Tag: Martin McKeay

A Curmudgeonly Reply to an Anti-Curmudgeon Rant (in two parts)

[This was originally published on attrition.org and then republished on Bill Brenner’s blog with permission.] Fri May 27 04:29:16 CDT 2011 Bill Brenner wrote an article titled “Take the word curmudgeon and shove it” in which he makes relatively sweeping statements about the “people in security [that] call themselves curmudgeon”. As one of the long-time security curmudgeons, I…

May 27, 2011
Responsible Disclosure – Old Debate, Fresh Aspects?!

[This was originally published on the OSVDB blog.] Earlier this evening, there was a Twitter debate regarding a proposed standard for responsible vulnerability disclosure. It referred to ISO/IEC 29147, a proposed standard for responsibly disclosing a vulnerability. Dino Dai Zovi brought up a fresh angle, that the “responsible disclosure” name itself completely ignored the aspect…

November 15, 2009

A Curmudgeonly Reply to an Anti-Curmudgeon Rant (in two parts)