[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-Disclosure] Information Week: 2/3 of pros want immediate disclosure

To: "Ingevaldson, Dan (ISS Atlanta)" <dsi@xxxxxxx>
Subject: Re: [Full-Disclosure] Information Week: 2/3 of pros want immediate disclosure
From: Jason Coombs <jasonc@xxxxxxxxxxx>
Date: Thu, 08 Jul 2004 21:30:27 -1000

Ingevaldson, Dan (ISS Atlanta) wrote:

What would the results look like if you asked a loaded question that
leaned in the other direction?

"Should software vendors disclose information about software
vulnerabilities to the global hacking community at the same time as all
their customers who haven't yet implemented a working patch management
process?"

How about this one, too, so we'll know the technical competency of the people who provide answers to the first two questions:

"Do you believe it is possible for software vendors to disclose information about software vulnerabilities to their customers without the global hacking community learning about that disclosure?"

Any answer other than "No." would prove the respondant is not qualified to give answers to such questions.

Sincerely,

Jason Coombs
jasonc@xxxxxxxxxxx

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

References:
- RE: [Full-Disclosure] Information Week: 2/3 of pros want immediate disclosure
  - From: Ingevaldson, Dan (ISS Atlanta)

Prev by Date: Re: [Full-Disclosure] http://209.50.251.182/new-exploit5/
Next by Date: Re: [Full-Disclosure] http://209.50.251.182/new-exploit5/
Previous by thread: RE: [Full-Disclosure] Information Week: 2/3 of pros want immediate disclosure
Next by thread: [Full-Disclosure] Microsoft hides certain types of files from your eyes + some filename parsing bug
Index(es):
- Date
- Thread