[VIM] reasons for not disclosing

security curmudgeon jericho at attrition.org
Mon Apr 3 14:41:31 EDT 2006


http://archives.neohapsis.com/archives/fulldisclosure/2006-03/1907.html

4) Fix
======

No fix.

Developers have not been contacted for the following reason:

Zdaemon has some problems with its license, it is based on many open 
source code (mainly Zdoom) and it was open source till version 1.06 (the 
old website was http://www.zdaemon.info, you can still find the cache on 
some search engines). Then the developers decided to close the source code 
because some cheaters created an aimbot (a tool/patch for killing enemies 
more easily) for this game but IMHO, and this is the same opinion of many 
people, what they have done is not compatible with the GPL license (the id 
Software Doom engine is GPLed) and with the strong philosophy behind the 
open source movement.

Personal comment: closing the source code is not a solution, will never 
stop cheaters (they do only what the server allows to do) and has not 
stopped me to find these security vulnerabilities.


More information about the VIM mailing list