Microsoft Reveals Anti-Disclosure Plan

Threat level definition

Microsoft Reveals Anti-Disclosure Plan
Kevin Poulsen, SecurityFocus 2001-11-09

Five computer security firms join Microsoft to set an official standard for limiting disclosure of software security holes

Expand all | Post comment

Microsoft Reveals Anti-Disclosure Plan 2001-11-09
Anonymous (1 replies)

Microsoft Reveals Anti-Disclosure Plan 2001-11-10
Gregarious Monk

Microsoft Reveals Anti-Disclosure Plan 2001-11-09
Anonymous

Microsoft Reveals Anti-Disclosure Plan 2001-11-13
Brian Mac

What about the admins? 2001-11-09
ferretzero

Microsoft Reveals Anti-Disclosure Plan 2001-11-09
Anonymous

Microsoft Reveals Anti-Disclosure Plan 2001-11-09
russell handorf

Microsoft Reveals Anti-Disclosure Plan 2001-11-09
Angus Blitter

30 days makes no difference 2001-11-09
Anonymous

Microsoft Reveals Anti-Disclosure Plan 2001-11-09
Anonymous

Microsoft Reveals Anti-Disclosure Plan 2001-11-09
Bill Gaytes

Microsoft Reveals Anti-Disclosure Plan 2001-11-09
I am Stunned

Microsoft Reveals Anti-Disclosure Plan 2001-11-09
Anonymous

Microsoft Reveals Anti-Disclosure Plan 2001-11-09
kishg (at) optonline (dot) com [email concealed]

Microsoft Reveals Anti-Disclosure Plan 2001-11-09
Anonymous

Shocking developments 2001-11-09
H Carvey <keydet89 (at) yahoo (dot) com [email concealed]> (2 replies)

Shocking developments 2001-11-09
Anonymous

Shocking developments 2001-11-09
Greggory Peck

Microsoft Reveals Anti-Disclosure Plan 2001-11-09
Steve

l0pht like the other members has sold his soul. 2001-11-09
Anonymous

MS knows exactly what they're doing. 2001-11-09
Anonymous

Microsoft Reveals Anti-Disclosure Plan 2001-11-09
Tommy Ward

Download Utilities now, while you can 2001-11-09
anonymous

Be careful what you wish for. 2001-11-09
Surreal

Microsoft Reveals Anti-Disclosure Plan 2001-11-09
nogrhi

Microsoft Reveals Anti-Disclosure Plan 2001-11-09
Big Bangular

Such a policy for disclosure already exists 2001-11-09
Dumky (1 replies)

Such a policy for disclosure already exists 2001-11-10
H Carvey <keydet89 (at) yahoo (dot) com [email concealed]>

Microsoft Reveals Anti-Disclosure Plan 2001-11-09
Anonymous

Microsoft Reveals Anti-Disclosure Plan 2001-11-09
Anonymous

Microsoft Reveals Anti-Disclosure Plan 2001-11-09
Anonymous

Microsoft Reveals Anti-Disclosure Plan 2001-11-09
Anonymous

Microsoft Reveals Anti-Disclosure Plan 2001-11-09
Anonymous

Re:Microsoft Reveals Anti-Disclosure Plan 2001-11-09
Uhh

...on second thought...Kudos! 2001-11-09
H Carvey <keydet89 (at) yahoo (dot) com [email concealed]> (1 replies)

RE: ...on second thought...Kudos! 2001-11-10
Gregarious Monk

Microsoft Reveals Anti-Disclosure Plan 2001-11-09
Anonymous

Microsoft Reveals Anti-Disclosure Plan 2001-11-10
Anonymous

RFP (Rain Forest Puppy) 2001-11-10
Anonymous

Microsoft Reveals Anti-Disclosure Plan 2001-11-10
Anonymous

microsoft TERRIBLE SOFTWARE anyway 2001-11-10
Anonymous

Managed Security Services Industry? 2001-11-10
Dogsend

Microsoft Reveals Anti-Disclosure Plan 2001-11-10
Anonymous

So what would force Microsoft to patch these holes if exploits are not published? 2001-11-10
Rafal Sybilla-Leszczynski (1 replies)

So what would force Microsoft to patch these holes if exploits are not published? 2001-11-12
Anonymous

Read the fine print 2001-11-11
Anonymous

Cross your fingers... 2001-11-11
Anonymous

Microsoft Reveals Anti-Disclosure Plan 2001-11-11
eriks0n

Full disclosure will survive 2001-11-11
Ben - Canberra AUS

Microsoft Reveals Anti-Disclosure Plan 2001-11-12
Anonymous

So, green light to sue? 2001-11-12
Anonymous

Microsoft have no server monopoly: this may reduce their share 2001-11-12
Kirsten Bayes (kirruth@hushmail)

Microsoft Reveals Anti-Disclosure Plan 2001-11-12
hogridr

Well I guess we are officially taking computer security back into the dark ages. What will this accomplish? Nothing. If anything this is the worst mistake Microsoft has ever made. Simply look at the latest twenty vulnerabilities listed for Microsoft on SecurityFocus. Were any of them discovered by the companies listed in this Cartel of Darkness? Not a single one. Some of them were submitted directly to Microsoft, but none discovered by them, @Stake, Foundstone, and definately not Bindview of ISS. Will anyone submit new vulnerabilities to them now? Doubtfull. All this will accomplish is to take these announcements off the web and back into IRC and underground/blackhat websites. Anybody remember a site called Hacker News Network? L0pht? Just because they sold their souls to Bill does not mean that another group will not step up and take there place. All that this will accomplish is to take this valuable information away from those who need it, and fuel the burning desire to tear apart anything that Microsoft creates.

[ reply ]

Link to this comment: http://www.securityfocus.com/comments/articles/281/8767#8767

Microsoft Reveals Anti-Disclosure Plan 2001-11-12
GluffiS

Microsoft Reveals Anti-Disclosure Plan 2001-11-12
TheDoctor

Microsoft Reveals Anti-Disclosure Plan ISS nad Snort 2001-11-12
Anymouse

Microsoft Reveals Anti-Disclosure Plan 2001-11-13
Anonymous

Privacy Statement
Copyright 2008, SecurityFocus