- TalkBack 1 of 18:
- Next »
- Thread View
- Flat View
- Cisco & ISS should remove the gag
-
"Cisco on Friday released a security advisory detailing the flaw in IOS that was exposed by Lynn and admitting that it could be exploited to gain control over routers. "
If he hadn't released that information we wouldn't know that CISCO had a known security hole, and customers couldn't have avoided their routers until they fixed it. ISS and Cisco should remove the gag, so we can see the full extent of the problem, rather than the spun PR version.
I wonder if this doesn't mean a change on how security holes are reported though.
The past:
Security holes reported immediately. Companies scramble to fix them.
The present:
Security holes are kept secret for a courtesy period. Companies fix them (or not in this case). Information is released.
But don't companies have a duty to disclose all material matters to their shareholders? If there's a known fault in your main product then thats a pretty big deal don't you think? Something the shareholders should know about? Yet they had a 27th May 10Q that doesn't mention it.
I wonder if the future isn't:
Mandatory disclosure of security holes in non detail terms. Fix. Detail disclosure. i.e. that companies will have to disclose these security holes themselves promptly to their shareholders, without giving the details. - Posted by: Nigel Johnstone Posted on: 07/30/05 You are currently: a Guest | Members login | Terms of Use
What do you think?
SponsoredWhite Papers, Webcasts, and Downloads
- Breaking DB2 Platform Barriers Quest Software Are you supporting DB2 on multiple platforms? In this Quest white paper ... Download Now
- Active Administrator Version 5.1 ScriptLogic Active Administrator? is an enterprise-class Active Directory management ... Download Now
- Dell Helps Medical University of South Carolina Bring the Intelligent Classroom to Life Dell Established in 1824, Medical University of South Carolina (MUSC) is one of ... Download Now
Premier Vendor Content Whitepapers, webcasts & resources from our Power Center Sponsors
- The best support in the Linux business
-
If Linux is going to power your mission-critical applications, you'd better have the best support known to business. Novell was rated the top provider of Linux technical support.
- Learn more >>
- Learn more about tools to grow your business
-
The Business Essentials Guide provides you useful tools and templates to help grow your business and save you time with automated shipping solutions.
- Save time with the UPS Business Essentials Guide
- New Online Dashboard for IT Leaders
-
Read about top issues IT decision-makers face every day, plus get cost-effective solutions to real-life IT problems.
- Learn more >>
- Keep Up With The Latest In Document Management with The DocuMentor.
-
Doc delivers the scoop on today's enterprise content management, printer maintenance, and all other issues related to document management. It's the DocuMentor Blog.
- Learn more >>
- Microsoft Dynamics CRM Online - Free Six-Month Trial for Eligible Organizations
-
Microsoft Dynamics CRM Online provides fast online access, simple contact management and better sales performance for a low monthly cost - the best value on the market today.
- Learn more about the free, six-month trial offer >>
SmartPlanet
- Thought-provoking progressive ideas on diverse topics that intersect with technology, business, and life, and matter to the world at large. Visit SmartPlanet
- More from IBM
-
- How to Drive Better Business Outcomes with Exceptional Web Experiences Download the eBook
- Driving Business Agility through SOA Connectivity & Integration Read the White Paper from IBM
- Linking Decisions and Information for Organizational Performance Read the Tom Davenport study
