funsec mailing list archives
Re[2]: standards status in the industry - opinion?
From: Pierre Vandevenne <pierre () datarescue com>
Date: Sat, 7 Jan 2006 01:27:25 +0100
Good Morning, MM> Most people are trying to tie you into a catch-22 of sorts. They act as MM> though you expect to see 9-14 day patch timelines all the time. While MM> I'd love to see them do that, it isn't practical in most cases. Yes, what a lot of people just doesn't seem to get is how simple that particular case was compared to other vulnerabilities. And, even if that functionality had been widely used, given the pre-historic nature of its underlying design (allowing executable content in an external data file), breaking it was almost the only option. -- Best regards, Pierre mailto:pierre () datarescue com _______________________________________________ Fun and Misc security discussion for OT posts. https://linuxbox.org/cgi-bin/mailman/listinfo/funsec Note: funsec is a public and open mailing list.
Current thread:
- standards status in the industry - opinion? Gadi Evron (Jan 06)
- Re: standards status in the industry - opinion? Matthew Murphy (Jan 06)
- Re[2]: standards status in the industry - opinion? Pierre Vandevenne (Jan 06)
- Re: standards status in the industry - opinion? Florian Weimer (Jan 07)
- Re: standards status in the industry - opinion? Matthew Murphy (Jan 07)
- Re: standards status in the industry - opinion? Gadi Evron (Jan 07)
- Re: standards status in the industry - opinion? Gadi Evron (Jan 07)
- Re: standards status in the industry - opinion? Drsolly (Jan 07)
- Re: standards status in the industry - opinion? Matthew Murphy (Jan 07)
- Re: standards status in the industry - opinion? Gadi Evron (Jan 07)
- Re: standards status in the industry - opinion? Florian Weimer (Jan 07)
- Re: standards status in the industry - opinion? Drsolly (Jan 07)
- Re: standards status in the industry - opinion? Florian Weimer (Jan 07)
- Re: standards status in the industry - opinion? Matthew Murphy (Jan 06)