Blame for vulnerabilities poll

by Anton Chuvakin

Related link: http://www.misterpoll.com/results.mpl?id=1895245195



So, my vulnerability poll have been running for a while, and the results seem to be pretty consistent: so far, 87% of 55 respondents blamed the software vendors for the current security rampage. Not hackers, not users, not anybody else. Admittedly, I might have phrased the questions wrong or some other bias has crawled in (such as audience selection). So, is the question closed? Not really!

For example, this guy writing an nCircle blog seems to think that the results are "misplaced". Users are to blame, but not becauase they don't patch or harden. Users buy the buggy stuff that software companies write - and thus are the responsible party, according to the above blogger...