| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <20130420212859.GA26561@neo.ne1.client2.attbi.com> Date: Sat, 20 Apr 2013 17:28:59 -0400 From: Bryan <bryan@...wildhats.com> To: Lee <ler762@...il.com> Cc: full-disclosure@...ts.grok.org.uk Subject: Re: VUPEN Security Research - Adobe Flash Player RTMP Data Processing Object Confusion (CVE-2013-2555) The code monkeys can make mistakes as long as there is a process to detect and remedy their mistakes before things get shipped. Hiring decent application security researchers to audit their code would be a good start. On Sat, Apr 20, 2013 at 09:51:40AM -0400, Lee wrote: > On 4/20/13, Sergio Alvarez <shadown@...il.com> wrote: > > Why instead of discussing about ethics about 0days, don't you discuss about > > responsible DEVELOPMENT instead? > > If products where properly designed and developed there wouldn't be 0days > > for them, would them? > > Only if the designers & developers were perfect and never made mistakes. _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Powered by blists - more mailing lists