Robert Lemos, SecurityFocus 2006-07-14
HD Moore is used to polarizing the vulnerability-research community.
Colapse all |
Post comment
Daily flaws ratchet up disclosure debate
2006-07-14
Matthew Murphy
Matthew Murphy
H.D. once referred to you as "one of the few reporters who actually understands the issues involved [in the disclosure debate]."
This is a shining example of why: you've done a balanced piece of reporting that illustrates why vendors must have time, but not unlimited time, to fix vulnerabilities....
[ more ] [ reply ]
This is a shining example of why: you've done a balanced piece of reporting that illustrates why vendors must have time, but not unlimited time, to fix vulnerabilities....
[ more ] [ reply ]
A bunch of MicroBug$... again!
2006-07-17
assurbanipal
assurbanipal
So IE is definitely broken.
It's amazing to discover that "Microsoft has made fuzzing part of its Software Development Lifecycle". Difficult to notice, I'd rather say.
Companies expressing such an abysmal level of quality should be under probation for a few years and forbid to spit out yet more ga...
[ more ] [ reply ]
It's amazing to discover that "Microsoft has made fuzzing part of its Software Development Lifecycle". Difficult to notice, I'd rather say.
Companies expressing such an abysmal level of quality should be under probation for a few years and forbid to spit out yet more ga...
[ more ] [ reply ]
Daily flaws ratchet up disclosure debate
2006-07-17
Bruce McCulley (1 replies)
Bruce McCulley (1 replies)
Much of this discussion seems overly simplistic to me. Slammer exploited a vulnerability that was known and patched long before the exploit was released into the wild, and yet it found many systems to infect. Why? How does disclosure affect such situations? What could be done to improve?
Beca...
[ more ] [ reply ]
Beca...
[ more ] [ reply ]
Re: Daily flaws ratchet up disclosure debate
2006-07-22
Hordur Helgi Helgason
Hordur Helgi Helgason
>Much of this discussion seems overly simplistic to me.
>[...]
>From that experience I think many important constituencies
>are ignored in the present conversation, so I hope others will
>join the discussion.
I have to agree with Mr. McCulley. It is not as simple as the Big Bad Software Compa...
[ more ] [ reply ]
>[...]
>From that experience I think many important constituencies
>are ignored in the present conversation, so I hope others will
>join the discussion.
I have to agree with Mr. McCulley. It is not as simple as the Big Bad Software Compa...
[ more ] [ reply ]
[ more ] [ reply ]