Wednesday, March 01, 2006

On Spire Security Viewpoint - Anti-vuln Research

Ah, Pete Lindstrom goes at it again in his post: Spire Security Viewpoint: So Generic (and Wrong) It Hurts: "And here's the thing: we think we can control the threat environment even when we can't, and we aren't preparing anyone for attacks, even though they are as likely today as they would be if we never disclosed another vulnerability again."

So, is vulnerability research evil? Yes? No? Check out his post...

1 comment:

Pete said...

"Evil" is a pretty strong word. "Futile" is a better one to describe the general state of vuln mgt. I don't rule out "evil" but I don't think it is common.

Pete

Dr Anton Chuvakin