You should check (in Sweden, with Swedish law): https://lagen.nu/ [lagen.nu]
It's the law, combined with cases from Domstolsverket (Courts Administration). He has a tech description to:
I'll try to translate:
he fetches laws from the Cabinet Office web server, which he converts into XML (XHTML2 med RDFa)
He then retrieves cases from the Courts Administration FTP server, also converts this into XML. (via words "save as HTML", and then converting).
He then compiles all the meta-data from all the documents into RDF -graph. This is used in conjunction with style sheets to create XHTML1.0 pages, ready for displaying in a browser.
finally, indexes and Table of contents are created and the result is hosted on Apache-servers. The code is written in python, with parts in XSLT.
Impressive, impressive work. Which landed him a job in e-gov (I hope he keeps the law-project going!)
Well, someone (a hobbyist) is doing just that (in Sweden, with Swedish law):
https://lagen.nu/
Technologically, he has a description of what he does. I'll try to translate:
he fetches laws from the Cabinet Office web server, which he converts into XML (XHTML2 med RDFa)
He then retrieves cases from the Courts Administration FTP server, also converts this into XML. (via words "save as HTML", and then converting).
He then compiles all the meta-data from all the documents into RDF -graph. This is used in conjunction with style sheets to create XHTML1.0 pages, ready for displaying in a browser.
finally, indexes and Table of contents are created and the result is hosted on Apache-servers. The code is written in python, with parts in XSLT.
Impressive, impressive work. Which landed him a job in e-gov (I hope he keeps the law-project going!)
As mentioned - the space requirement for copying the most outrageous amount of files can be met with a couple of 2TB discs.
And - more intresting, filling the speed requirement:
We will have SuperSpeed USB 3 going mainstream soon (with theoretical transfer speeds of 4.8 Gbps).
Lets put that in perspective. Depending on that products (HDD's, controllers, external cabinets) appear which could support these transfer speeds,
we could look at speeds where filling a 2TB disc would take 10-15 minutes. Minutes, guys.
That's 15 minutes to grab 75 single layer 27Bg Blue-ray movies, or 400 5GB DVD.ISO's, without any compression.
Prediction: Sneakernet will be hard beaten, in terms of speed, security and capacity. Only con I'm able to see is availability, where nothing beats the internet.
sorry for the potential OT.
> Now you do not want to assign IP addresses for all the components inside your computer, do you?
... actually, I'm thinking you might be on to something here.
Think IPv6 (where address space wouldn't be a problem) - and monitoring a farm of computers for something (example Fan speed).
You could have query:able fans in different PC cases, all by using some sort of internal routing in the pc, some policys what's accessable (firewalling disks, making fans "read only, e.t.c.), and some protocol (preferrably with low latency) to be able to speak with the fans internally/remotely....
Hm, I agree - I've not thought this through fully yet - but what would be the drawbacks here?
Yeah - I'm on 24/1 ADSL too. Personally, I agree that the whole ADSL business is keeping ordinary fiber/ethernet back (Insane, really; In some places in Urban Sweeden there are like three black-fibre installations from different operators running under the street outside your house, yet NO way to get it into your flat without paying serious $$$).
And - In such a consumerrights strong place - what's with the "Up to 24 MBit/s "... advertizing? You NEVER get the full 24.
This is the friggin' best post I've read in a long time.
The only thing I'd like to add is some general tips on What-to-do(TM)
Get involved. Write your congressman about invasion of privacy. Sponsor EFF. Develop that über-safe anonymizing program, make it widespread.
Get Informed. Read stuff (for example Naomi Klein "The Shock Doctrine"), get unbiased news (NOT FOX!), analyze what's being done rather than what's being said. Ask questions (who benifits from this?)
You need to overcome the denial of what the parent post said about fascism. Just saing "I't ain't so", instead of asking "how do we fix this" - that's a path down a very dark road. Do Something!
Are you just baiting me to break Goodwins law, or do you seriously consider that your solution is viable?
I'll scissor in another branch of this post: (sorry for the redundancy - but it:s still valid)
Even if the conquered people are not utterly crushed, you nowdays have global information/awareness, (at least currently - the future may hold changes) and you would have to deal with world public opinion on genocide.
So, in the extension - youd be left with the option of fighting the rest of the world - without the moral high ground to stand on. Nope, not doable.
Well - 2000 taxpayers cash/international aid, turned into 400 profit for US company (which, btw, probably have shareholders profiting from the companys profits - probably the same people who have bought politicians deciding about war).
