Gov't Vulnerability-Disclosure Program Draws Heat

← Back to Stories (view on slashdot.org)

Gov't Vulnerability-Disclosure Program Draws Heat

Posted by timothy on Saturday February 21, 2004 @02:12PM from the skeletons-in-closet dept.

AndreyF writes " Securityfocus.com reports: 'a long-anticipated program meant to encourage companies to provide the federal government with confidential information about vulnerabilities in critical systems took effect Friday, but critics worry that it may do more harm than good.' The article discusses both sides of the PCII question, but leaves me wondering why the pro argument rests on my trusting large corporate CEO's to 'do the right thing.'"

8 of 101 comments (clear)

Min score:

Reason:

Sort:

Which computer language? by Anonymous Coward · 2004-02-21 14:14 · Score: 0, Funny

Is this Gov't Vulnerability-Disclosure program written in C or Java?
1. Re:Which computer language? by Durin_Deathless · 2004-02-21 17:47 · Score: 2, Funny
  
  Ada
  
  --
  You should use AdiumX on your Mac.
I for one by whackco · 2004-02-21 14:15 · Score: 3, Funny

welcome our ... oh, wait, I guess it would be old Bush overlords
Microsoft by b0lt · 2004-02-21 14:16 · Score: 5, Funny

Does pretty much running all of the computers in the US count as being critical infrastructure? ;)

--
got sig?
1. Re:Microsoft by Rosco+P.+Coltrane · 2004-02-21 14:27 · Score: 4, Funny
  
  If a critical infractructure runs Linux, can they just give PCII folks a tarball of the kernel source code to disclose their vulnerabilities?
  
  --
  "A door is what a dog is perpetually on the wrong side of" - Ogden Nash
Vulnerabilities by psifishdot · 2004-02-21 14:28 · Score: 5, Funny

[A] long-anticipated program meant to encourage companies to provide the federal government with confidential information about vulnerabilities in critical systems...

You can find the vulnerabilities in my systems at http://www.debian.org/security/.

apt-get update
apt-get upgrade

--

Long live Schrodinger's cat...
Large corporate CEOs by binkless · 2004-02-21 15:07 · Score: 5, Funny

Do you think that small corporate CEOs are more honest? What do you have against fat people anyway!?
Anyone Played Monopoly Lately by Crypto+Gnome · 2004-02-21 15:18 · Score: 4, Funny

A key provision of the law bars the government from using the vulnerability information in any enforcement action against the company, or from using it as the basis for proposing new legislation or regulations on industry.

Looks like Bill Gates just bought himself a get-out-of-jail-free card.

--
Visit CryptoGnome in his home.