Search: Home Bugtraq Vulnerabilities Mailing Lists Jobs Tools Beta Programs
The Curmudgeon's Crystal Ball: Security Predictions for 2003
Richard Forno, 2003-01-15

As we ring in the new year, it's in with the new and out with the old. Or is it? Our fearless forecaster thinks not.

Comments Mode:
The Curmudgeon's Crystal Ball: Security Predictions for 2003 2003-01-16
Anonymous (1 replies)
Your prediction is that vendors will continue not to be held responsible for product defects that lead to security holes. Maybe security "researchers" should stop following so-called responsible disclosure and instead start posting security related bugs without notifying the vendors first. Make the...

[ more ]  [ reply ]
Understandable, but the wrong approach. 2003-01-20
Anonymous (1 replies)
I understand the frustration behind this post, but I think it's the wrong approach because it would punish responsible as well as irresponsible vendors.

By notifying the vendor first, two things happen:

- The vendor has time to respond.
- The security community has a stick (full disclosure)
...

[ more ]  [ reply ]
Understandable, but the wrong approach. 2003-01-24
Anonymous
There is another benefit to notifying the vendor first -
There have been instances of public disclosure of a vulnerability that was not being exploited until the general populace was made aware. Thus, many companies and individuals felt the pain and suffered losses long before the vendor could re...

[ more ]  [ reply ]
The Curmudgeon's Crystal Ball: Security Predictions for 2003 2003-01-17
Bob Radvanovsky
You've left out HIPAA (or the Health Insurance Portability and Accountability Act of 1996), which is a lasting tribute to "Billy" (JoeRayBob) Clinton. One of the more convoluted pieces of government work produced in recent years, was held back due to inconsistencies within the documentation.

Wha...

[ more ]  [ reply ]
The Curmudgeon's Crystal Ball: Security Predictions for 2003 2003-01-17
Anonymous
I think full disclosure + responsability + the new cali law will put the fear of god(or whatever you want) into people. Thus make it in general more secure, by force.

However, in these types of theories EVERYTHING has a good and a bad side.. Flames are actually good because this type of debate e...

[ more ]  [ reply ]
I got a good prediction for Forno. 2003-01-22
Tradeser (1 replies)
Rubi-con 2003, Tradeser drinks Forno under the table this year....

[ more ]  [ reply ]
I got a good prediction for Forno. 2003-01-25
Rick Forno
Somehow, I don't think so. :) You might fall off the table ....again.....Rick


...

[ more ]  [ reply ]




 

Privacy Statement
Copyright 2009, SecurityFocus