Slashdot Mirror

← Back to Stories (view on slashdot.org)

Oracle's Chief Security Officer Speaks Out

Posted by Zonk on from the talking-the-talk dept.

s0u1d13r writes "ZDNet Australia posted a special article from Oracle's CSO regarding the treatment and publishing of exploits and vulnerabilities by security researchers. From the article: 'There's a myth about security researchers that goes like this: Vendors are made up of indifferent slugs who wouldn't fix security vulnerabilities quickly -- if at all -- if it weren't for noble security researchers using the threat of public disclosure to force them to act.' An interesting read from the perspective of one of the largest software vendors accused of ignoring vulnerabilities by software researchers."

2 of 112 comments (clear)

  1. It amazes me.... by cyberkahn · · Score: 1, Flamebait


    That someone with the following qualifications leaps to the position of CHIEF SECURITY OFFICER.

    Ms. Davidson has a B.S.M.E. from the University of Virginia and an M.B.A. from the Wharton School of the University of Pennsylvania. She has also served as a commissioned officer in the U.S. Navy Civil Engineer Corps, where she was awarded the Navy Achievement Medal.

  2. Re:Deparment of Homepage Security by Doc+Ruby · · Score: 0, Flamebait

    All too many "researchers" differ from real hackers only by too much masturbation, and not enough actual work in the field.

    --

    --
    make install -not war