You mistook me for proclaming that "the US"/, as a nation is some kind of winner - I did not.
I'll take the bait - and say you are wrong.
Hate breeds hate, and all you would accomplish is MORE terrorists, using harcher tactics.
go play some http://www.newsgaming.com/games/index12.htm, you will get the message.
I'll eve nuse a cliche: Killing terrorists to end terror is like killing the poor to end poverty - futile.
Heh - I've read The Prince too.
Even if the conquered people are not utterly crushed, you nowdays have global information/awareness, (at least currently - the future may hold changes) and you would have to deal with world public opinion on genocide. I'm absolutely for international War-crime tribunals, wich would prevent the thing Machiavelli suggests.
Winning a war in modern times means that the war has ended - and that's something that nowdays never happens because there will always be "resistance (one man may call it "freedom-fighters", another calls it "terrorist").
There are numerous historical examples of this (Ireland, ETA, Tibet, Afghanistan, vietnam), and you'd think someone would get the message.
The winners of war are the ones profiting on war, and by that I mean convert it into cash (territory/resources can be retaken).
It's the same entity with one hand destroying infrastructure/society in a warzone, and the other getting the contracts for rebuilding.
I'd like to see a return to common sense, diplomacy, and compromize when dealing with conflicts.
ah, I apologize. You are of course right making the distinction of DNA use for ID, and DNA use for Medical.
I have to ask you something though; don't you think that using DNA for ID use is easily compromised?
Considering how much DNA material we (dayly) spread around us (skin, hair, eyelashes - I just examined my my keyboard closeup, yuk.) wouldn't you think obtaining someones DNA is much, much easier than for example a retina print?
You are totally right to have mixed feelings about the kind of future your'e envisioning:
Your post mostly deals on "something you do" (like criminals, terrorists, and the possibility to ban them based on id:ing their DNA), and protecting people from "evildoers".
Im sorry to point out that you should focus more on the "something you are" aspect of the discussion - as the DNA you get from birth is what you have to deal with, and you are currently unable to do anything about it.
So basically you miss the point where someone who is ok, but with the genes (trait) for becoming an alcoholic could be banned from bars, or just refused insurance, e.t.c. Not because something they did, but because something that they (potentially) are, or just the greater risk of becoming something undesirable.
> Its those that get on the bad side of the system, or get banned from everything that will get upset quickly.
Yes, and if you get banned for something in your genes (regardless of you have the condition or not - just for that the chance of caching it is greater because of your genes), would you not feel that you are unjustly judged?
And the really scary thing is if you think that would be just - because that would imply that you think people with "better" genes are "better" people, which is a VERY slippery slope to slide.
... well, we are all thinking of goverment as big brother - what about private contractors wanting this?
What will you do when goverment decides private firms (haliburton, or one of your private health insurance corporations) are the best entities to run these things. Outsourcing, anyone?
How do you absolutely guarantee that the DNA database wont be used for employee application selection, or for deciding your premium on your health insurance?
I'll just mention that Sweden has a (for medical use only - but that's currently under discussion) DNA database of all in sweden newborns since 1975 (if you havent specifically asked for non-participation), called the PKU database. It's still ongoing (my little dude was just last week registred - he's a couple of weeks)
Certain "high profile" crimes have been resulted in that the use of this database is under discussion - and the debate is for what uses this database could/should be used.
My hopes are that never, ever will this database be sent to the US/Feds/CIA (as flight iternaries are), and also that private corporation use is prohibited. Think of the society where your employer knows all about your DNA... (go see GATTACA).
Physical formats? HD-DVD? Blue Ray? EVD? (last option chinese format)
Last time I checked, we were living in the digital age.
This means that at least I won't be buying *anything* where the bits are locked to the media, and non movable - and I'll enlighten, family, relatives.. ok, in fact anyone who wants to know - that if they do, they will be buying their media collection all over again when new formats arrive.
It will be the "Video is dead - buy movies you already own again on DVD, chuck your LP's and get the same stuff, again, e.t.c." situation again.
Better quality as an argument to upgrade? Nahh, think about it.... People will watch almost anything in bad choppy webcamquality, just think about YouTube!
Well said!
Actually, it's not changing formats - today, its ALL digital, and (I can't beleive I have to remind people of this) we all are living in the digital age.
