People suck
read this first
My gosh, comparing software to a high security building!!! I'd like to see some one replace or fix a building in under a week. Actualy the artical is not my problem. I agree that having software flaws passed on to those who would exploit it to the harm of others is not good. Never the less this will happen any ways, whether you play ostrich or not. Now on the other hand, if you pass a law that says that companies are the only ones to be notified of flaws, you may get the companies playing the ostrich. In high security buildings there are the builders, and the people whose job it is to respond to security issues. Thats two seperate groups, the latters job is to fix any problems with the formers its a check and balance of sorts. On the other had in security software the builder does both, and is therefore more likely to hide flaws. I think that it is much wiser to let those who want to know, know exactly what problems of the software they are using/buying are, and how quickly they are fixed. As I have said before almost all software sucks. I would be more suspicious of security software that seem to be and always have been perfect, then one that has had known flaws that were quickly atended to. To me what would be much more covincing to me is a full list of past problems and how the company reacted to them. As far as im concerned I would want the company I use to, encourage people to find flaws and to publish them, and to alert its users to these errors and tell them what precations to take until the holes were fixed.
well I had a great taichi class to tonight and I've been now 21 for a whole day almost two. Umm thats about it, ohh I saw Amelie last night for the first time and The jacket last night, both of which are great movies. night all sleep well.
-Meuus
My gosh, comparing software to a high security building!!! I'd like to see some one replace or fix a building in under a week. Actualy the artical is not my problem. I agree that having software flaws passed on to those who would exploit it to the harm of others is not good. Never the less this will happen any ways, whether you play ostrich or not. Now on the other hand, if you pass a law that says that companies are the only ones to be notified of flaws, you may get the companies playing the ostrich. In high security buildings there are the builders, and the people whose job it is to respond to security issues. Thats two seperate groups, the latters job is to fix any problems with the formers its a check and balance of sorts. On the other had in security software the builder does both, and is therefore more likely to hide flaws. I think that it is much wiser to let those who want to know, know exactly what problems of the software they are using/buying are, and how quickly they are fixed. As I have said before almost all software sucks. I would be more suspicious of security software that seem to be and always have been perfect, then one that has had known flaws that were quickly atended to. To me what would be much more covincing to me is a full list of past problems and how the company reacted to them. As far as im concerned I would want the company I use to, encourage people to find flaws and to publish them, and to alert its users to these errors and tell them what precations to take until the holes were fixed.
well I had a great taichi class to tonight and I've been now 21 for a whole day almost two. Umm thats about it, ohh I saw Amelie last night for the first time and The jacket last night, both of which are great movies. night all sleep well.
-Meuus
posted by Jeff Le Gall at 7:30 PM
0 Comments:
Post a Comment
<< Home