On Sun, 27 Feb 2000, Daniel R. Gilliam wrote:
Following the same logic, it's not always as easy to protect your system if there is a known hole, as it is for you to fix the security of your house in the event of a broken lock. In fact, you assume that you always can fix it yourself, or find a way to get around the bug until it is fixed. But let's face it, sometimes there's really nothing you CAN do until the vendors release a fix. So, on those lines, I still hold that it's better to be quiet than it is to let all of the hackers know.
If you can't fix it, or make your system more secure/more closely monitored, then you could stop running the effected service, or take the box down completely, as a worse case senario. If you are unaware of it, then there is NOTHING you can do.