, 2001-12-17
Safety standards and civil liability made automobiles safe. It can work for software too.
Expand all |
Post comment
Save the Net, Sue a Software Maker
2001-12-17
Sean, bremerton Wa (4 replies)
Sean, bremerton Wa (4 replies)
Save the Net, Sue a Software Maker
2002-01-12
An old codger that used to be proud of his profession.
An old codger that used to be proud of his profession.
Save the Net, Sue a Software Maker
2001-12-18
Robert A. Matern (3 replies)
Robert A. Matern (3 replies)
Save the Net, Sue a columnist
2001-12-19
Anonymous (1 replies)
Anonymous (1 replies)
OS and App tools NOT ready for Prime time= lawsuit city!
2001-12-21
we are years away from having tools that coders can use safely (ex: SELinux and CycloneC)! (1 replies)
we are years away from having tools that coders can use safely (ex: SELinux and CycloneC)! (1 replies)
more related to law than software.
1) The bugs you mention in sendmail and Sun sadmind were
years ago, and time to file suit has run out. In addition,
Solaris has had stack protection since version 2.6, and
sendmail is open source. A legal concept called "failure
to mitigate damages" applies to people who do things like
crash their car while leaving their seatbelt off. The
result is that they win their lawsuit but receive very
little in damage awards. If you *could* still sue Sun or
sendmail, you would be asked "Why didn't you use stack
protection/read the source code yourself?" And you would
probably end up winning $1 in damages.
2) No lawyer will sue someone who has no money, so OpenSSH
is safe. And, again, "Why didn't you read the source code?"
So, you kind of have it backwards. The only ones who would
be very threatened by litigation would be wealthy companies
who sell seriously defective, closed-source software. Such
companies would probably face a lot of big class-action
suits. About damn time if you ask me.
[ reply ]
Link to this comment: http://www.securityfocus.com/comments/columns/47/9691#9691