Full Disclosure mailing list archives
Re: How to Report a Security Vulnerability to Microsoft
From: Steve Friedl <steve () unixwiz net>
Date: Wed, 13 Apr 2005 10:57:12 -0700
On Wed, Apr 13, 2005 at 01:50:25PM -0400, bkfsec wrote:
My point is that the the researcher making the disclosure should determine their timeline, but with obvious consideration of the vendor and users, but that that should be a reasonable approach, and not followed because the researcher is forced to follow it.
I agree completely: the vendor can have an opinion, but not a vote. Steve -- Stephen J Friedl | Security Consultant | UNIX Wizard | +1 714 544-6561 www.unixwiz.net | Tustin, Calif. USA | Microsoft MVP | steve () unixwiz net _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Current thread:
- Re: How to Report a Security VulnerabilitytoMicrosoft, (continued)
- Re: How to Report a Security VulnerabilitytoMicrosoft dk (Apr 12)
- Re: How to Report a Security VulnerabilitytoMicrosoft bkfsec (Apr 13)
- Re: How to Report a Security VulnerabilitytoMicrosoft bkfsec (Apr 13)
- Re: How to Report a Security Vulnerability to Microsoft Steve Friedl (Apr 13)
- Re: How to Report a Security Vulnerability to Microsoft Georgi Guninski (Apr 13)
- Re: How to Report a Security Vulnerability to Microsoft Steve Friedl (Apr 13)
- Re: How to Report a Security Vulnerability to Microsoft Danny (Apr 13)
- Re: How to Report a Security Vulnerability to Microsoft bkfsec (Apr 13)
- Re: How to Report a Security Vulnerability to Microsoft Steve Friedl (Apr 13)
- Re: How to Report a Security Vulnerability to Microsoft bkfsec (Apr 13)
- Re: How to Report a Security Vulnerability to Microsoft Steve Friedl (Apr 13)
- Re: How to Report a Security VulnerabilitytoMicrosoft dk (Apr 19)
- Re: How to Report a Security VulnerabilitytoMicrosoft Georgi Guninski (Apr 19)