, 2002-10-09
Developers are accused of not publicizing the browser's security vulnerabilities enough. But do we really need world wide alerts for every bug?
Expand all |
Post comment
Cool a unix/lenix guy preaching the same stuff as M$crud
2002-10-09
Twinker (3 replies)
Twinker (3 replies)
Cool a unix/lenix guy preaching the same stuff as M$crud
2002-10-09
Rob John <rdrj@mindspring.com> (2 replies)
Rob John <rdrj@mindspring.com> (2 replies)
Mozilla's 'Code of Silence' Isn't
2002-10-10
Twinker (2 replies)
Twinker (2 replies)
Mozilla's 'Code of Silence' Isn't
2002-10-11
XandreX (1 replies)
XandreX (1 replies)
I raised a bug about the fact that mozilla.org's security page that says 'Click here for known vulnrabilities' doesn't show any of them. I suggested that, because the default homepage already emplores you to upgrade from older versions, it may as well also inform the user that their browser has a security hole. If they did that using the side pane there'd be a much greater chance that people actually upgraded.
The netscape guy closed the bug. I closed their browser :o)
Luckily one of the mozilla.org guys did it (the same one that responded to the bugtraq report) Unfortunately he hasn't carried on with later fixes.
[ reply ]
Link to this comment: http://www.securityfocus.com/comments/columns/114/16785#16785