|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Subject: Re: Advisory comments
From: Steve (steve
SECURESOLUTIONS.ORG)Date: Tue Jan 02 2001 - 21:00:13 CST
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
> Why are we seeing an increase of "advisories" from people we have never
> heard of?
The security industry is starting to grow, therefore we are seeing many
research groups and consulting organizations spring up. This isn't
necessarily a bad thing depending on the situation.
> I don't consider this a security flaw. An advisory about what a Trojan
> could do to your machine is nonsense.
The issues with Zone Alarm, while very minor, are still issues. As the
moderator of the list, I have made a commitment to not reject a post based
on my own personal opinion or censor a post in any way. I leave it up to
the community to decide if an issue is valid and if it effects them.
> Some of these advisories lately seem to be more of an
> advertisement for the
> "group' that found it.
>
I agree with you on this point. The trend lately has been 1 page advisory,
2 pages (or more sometimes) advertising. It is very annoying but again,
when I started this list I made a commitment to not censor or reject posts
because I personally object to the content.
Again, this is the communities decision. As an educated consumer, I would
look at the quality of an organizations work and make my own decisions. A
company who releases complete, technical advisories while cooperating with
the effected vendor will more than likely get my business before the guys
releasing very brief advisories just to get an advertisement distributed and
especially before the guys who act irresponsibly with their findings and not
cooperate to protect the community in general.
These new research groups and consulting teams will eventually catch on. Or
maybe I am dreaming...........
Regards;
Steve Manzuik
Moderator - Win2KSecAdvice
- HowTo Security Admin
_____________________________________________________________________
** TO UNSUBSCRIBE, send the command "UNSUBSCRIBE win2ksecadvice"
** FOR A WEEKLY DIGEST, send the command "SET win2ksecadvice DIGEST"
SEND ALL COMMANDS TO: listservlistserv.ntsecurity.net
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]