lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
Open Source and information security mailing list archives
| ||
|
Date: Fri, 13 Dec 2013 12:28:43 -0500 From: Gary Baribault <gary@...ibault.net> To: full-disclosure@...ts.grok.org.uk Subject: Re: Where are you guys standing re: the (full) disclosure Rather harsh don't you think? I'm all for OSS but I have expenses and need to make money. Yes M$ makes money, but I think their ethical just as much as any other company .. is IBM ethical? Is HP ethical? Is Dell (the company) ethical? They all are to some degree. M$ has a HUGE installed base of software and need more time to repair things because of the time it takes to do regressive testing, that makes them slow, but not necessarily unethical. Sure we'd love them to jump on every bug we find, fix them fast and some people want to be paid for that bug as well. I know they've pissed many people off over time, but I don't think their any less ethical than any other for profit company, and if we have no for $$$ companies, then who is going to pay our salaries? Gary B On 12/13/2013 12:17 PM, Georgi Guninski wrote: > On Fri, Dec 13, 2013 at 03:27:21PM +0000, imipak wrote: >> On 13/12/13 15:06, Mikhail A. Utin wrote: >>> Answers: >> [...] >>> 2. If you keep it for yourself - no problems. If you disclose on Internet >> before informing M$, there is certain risk, but first of all it is not >> ethical. >> >> Sure it is. It's just a different set of ethics than the ones you (or I) >> would adhere to. "Ethics" isn't a universal absolute. >> >> >> \a >> > > Are M$ ethical? > > Their ethics boils down to making money, > which is not different from a commercial > botnet IMO. > > > _______________________________________________ > Full-Disclosure - We believe in it. > Charter: http://lists.grok.org.uk/full-disclosure-charter.html > Hosted and sponsored by Secunia - http://secunia.com/ > _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Powered by blists - more mailing lists