Flaw finders to software makers: It's payback time | TalkBack on ZDNet

On BNET: Poll: Are You Greedy or a Do-Gooder?

BNET Business Network:: BNET; TechRepublic; ZDNet

TalkBack 20 of 34:: Next »; « Previous

Thread View
Flat View

No respect: Companies consider their software intellectual property, with monetary value.
But they fail to adequately acknowledge that the discovery of flaws is also intellectual property with value, monetary and otherwise.

If I find a bug, report it responsibly and nothing happens, I am being robbed of the opportunity to demonstrate my skill, which can lead to job opportunities and respect in the industry. To deny these researches this is pigheaded and wrong, as well as harmful to the public in general. These researches are providing a valuable service for free. Companies had better recognize this or figure out how to release software without bugs. (No, it can't be done, so they'd better work on their relationships with these researchers.)

Do I have any sympathy for the software companies? No. Because in the end, I the user am the one who is hurt by their stubborness.

That said, publishing a flaw publicly without allowing the company time to patch is irresponsible, but the article seems to indicate this is a declining practive among security researchers.; Posted by: shraven Posted on: 08/17/06 You are currently: a Guest | Members login | Terms of Use

Reply to Story Reply to Message

Alert moderator to an offensive message

Subscribe to this discussion via Email or RSS

Its the not of this world | 08/17/06

I agree; Suicida| | 08/17/06

Cheap way to find flaws SteveTheWirePuller | 08/17/06

Valid concerns from true flaw finders Boot_Agnostic | 08/17/06

Public dissemination of vulnerabilities Anton Philidor | 08/17/06

A problem... ju1ce | 08/17/06

Why would the idea fail? Anton Philidor | 08/17/06

well it can...and it can't.. Monkey_MCSE | 08/17/06

another question...sorry Monkey_MCSE | 08/17/06

The organization's purpose... Anton Philidor | 08/17/06

And... Anton Philidor | 08/17/06

and how many years did it take them?? Monkey_MCSE | 08/17/06

If no alternative operating systems... Anton Philidor | 08/18/06

Fair's fair Yagotta B. Kidding | 08/17/06

Flaw finders to software makers: It's payback time puppadave | 08/17/06

IF THERE'S ANYTHING WRONG WITH A COMPUTER OR SOFTWARE IT'S A VIRUS ! BALTHOR | 08/17/06

Message has been deleted. Colonel Panijk | 08/18/06

Flaw Finders eryxias7@... | 08/17/06

What's the limit? rpmyers1 | 08/18/06

No respect shraven | 08/17/06

Last thing vendors want: explaining changes to outsiders ejhonda | 08/17/06

Producing responses dmhunter@... | 08/17/06

Bad headline John L. Ries | 08/17/06

Shakedown DaveSoNSo | 08/17/06

That's called "blackmail" John L. Ries | 08/18/06

Ignorance is bliss, ay? Tialin | 08/17/06

Well... Anton Philidor | 08/17/06

Inconsistent expectations DaveSoNSo | 08/17/06

When I pay for Software I Expect it to Work OldTimer1 | 08/21/06

It's always Microsoft AAWW | 08/17/06

I wouldn't say most flawed... jasonp@... | 08/18/06

software flaws jhinkson@... | 08/17/06

Not likely.... Leria | 08/18/06

Unlikely but possible tony@... | 08/18/06

What do you think?

SponsoredWhite Papers, Webcasts, and Downloads

Why Isn't Server Virtualization Saving Us More? A Few Small Changes May Dramatically Increase Your Efficiency VMware Companies have rapidly adopted server virtualization over the past few ... Download Now
Building the Virtualized Enterprise with VMware Infrastructure VMware VMware virtualization software has been adopted by over 120,000 enterprise ... Download Now
Three Steps You Need to Know to Stop Data Loss Varonis Sensitive data exposed to misuse or loss... it is the stuff of nightmares ... Download Now

Premier Vendor Content Whitepapers, webcasts & resources from our Power Center Sponsors

Popular Sanity Saver Videos

Blogs

Product Reviews

Videos

White Papers and Webcasts

Downloads

More