Linked by Amjith Ramanujam on Fri 18th Jul 2008 04:42 UTC, submitted by snydeq
GNU, GPL, Open Source Neil McAllister deliberates the question of public disclosure of open source vulnerabilities, contrasting Ounce Labs' announcement of security vulnerabilities in the Spring Framework for Java with Linus Torvalds recent missive on the Linux kernel development mailing list. Sure, vulnerability bulletins raise awareness of real danger, but they also distract from other productive activities. To find the right balance between keeping users informed and maintaining an orderly and holistic development process, McAllister suggests we take a biologist's view of how species deal with risk perception.
Order by: Score:
Comment by flanque
by flanque on Fri 18th Jul 2008 12:15 UTC
Member since:

The thing about analogies is that they're generally found to be flawed in one way or another, typically multiple ways.

Reply Score: 4

by trenchsol on Fri 18th Jul 2008 14:26 UTC
Member since:

I think that this article should have never been written.I am trying hard not to say something more rude.


Reply Score: 3

by Javier O. Augusto on Mon 21st Jul 2008 01:33 UTC
Javier O. Augusto
Member since:



Reply Score: 1