lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list] 
From: peter at trusteddebian.org (Peter Busser)
Subject: Microsoft Cries Wolf ( again )

Hi!

> My impression is that until the
> vendors stepup up to the plate with a better commitment to responsible
> reselase of products, they will find that the research community continues
> to eye them with focused suspicion and outrght cynical spite.

Well, why should vendors do that? In fact, if you look at Microsoft's profit,
I would say it is rewarded for not doing this. Vendors simply supply the kind
of products people want. Aparently people love insecure programs. So that is
what they get.

The only way to change that is either vote with your dollars and euros or to
take the vendor to court and demand compensation for the damanges caused by
badly designed or buggy software. Neither really happens, so what incentive is
there for companies to change?

Groetjes,
Peter Busser
-- 
The Adamantix Project
Taking trustworthy software out of the labs, and into the real world
http://www.adamantix.org/

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