Free Republic
Browse · Search 		General/Chat
Topics · Post Article

To: ShadowAce
I agree that the vendor should be notified first.

Then we agree. I think 6 months is sufficient time for vendors to respond. After that only official groups such as CERT should be notified, and anything else considered criminally negligent. But keep in mind this puts you at odds with open source leaders like Linus Torvalds who believe in what they call "full disclosure", meaning let the hackers and everyone know asap.

39 posted on 08/02/2006 10:11:11 AM PDT by Golden Eagle (Buy American. While you still can.)
[ Post Reply | Private Reply | To 38 | View Replies ]

To: Golden Eagle
But keep in mind this puts you at odds with open source leaders like Linus Torvalds who believe in what they call "full disclosure", meaning let the hackers and everyone know asap.

I (and others here) have always claimed that we don't all follow "OSS leaders'" beliefs. Until now, you have refused to believe that.

I expect you to remember this newfound belief when you start looking for topics to smear us with.

40 posted on 08/02/2006 10:21:17 AM PDT by ShadowAce (Linux -- The Ultimate Windows Service Pack)
[ Post Reply | Private Reply | To 39 | View Replies ]

Free Republic
Browse · Search 		General/Chat
Topics · Post Article

FreeRepublic, LLC, PO BOX 9771, FRESNO, CA 93794
FreeRepublic.com is powered by software copyright 2000-2008 John Robinson