On Mon, 5 Nov 2001, Bitzer,Gerd wrote:
Very interesting debate, it's the first time I'm noticing that opensource devoted people agree with the meaning of Microsoft: http://www.heise.de/newsticker/data/lab-18.10.01-000/
Exactly. Microsoft needs people to shut up about security flaws because they only have the number of developers that they can pay. They can't develop patches faster than crackers develop exploits. Linux doesn't have that problem. Scott Culp's "Information Anarchy" speech here is explaining how companies like Microsoft can't survive in a world where security flaws are known immediately upon discovery. In his sad little universe, progress is very slow and security is very expensive and working on it blocks development of profitable features, and that makes disclosure a bad thing. Bear