More on vulnerability discovery and disclosure

by Anton Chuvakin

Related link: http://www.sockpuppet.org/tqbf/log/2005/05/its-that-time-again-time-for-usenet.h…



A lot of fun debate is quoted on the site (some dating back to early 90s); the conclusion seem to be that "vulnerability research ... have drastically improved the security of popular software."