Firewall Wizards mailing list archives
Re: recent disclosure debates
From: "Marcus J. Ranum" <mjr () ranum com>
Date: Tue, 17 Dec 2002 02:12:12 -0500
R. DuFresne wrote:
I'm wondering why all the fingers are pointing so dramatically at ISS and why ISC has received little or no heat in the issue.
Probably because ISC wasn't marketing itself based on the fact that its code was buggy, but ISS was marketing itself based on the fact that it had found bugs in ISC's code. As long as customers sit back and keep lapping up the whole vulnerability-disclosure-as-marketing phenomenon, we'll keep having to put up with it. I used to think that it'd wear off but that was 5 years ago, already. I'd expected a backlash of customer nausea long before now. I guess P.T. Barnum was wrong: there's one born every _SECOND_. mjr. --- Marcus J. Ranum http://www.ranum.com Computer and Communications Security mjr () ranum com _______________________________________________ firewall-wizards mailing list firewall-wizards () honor icsalabs com http://honor.icsalabs.com/mailman/listinfo/firewall-wizards
Current thread:
- Re: recent disclosure debates, (continued)
- Re: recent disclosure debates Barney Wolff (Dec 15)
- Re: recent disclosure debates R. DuFresne (Dec 15)
- Re: recent disclosure debates Barney Wolff (Dec 15)
- Re: recent disclosure debates R. DuFresne (Dec 15)
- Re: recent disclosure debates Adam Shostack (Dec 16)
- Re: recent disclosure debates Paul Robertson (Dec 16)
- Re: recent disclosure debates Adam Shostack (Dec 16)
- Re: recent disclosure debates Paul D. Robertson (Dec 16)
- Re: recent disclosure debates R. DuFresne (Dec 15)
- Re: recent disclosure debates Barney Wolff (Dec 15)
- Re: recent disclosure debates Paul D. Robertson (Dec 15)