This means that it's all zeroes and ones - and i should not have to bother with the physical media it's on, or the device playing it. I will not buy something that is restricted (both media and players) - I consider it to be defunct.
There is a common belief, especially in the US, that Sweden has a higher rate of suicide than other countries; this is actually a myth, as Sweden has an average suicide rate. The myth was probably started because the secular government of Sweden started to measure suicide statistics openly before other countries did. President Eisenhower saw this as a chance to promote his political ideology, and maintained that the statistics showed Sweden was the country of "free love, high taxes and suicide" (none of this was particularly true at the time). Also, the dark, relatively cold climate of Sweden in the winter has added fuel to this myth. (see "Suicide and Season" below).
So, further investigation into the breach by the Computer security firm "Sentor" reviels that it's *not* a weak password thats the culprit - and a more probable cause that systematic traffic sniffing of a unsecured wifi node was the cause of the breach.
This based on that a total of 3 accounts where used to access the network - all from a local socialdemocrat office - where a fourth account using VPN was unused.
Also providing credibility to this, is that the passwords on the used accounts are of sufficient complexity - although not commented on because of policies, by the security firm.
(potentially offtopic - just don't read it if annoyed with this - youv'e been warned.)
...Doesn't matter, common sense + mod p's will help you in the end (here , have a serving of mod p's).
Ok, and for the people who dissagree I have the following advice: there are other values out there than you, personally in your grubby little closet, trying to get your hands on as much cash as possible through your über-elite coding skills. Actually, current situation today is you + your sweatshop coders, where you get the dough.
It's like you saying: I know something that will cure aids, solve the energy crisis, help starvation but you can all just forget it, unless you pay me. I'm sorry, but sharing information is sometimes the only way of avoiding extinction. (bird flu? any takers?)
There is such a thing as "greater good" - and the fact is, it's called civilisation + defenately its a communual effort and yes, you benefit from it. It's probably what gave you those coding skillz.
Ok, now bring on the petty "you spell lousy" flames - I'll just ignore it and blame the whiskey I drank.:-)
Mod parent up!
I'll add to parent by taking the argument further - the paradigm change was from analouge to digital.
The change should by now be obvious for anyone - we are now at a point where the actual content (film or audio) is just a bunch of bits. These bits should be non-dependant from ANY media (used to transport the bits), not locked into SACD, HD-DVD or anything else. I (as a consumer) am not interested in what the format is of the media, I (might) be interested in the content (buying the same content again) if the content has other qualities (better definition, or something else).
The computer is the ultimate tool for handling digital content. It will always be so, unless we loose the right to control our operating systems/hardware.If we get a new physical medium, guess what: You just stick a better card/reading drive into your pc and your'e done!
Now for my personal standpoint: I consider anything that hinders my ability to get to the digital content (read DRM) to be broken/defect, and eligeble for return.
DRM never adds capabilities for me as a consumer of the content. It's of no actual use, except preventing me from playing it on multiple devices or making backups.
I will return hardware with built in DRM, and a already have returned this Christmas the unplayable DVDs, CD's that friends/relatives got as presents and are unable to play on their equipment.(broken by DRM)
And here comes the punchline - in every case where the manufacturer added something that just doesn't work on my relatives equipment, I'm able to point out where to find a unprotected working copy of the content (yes - pirated - that's why I only show them where to find it, and how to do it) and leave them in a situation where:
a. they can't get a legal working example of the content without DRM
b. they know how/where to find the content, fully working but pirated
c. an insight that they could be doing something illegal by downloading it. And if they feel this to be wrong, do whatever they can to change it.(protest, vote, demonstrate, display civil disobedience, revolt, publicly denounce, e.t.c.)
d. a stern request that "they find a way to pay for the content" that they want - but to NEVER pay for DRM, since thats what broke it in the first place.
Ok, am I right in wanting WORKING stuff, stuff that leave me whith my rights intact (right to backup, right to not have to pay when the seller broke something)?
Hm, doen't this depend on *who* you are selling the vulnerability to?
I mean, if you "sell" it to the company involved, then maybe it would be ok, but in selling it to random spammer , columbian druglord, phedophile network BOFH or next "slammer worm" author is not ok.
How would you go about setting the price of a security hole? What is the worth?
"By monetary value of what could be lost exploiting the hole", or something else? Estimation of possible gains (user data like credit card info) through usage of the hole - the perpetrators view?
Because, lets face it: There are people out there willing to pay for information like this.
