October 22, 2001
Eric Raymond responds to disclosure rhetoric
Author: JT Smith
From LinuxSecurity: "At this Microsoft page , one Scott Culp, advertised to us as the "Manager of the Microsoft Security Response Center", exhorts people to stop publishing information on computer security vulnerabilities. Culp's rant is a transparently self-serving and dishonest attempt to shift the onus for epidemics like Code Red, Lion, and NIMDA away from where it belongs, which is squarely on Microsoft's shoddy architecture and negligent engineering."