[widdershins] independent security researchers vs companies ?!
hellNbak
hellnbak at nmrc.org
Fri Sep 9 14:08:03 EDT 2005
On Thu, 8 Sep 2005, Adrian Sanabria wrote:
> While a good article, I think it ignores the largest problem that may
> develop in the world of disclosure. After what Cisco pulled, researchers in
> fear of being persued legally, even if they try to do the right thing, may
Why is it "what Cisco pulled" and not, "What ISS and Cisco pulled". ISS
clearly had a responsibility to back their researcher. They made the
choice not to. If anything, researchers at ISS should be worried about
being hung out to dry and the independant guys can still go along business
as usual.
More information about the widdershins
mailing list