(and I'm not saying its right - just stating the fact). There are also others wondering how some things come to pass, and the damage bad code review actually causes.
ok, sorry - possibly OT. But I *am* intrested in/. ers reasoning about "the value/possible cost of security holes".
Slashdot Mirror
It's the law, combined with cases from Domstolsverket (Courts Administration). He has a tech description to:
I'll try to translate:
he fetches laws from the Cabinet Office web server, which he converts into XML (XHTML2 med RDFa)
He then retrieves cases from the Courts Administration FTP server, also converts this into XML. (via words "save as HTML", and then converting).
He then compiles all the meta-data from all the documents into RDF -graph. This is used in conjunction with style sheets to create XHTML1.0 pages, ready for displaying in a browser.
finally, indexes and Table of contents are created and the result is hosted on Apache-servers. The code is written in python, with parts in XSLT.
Impressive, impressive work. Which landed him a job in e-gov (I hope he keeps the law-project going!)
Technologically, he has a description of what he does. I'll try to translate:
he fetches laws from the Cabinet Office web server, which he converts into XML (XHTML2 med RDFa)
He then retrieves cases from the Courts Administration FTP server, also converts this into XML. (via words "save as HTML", and then converting).
He then compiles all the meta-data from all the documents into RDF -graph. This is used in conjunction with style sheets to create XHTML1.0 pages, ready for displaying in a browser.
finally, indexes and Table of contents are created and the result is hosted on Apache-servers. The code is written in python, with parts in XSLT.
Impressive, impressive work. Which landed him a job in e-gov (I hope he keeps the law-project going!)
As mentioned - the space requirement for copying the most outrageous amount of files can be met with a couple of 2TB discs.
And - more intresting, filling the speed requirement:
We will have SuperSpeed USB 3 going mainstream soon (with theoretical transfer speeds of 4.8 Gbps) .
Lets put that in perspective. Depending on that products (HDD's, controllers, external cabinets) appear which could support these transfer speeds,
we could look at speeds where filling a 2TB disc would take 10-15 minutes. Minutes, guys.
That's 15 minutes to grab 75 single layer 27Bg Blue-ray movies, or 400 5GB DVD .ISO's, without any compression.
Prediction: Sneakernet will be hard beaten, in terms of speed, security and capacity.
Only con I'm able to see is availability, where nothing beats the internet.
Dispatch War-Rocket AJAX!
sorry for the potential OT.
... actually, I'm thinking you might be on to something here.
> Now you do not want to assign IP addresses for all the components inside your computer, do you?
Think IPv6 (where address space wouldn't be a problem) - and monitoring a farm of computers for something (example Fan speed). You could have query:able fans in different PC cases, all by using some sort of internal routing in the pc, some policys what's accessable (firewalling disks, making fans "read only, e.t.c.), and some protocol (preferrably with low latency) to be able to speak with the fans internally/remotely....
Hm, I agree - I've not thought this through fully yet - but what would be the drawbacks here?
benefits?
Yeah - I'm on 24/1 ADSL too. Personally, I agree that the whole ADSL business is keeping ordinary fiber/ethernet back (Insane, really; In some places in Urban Sweeden there are like three black-fibre installations from different operators running under the street outside your house, yet NO way to get it into your flat without paying serious $$$).
And - In such a consumerrights strong place - what's with the "Up to 24 MBit/s "... advertizing? You NEVER get the full 24.
This is the friggin' best post I've read in a long time.
The only thing I'd like to add is some general tips on What-to-do(TM)
Get involved. Write your congressman about invasion of privacy. Sponsor EFF. Develop that über-safe anonymizing program, make it widespread.
Get Informed. Read stuff (for example Naomi Klein "The Shock Doctrine"), get unbiased news (NOT FOX!), analyze what's being done rather than what's being said. Ask questions (who benifits from this?)
You need to overcome the denial of what the parent post said about fascism. Just saing "I't ain't so", instead of asking "how do we fix this" - that's a path down a very dark road. Do Something!
I'll scissor in another branch of this post: (sorry for the redundancy - but it:s still valid) So, in the extension - youd be left with the option of fighting the rest of the world - without the moral high ground to stand on. Nope, not doable.
Well - 2000 taxpayers cash/international aid, turned into 400 profit for US company (which, btw, probably have shareholders profiting from the companys profits - probably the same people who have bought politicians deciding about war).
You mistook me for proclaming that "the US"/, as a nation is some kind of winner - I did not.
