On Sunday 18 August 2002 01:36 am, Justin Clift wrote: > Brian Moon wrote: > > Yeah, I was a little ticked off at this guy for not notifying us before > > publicly posting these. That seems to be a problem for some people. I > > guess they are afraid that if they don't go public first they won't get > > the credit. We did fix all those issues within a day of finding out > > about them. If we had known before the world, we could have saved some > > people some possible problems. > They just announced it to the world without letting you guys even know > at all? Reading BugTraq is more than a little educational in how people will do anything to get first credit on finding security holes. The number of holes announced without prior warning to the authors is quite large, both in raw numbers and in percentages. -- Lamar Owen WGCR Internet Radio 1 Peter 4:11