LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Recent Features

LWN.net Weekly Edition for May 24, 2012

A uTouch architecture introduction

LWN.net Weekly Edition for May 17, 2012

Tasting the Ice Cream Sandwich

Highlights from the PostgreSQL 9.2 beta

Printable page
Weekly edition Kernel Security Distributions Contact Us Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ Sponsors

Another ISS screwup?

Another ISS screwup?

Posted Nov 13, 2002 9:40 UTC (Wed) by angdraug (subscriber, #7487)
Parent article: Red Hat alert: Remote vulnerabilities in BIND 4 and 8

It looks like yet another vulnerability disclosure by ISS X-Force with no prior CERT coordination. I think this irresponsible behaviour should be punished with wide condemnation from free software media: it must be made well known that a company with such questionable reputation can not be trusted in the field of computer security.

Disclaimer: ISS (Internet Security Systems) is completely separate from ISC (Internet Software Consortium). I don't want anyone to think that I hold anything against ISC: it is ISS I am disappointed with.

Disclaimer2: I would be most glad to be proven wrong, but I have had a lot of headache during the last year from the ISS disclosures alone, and I know many people who share this pain.

(Log in to post comments)

Another ISS screwup?

Posted Nov 13, 2002 17:46 UTC (Wed) by garloff (subscriber, #319) [Link]

Fully agreed. ISS is handling these issues in a very poor manner.
Even worse than Theo.

Copyright © 2012, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds