Full Disclosure mailing list archives

Previous By Date Next
Previous By Thread Next

Re: it\'s all about timing

From: full-disclosure () lists netsys com (full-disclosure () lists netsys com)
Date: Fri, 2 Aug 2002 17:08:15 -0700
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1



You speak of "harnessing" vulnerability researchers.  A number of
people have said that the current RVDP draft asks too much of
researchers, including Georgi Guninski and Rain Forest Puppy (and some
vendors).  That feedback will be taken into account in the next


Harnessing in a "P2V" effort. Collecting the data from bug finders, bug hunters, neatly packaging it to suit the 
vendor, then releasing so that what the vendor ultimately has is a nice free outsourced quality control mechanism.

Standardised the process and vendors may as well do away with ever really coding cleanly. Why, because there is a 
reporting standard that everyone must adhere to which will very neatly cost them nothing, and ultimately achieve the 
same results.

Certainly some immense monatery value in such a favourable network down the road.
-----BEGIN PGP SIGNATURE-----
Version: Hush 2.1
Note: This signature can be verified at https://www.hushtools.com

wmYEARECACYFAj1LHdUfHGNob29zZS5hLnVzZXJuYW1lQGh1c2htYWlsLmNvbQAKCRDT
5JkCl0iMkDfJAJ9K3jwmnmns6WVz00azWhozxXiYZwCeJb4/L42/G2GpZxzorUQHCOoq
BVQ=
=tc5z
-----END PGP SIGNATURE-----


Communicate in total privacy.
Get your free encrypted email at https://www.hushmail.com/?l=2

Looking for a good deal on a domain name? http://www.hush.com/partners/offers.cgi?id=domainpeople
Previous By Date Next
Previous By Thread Next

Current thread: