Bugs for Beta, EOL'd products

[jsl2 () JEDITECH COM]

On Thu, 31 Aug 2000, Jay D. Dyson wrote:

>       I don't typically do this, but I feel I must question the validity
> (and even the value) of issuing a DoS advisory on products that are either
> in Beta or no-longer-supported.

        I agree, beta == bugs. Not much value publishing bugs for Beta stuff.
        (Other than notifying the vendor, that is)

        However, I think it is useful to know about vulnurabilities in EOL
(end of life'ed) products, so people who still use them - for whatever reason
- are informed of the problems. Just don't expect any vendor support... and
it is very important to point out in the advisories that something is
no-longer-supported.

-James