Full disclosure: how much security info is too much

October 3, 2001

Author: JT Smith

Kelly McNeill writes “The debate over how much detail to release on software security gaps and when to go public with potentially sensitive security information has experts looking for a middle ground, wherein systems can be secured without helping hackers. The Code Red and Code Red II virus outbreaks, which capitalized on vulnerabilities that were publicized before the viruses spread, brought the debate front and center, but the issue presents a constant challenge to those who hunt for vulnerabilities.”

Category:

Linux

RELATED ARTICLESMORE FROM AUTHOR

Maintainer Confidential: Challenges and Opportunities One Year On

Bridging Design and Runtime Gaps: AsyncAPI in Event-Driven Architecture

Implementing OpenTelemetry Natively in an Event Broker

Innovation as a Catalyst in Telecommunications

Linux 6.8 Brings More Sound Hardware Support For Intel & AMD, Including The Steam Deck

RELATED ARTICLES MORE FROM AUTHOR