Slashdot Mirror


Slow Down the Security Patch Cycle?

Ant writes "Computerworld has an editorial article about slowing down, not speeding up, patch releases."

3 of 302 comments (clear)

  1. asd by manitee · · Score: 0, Redundant

    Better patch notification and distribution is needed from almost every major vendor.

    --
    Four-digit slashdot ID. Recognize.
  2. Re:in related news by Anonymous Coward · · Score: -1, Redundant

    um... rated [3]? imho this previous post is far more informative than the mod rating it might have perceived it as: while not checking windows update too often, i never see any new patches, even on boxen not using the automatic update feature. i don't know about anyone else, but i find it surprising and uncoincidental that m$ have reacted to threats to their product(s) this "quickly" and massively after an m$ developper - erm.. SPY ;-) - may have noticed this /. post... interesting turn in events... possibly a test... but now i feel i'm turning into that paranoid HL2 fan caricature in the cartoon mockings of Valve available at Planet Half-Life...

  3. Shhhhh! Don't tell anyone by Nejaa · · Score: 0, Redundant

    So, basically he's saying this: If [hypothetical software company] finds a flaw in their software, they should keep it a secret. That way maybe nobody will figure out how to exploit it. Does this seem flawed to anyone else?

    --
    A wise man once said: "Never pick a fight with a man who buys his ink by the barrel."