: Aj Effin Reznor <ajreznor.com>
"InfoSec News was known to say....."
> In fact, Marc Maiffret of eEye says that they were scheduled to
> post the announcement a week earlier, but Microsoft contacted him
> to ask for more time, saying there was a problem with the patch
> and they needed another week to fix it.
>
> EEye complied. Jay Dyson correctly noted that Microsoft publicly
> thanked the company for waiting until they had prepared the patch.
On top of that, it's been established that CR II (and possibly CR I)
had a different enough structure to be considered as having NOT been
made possible by the disclosure of eEye's findings.
-aj.
-
ISN is currently hosted by Attrition.org
To unsubscribe email majordomoattrition.org with 'unsubscribe isn' in the BODY
of the mail.
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]