Slashdot Mirror


Oracle's Chief Security Officer Speaks Out

s0u1d13r writes "ZDNet Australia posted a special article from Oracle's CSO regarding the treatment and publishing of exploits and vulnerabilities by security researchers. From the article: 'There's a myth about security researchers that goes like this: Vendors are made up of indifferent slugs who wouldn't fix security vulnerabilities quickly -- if at all -- if it weren't for noble security researchers using the threat of public disclosure to force them to act.' An interesting read from the perspective of one of the largest software vendors accused of ignoring vulnerabilities by software researchers."

1 of 112 comments (clear)

  1. vendors do ignore researchers! by eight+and+a+quarter · · Score: -1, Redundant

    i can't think of a specific exploit but vendors do ignore researchers! if the exploit is bad enough, they're gonna sue you! wait, that's cisco, haha.

    --
    lameness filter thwarted.