[VIM] reasons for not disclosing
security curmudgeon
jericho at attrition.org
Mon Apr 3 14:41:31 EDT 2006
http://archives.neohapsis.com/archives/fulldisclosure/2006-03/1907.html
4) Fix
======
No fix.
Developers have not been contacted for the following reason:
Zdaemon has some problems with its license, it is based on many open
source code (mainly Zdoom) and it was open source till version 1.06 (the
old website was http://www.zdaemon.info, you can still find the cache on
some search engines). Then the developers decided to close the source code
because some cheaters created an aimbot (a tool/patch for killing enemies
more easily) for this game but IMHO, and this is the same opinion of many
people, what they have done is not compatible with the GPL license (the id
Software Doom engine is GPLed) and with the strong philosophy behind the
open source movement.
Personal comment: closing the source code is not a solution, will never
stop cheaters (they do only what the server allows to do) and has not
stopped me to find these security vulnerabilities.
More information about the VIM
mailing list