When"full disclosure" equals collusion, users are in danger

  2006-09-30 19:30:02
Gone are the days when"full disclosure" meant the immediate public release of information about vulnerabilities or exploits uncovered by security researchers. Whatever it means today is the result of a collaboration -- some might call it collusion -- between the researcher or firm finding the flaw and the vendor or project responsible for the code. Recent patches from Apple illustrate the dangers of this practice when proprietary software is involved. 
  PNG Image  PNG Image  PNG Image
  Related tags  


This particular article has been collected via RSS syndication. We apologize if it's too brief.
If You wish to publish articles on LinuxStreet.net please contact us.


  Similar articles found on LinuxStreet  
ImageAvoid Another HAVA Train Wreck: Software Disclosure Requirements
ImageAn ingenious version tracking solution for OpenOffice.org
ImageLinux users could face European patent threat
ImageMozilla: Researchers should practice responsible flaw disclosure
ImageURGENT! You, your relatives, and friends are in grave danger!
ImagePassword vulnerability in Firefox 2.0.0.5
ImageUbuntu plus Dell equals better support for devices in Linux
ImageWho Fouled My Carpet...?
ImageThe Cheap Revolution
ImageF-Secure warns of archive protocol danger

Leave a comment on this article


Captcha

  
Check this if the code you see is not readable and resubmit the form.
(Data you entered will be preserved)



  

Comments (0)





© 2006-2008 LinuxStreet | Valid CSS | Valid XHTML | Service | Privacy | Add to Favorites
Currently 12 visitor(s) online | Page generated in 0.4632s | SQL Queries: 5 | Powered by SharkCMS