Slashdot Mirror

← Back to Stories (view on slashdot.org)

Google Backs Open-Source CERT Group

Posted by timothy on from the finding-fault dept.

alphadogg points to a Network World story, which begins "Google has thrown its weight behind a fledgling security reporting group for the open-source community. The search engine giant, long a proponent of open-source software, is now one of three sponsors of oCERT, the Open Source Computer Emergency Response Team. Launched in late March, oCERT aims to be a clearinghouse for data on security vulnerabilities in open-source products."

13 comments

  1. I'm waiting on wikiCert by Anonymous Coward · · Score: 0, Funny

    That way anybody can edit the security notices.

  2. Interesting stats by Skrynesaver · · Score: 1
    Looking through ocert.org, I noticed (from a statistically questionable sample of 100% ie. 4 cases), that all issues were resolved within a week.

    This could be an interesting metric to track on this site.

    --
    "Linux is for noobs"-The new MS fud strategy
  3. Re:Sexist comment by Anonymous Coward · · Score: 0

    They say "a" grandmother. If you're not the one, they'll keep looking until they find one.

  4. Are you kidding? by Anonymous Coward · · Score: 3, Funny

    I suspect they chose the name to increase visibility. This way, they get two front-page stories on Slashdot: this one, and the one mentioning the name change when they inevitably get slapped for being too similar to the CERT trademark.

    1. Re:Are you kidding? by Anonymous Coward · · Score: 0

      The trademark is used with permission, as noted on their site.

    2. Re:Are you kidding? by Anonymous Coward · · Score: 0

      They only added that to their site after my comment, if you check Google's cache, you'll see the same front page except without that statement.

  5. How could this not be related to CERT? by Anonymous Coward · · Score: 1, Insightful

    Community Emergency Response Team??

    1. Re:How could this not be related to CERT? by Anonymous Coward · · Score: 2, Informative

      Specifically, trademark #74725838:

      Word Mark: CERT

      Goods and Services: IC 016. US 002 005 022 023 029 037 038 050. G & S: printed publications, namely, advisories, bulletins, news summaries, technical tips and guidelines, all in the field of security of computer-stored information. FIRST USE: 19881206. FIRST USE IN COMMERCE: 19881206

    2. Re:How could this not be related to CERT? by atraintocry · · Score: 1

      It's not related because it's nowhere near the same industry. At least in the US, if you register a federal trademark, it's still only good for the industry that you work in. It gets hairier given the litigation fetish that today's corporations have, but generally that's the case.

  6. This already exists to a certain extend by bleh-of-the-huns · · Score: 1

    in the National Vulnerability Database by NIST.. http://nvd.nist.gov/ and while yes, the acronym does look like some sort of STD, its not. It covers oss and commercial products alike, and is perfectly free.

    --
    I came, I conquered, I coredumped
  7. Re:This already exists to a certain extent by bleh-of-the-huns · · Score: 1

    bad typing month.. did the same with my last thread in another topic...

    --
    I came, I conquered, I coredumped
  8. Policy seems to be to reveal w/in 2 months by Anonymous Coward · · Score: 0

    Policy seems to be to reveal vulnerability to public within 2 months

    See:
    https://www.ocert.org/disclosure_policy.html