Month: November 2001
SecurityFocus Defaced? Kind of.
[This was originally published on attrition.org. Jay Dyson and Simple Nomad contributed to this post.] Earlier today, various people/sites were reporting that SecurityFocus.com had been defaced. Initial inspection of the screenshots suggested this was the case, but further digging revealed what really happened. First, one must define a ‘defacement’. In the years of running the…
Microsoft’s Responsible Vulnerability Disclosure, The New Non-Issue
[This was originally published on attrition.org] For almost a decade, a debate over the concept of Full Disclosure has reared its ugly head. Carried out on BBSs, newsgroups, security conferences, mail lists, parties, coffee shops and everywhere else, the Full Disclosure debate can be called “long standing” to say the least. As with everything in the computer…