I'll take the bait - and say you are wrong.
Hate breeds hate, and all you would accomplish is MORE terrorists, using harcher tactics.
go play some http://www.newsgaming.com/games/index12.htm, you will get the message.
I'll eve nuse a cliche: Killing terrorists to end terror is like killing the poor to end poverty - futile.
Heh - I've read The Prince too.
Even if the conquered people are not utterly crushed, you nowdays have global information/awareness, (at least currently - the future may hold changes) and you would have to deal with world public opinion on genocide. I'm absolutely for international War-crime tribunals, wich would prevent the thing Machiavelli suggests.
Winning a war in modern times means that the war has ended - and that's something that nowdays never happens because there will always be "resistance (one man may call it "freedom-fighters", another calls it "terrorist").
There are numerous historical examples of this (Ireland, ETA, Tibet, Afghanistan, vietnam), and you'd think someone would get the message.
The winners of war are the ones profiting on war, and by that I mean convert it into cash (territory/resources can be retaken).
It's the same entity with one hand destroying infrastructure/society in a warzone, and the other getting the contracts for rebuilding.
I'd like to see a return to common sense, diplomacy, and compromize when dealing with conflicts.
Putting aside the mastery of data retention techniques you must posses (which impresses me) I feel i have to ask the question;
Why?
ah, I apologize. You are of course right making the distinction of DNA use for ID, and DNA use for Medical.
I have to ask you something though; don't you think that using DNA for ID use is easily compromised?
Considering how much DNA material we (dayly) spread around us (skin, hair, eyelashes - I just examined my my keyboard closeup, yuk.) wouldn't you think obtaining someones DNA is much, much easier than for example a retina print?
You are totally right to have mixed feelings about the kind of future your'e envisioning:
Your post mostly deals on "something you do" (like criminals, terrorists, and the possibility to ban them based on id:ing their DNA), and protecting people from "evildoers".
Im sorry to point out that you should focus more on the "something you are" aspect of the discussion - as the DNA you get from birth is what you have to deal with, and you are currently unable to do anything about it.
So basically you miss the point where someone who is ok, but with the genes (trait) for becoming an alcoholic could be banned from bars, or just refused insurance, e.t.c.
Not because something they did, but because something that they (potentially) are, or just the greater risk of becoming something undesirable.
> Its those that get on the bad side of the system, or get banned from everything that will get upset quickly.
Yes, and if you get banned for something in your genes (regardless of you have the condition or not - just for that the chance of caching it is greater because of your genes), would you not feel that you are unjustly judged?
And the really scary thing is if you think that would be just - because that would imply that you think people with "better" genes are "better" people, which is a VERY slippery slope to slide.
... well, we are all thinking of goverment as big brother - what about private contractors wanting this?
What will you do when goverment decides private firms (haliburton, or one of your private health insurance corporations) are the best entities to run these things. Outsourcing, anyone?
How do you absolutely guarantee that the DNA database wont be used for employee application selection, or for deciding your premium on your health insurance?
I'll just mention that Sweden has a (for medical use only - but that's currently under discussion) DNA database of all in sweden newborns since 1975 (if you havent specifically asked for non-participation), called the PKU database. It's still ongoing (my little dude was just last week registred - he's a couple of weeks)
Certain "high profile" crimes have been resulted in that the use of this database is under discussion - and the debate is for what uses this database could/should be used.
My hopes are that never, ever will this database be sent to the US/Feds/CIA (as flight iternaries are), and also that private corporation use is prohibited. Think of the society where your employer knows all about your DNA... (go see GATTACA).
HD-DVD? Blue Ray? EVD? (last option chinese format)
Last time I checked, we were living in the digital age.
This means that at least I won't be buying *anything* where the bits are locked to the media, and non movable - and I'll enlighten, family, relatives .. ok, in fact anyone who wants to know - that if they do, they will be buying their media collection all over again when new formats arrive.
It will be the "Video is dead - buy movies you already own again on DVD, chuck your LP's and get the same stuff, again, e.t.c." situation again.
Better quality as an argument to upgrade? Nahh, think about it.... People will watch almost anything in bad choppy webcamquality, just think about YouTube!
This means that it's all zeroes and ones - and i should not have to bother with the physical media it's on, or the device playing it. I will not buy something that is restricted (both media and players) - I consider it to be defunct.
Read my old post on /. http://yro.slashdot.org/comments.pl?sid=173366&cid =14425744 for more elaboration on the subject.
