[Full-Disclosure] [len@netsys.com: pseudo-authoritative disclosure guidelines]

From: Len Rose (len_at_netsys.com)
Date: 06/05/03

  • Next message: David Sentelle: "[Full-Disclosure] RE: [OT] Zone Alarm $$NOSIG$$" 
    To: full-disclosure@lists.netsys.com
Date: Thu, 5 Jun 2003 13:18:56 -0400

    This is in reference to: http://news.com.com/2100-1002_3-1013423.html

    ----- Forwarded message from Len Rose <len@netsys.com> -----

    Date: Thu, 5 Jun 2003 13:13:48 -0400
    From: Len Rose <len@netsys.com>
    To: rob.lemos@cnet.com
    Subject: pseudo-authoritative disclosure guidelines
    Message-ID: <20030605171348.GC5519@netsys.com>

    The OIS is meaningless and will have zero impact
    on full disclosure practices. I'm surprised you're
    lending any credence whatsoever to this pie in the
    sky dream of controlling disclosure. As long as
    one independent researcher doesn't agree with these
    guidelines it's all meaningless hype and blather.

    Additionally, none of the members are very well-respected
    by the security community and I predict that like
    all the other so-called "full disclosure" guidelines
    will be totally ignored.

    I understand CNET's desire to keep headlines on their
    web site but it's just another flash in the pan
    press release.

    Len

    ----- End forwarded message -----
    _______________________________________________
    Full-Disclosure - We believe in it.
    Charter: http://lists.netsys.com/full-disclosure-charter.html

  • Next message: David Sentelle: "[Full-Disclosure] RE: [OT] Zone Alarm $$NOSIG$$"
    • Quantcast