[Noisebridge-discuss] security people, can somebody walk me through this whole disclosure business?

Andy Isaacson adi at hexapodia.org
Wed Jul 27 16:16:19 UTC 2011


On Mon, Jul 25, 2011 at 04:20:52PM -0700, Ronald Cotoni wrote:
> This is a very big gray area, depending where the vuln is.  If this vuln
> causes loss of life or perhaps significant loss of revenue, it could be
> bad.   I would suggest consulting with someone who has done this previously
> like Dan and see how to do this to CYA.

Some relevant discussion came up today:

http://arstechnica.com/tech-policy/news/2011/07/will-your-employer-get-sued-for-your-security-screw-ups.ars

-andy



More information about the Noisebridge-discuss mailing list