Home page logo

fulldisclosure logo Full Disclosure mailing list archives

Re: FIREFOX flaws: nested array sort() loop Stack overflow exception
From: Daniel Veditz <dveditz () cruzio com>
Date: Mon, 29 Nov 2004 22:49:49 -0800

Jose Nazario wrote:
benefits of forcing/encouraging registration include:
      - garaunteed line of followup
      - reduced spam quantities in bugzilla
      - at leasta cutofof "i care enough to ..."

Currently more than half of the bugs that do get filed end up wasting time
rather than helping (duplicates, invalid, already fixed in a newer version,
no one else can reproduce). These are not minor benefits, the situation
would be far worse with drive-by bug reporting.

still, you're losing more than you may expect. i know i've failed to file
bug reports (non-security related) for mozilla products due to this "speed

It is a real problem, knowing where to draw the line is hard. For people who
don't wish to get as involved there are other places bugs could be reported
more informally (newsgroups, web forums, irc) and other volunteers would
most likely file the bugs for you if they can be reproduced.

-Dan Veditz

Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]