| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <200404071832.i37IWxgx011878@turing-police.cc.vt.edu> From: Valdis.Kletnieks at vt.edu (Valdis.Kletnieks@...edu) Subject: Vulnerability response times -- MS and others On Wed, 07 Apr 2004 11:34:34 CDT, hggdh <hggdh@...cast.net> said: > Anyways... the report seems to indicate that Microsoft is the fastest > on solving security issues. > > Comments? That's only because they smack down anybody who doesn't follow their style of disclosure. I'll bet if you recompute based on the time lag between when the black hats first have a 0day and when the patch comes out, you'll find a far different story. Remember - CERT has taken a lot of heat over the years for delaying announcements until patches are ready. Microsoft is just doing more of the same. -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 226 bytes Desc: not available Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20040407/82e52ae4/attachment.bin
Powered by blists - more mailing lists