And PLEASE - don't buy DRM capable things for Christmas - It's the best way of using your consumer-powers to influence the industry...
There is a common belief, especially in the US, that Sweden has a higher rate of suicide than other countries; this is actually a myth, as Sweden has an average suicide rate. The myth was probably started because the secular government of Sweden started to measure suicide statistics openly before other countries did. President Eisenhower saw this as a chance to promote his political ideology, and maintained that the statistics showed Sweden was the country of "free love, high taxes and suicide" (none of this was particularly true at the time). Also, the dark, relatively cold climate of Sweden in the winter has added fuel to this myth. (see "Suicide and Season" below).
Reference: http://en.wikipedia.org/wiki/Suicide_rates
This based on that a total of 3 accounts where used to access the network - all from a local socialdemocrat office - where a fourth account using VPN was unused.
Also providing credibility to this, is that the passwords on the used accounts are of sufficient complexity - although not commented on because of policies, by the security firm.
All from the article, read more on (swedish): http://computersweden.idg.se/2.139/1.75972
So, its intresting how something unconfirmed and almost on a "urban legend" level turns into news.....
Ok, and for the people who dissagree I have the following advice: there are other values out there than you, personally in your grubby little closet, trying to get your hands on as much cash as possible through your über-elite coding skills. Actually, current situation today is you + your sweatshop coders, where you get the dough.
It's like you saying: I know something that will cure aids, solve the energy crisis, help starvation but you can all just forget it, unless you pay me. I'm sorry, but sharing information is sometimes the only way of avoiding extinction. (bird flu? any takers?)
There is such a thing as "greater good" - and the fact is, it's called civilisation + defenately its a communual effort and yes, you benefit from it. It's probably what gave you those coding skillz.
Ok, now bring on the petty "you spell lousy" flames - I'll just ignore it and blame the whiskey I drank. :-)
Have a great future, dudes.
The change should by now be obvious for anyone - we are now at a point where the actual content (film or audio) is just a bunch of bits. These bits should be non-dependant from ANY media (used to transport the bits), not locked into SACD, HD-DVD or anything else. I (as a consumer) am not interested in what the format is of the media, I (might) be interested in the content (buying the same content again) if the content has other qualities (better definition, or something else).
The computer is the ultimate tool for handling digital content. It will always be so, unless we loose the right to control our operating systems/hardware.If we get a new physical medium, guess what: You just stick a better card/reading drive into your pc and your'e done!
Now for my personal standpoint: I consider anything that hinders my ability to get to the digital content (read DRM) to be broken/defect, and eligeble for return.
DRM never adds capabilities for me as a consumer of the content. It's of no actual use, except preventing me from playing it on multiple devices or making backups.
I will return hardware with built in DRM, and a already have returned this Christmas the unplayable DVDs, CD's that friends/relatives got as presents and are unable to play on their equipment.(broken by DRM)
And here comes the punchline - in every case where the manufacturer added something that just doesn't work on my relatives equipment, I'm able to point out where to find a unprotected working copy of the content (yes - pirated - that's why I only show them where to find it, and how to do it) and leave them in a situation where:
a. they can't get a legal working example of the content without DRM
b. they know how/where to find the content, fully working but pirated
c. an insight that they could be doing something illegal by downloading it. And if they feel this to be wrong, do whatever they can to change it.(protest, vote, demonstrate, display civil disobedience, revolt, publicly denounce, e.t.c.)
d. a stern request that "they find a way to pay for the content" that they want - but to NEVER pay for DRM, since thats what broke it in the first place.
Ok, am I right in wanting WORKING stuff, stuff that leave me whith my rights intact (right to backup, right to not have to pay when the seller broke something)?
I mean, if you "sell" it to the company involved, then maybe it would be ok, but in selling it to random spammer , columbian druglord, phedophile network BOFH or next "slammer worm" author is not ok.
How would you go about setting the price of a security hole? What is the worth?
"By monetary value of what could be lost exploiting the hole", or something else? Estimation of possible gains (user data like credit card info) through usage of the hole - the perpetrators view?
Because, lets face it: There are people out there willing to pay for information like this.
(and I'm not saying its right - just stating the fact). There are also others wondering how some things come to pass, and the damage bad code review actually causes.
ok, sorry - possibly OT. But I *am* intrested in /. ers reasoning about "the value/possible cost of security holes".
ROFL!