Communications > Security

Full disclosure of bugs needed, bloke reckons

Software companies ignore softly softly

By Nick Farrell

Thursday, 16 August 2007, 10:17

SECURITY EXPERT Seth Fogie says that the process of public disclosure of software flaws is important because software outfits would ignore bugs if they could get away with it.

Writing in his bog, said he found flaws in EZPhotoSales, a web application you could buy to manage your online photogallery and sales.

After having a play with it he realised that the software was insecure and contacted the company to inform them of the many bugs he found.

The company admitted that EZPhotoSales had a number of flaws and was working on a new product to replace it. That was in March.

So, by August when the problem still wasn't fixed, the new product still was not out, Fogie went public.

He posted the problem to FD, Bugtraq, and InformIT and several days later a patch for the software appeared. He cites this as proof of how full disclosure of bugs was the only way to shift companies.

McKinnon's fate decided on Obama day Myspace pop video makes a comeback Monday, 1 December 2008, 15:42 PM Read more	New Nintendo DS coming in 2009 Console round-up Whilst GP2X gets release date Monday, 8 September 2008, 11:30 AM Read more
Xbox 360 will dominate Christmas sales Console round-up Japan sales fall Monday, 20 October 2008, 11:56 AM Read more	Is there anybody out there? A social networking "hello" from Earth Thursday, 9 October 2008, 15:00 PM Read more
Kazaa switches sides to fight pirates and porn Yes really Tuesday, 28 October 2008, 08:39 AM Read more	Vista Capable case no longer class action Volish victory short lived Thursday, 19 February 2009, 10:51 AM Read more

< Previous article| Next article >

Comments

There are no comments submitted yet. Do you have an interesting opinion? Then be the first to post a comment.

Most read
Most commented
Most popular

INQ Whitepapers

INQ Poll

Browsers

Who will win the next round of browser wars?

Firefox - it’s hard to argue with all those add-ons

IE - resistance is futile

Search me... Chrome?

Safari, but it’s too cool for you

What browser? I’m using Win7 in Europe

View other polls

©Incisive Media Limited, Haymarket House, 28-29 Haymarket, London SW1Y 4RX, is a company registered in the United Kingdom with company registration number 04038503

SEARCH :

Site Credentials:

Business & Technology websites:

Business research resources:

Products:

Investment Market IT websites:

Find out what you are worth:

Search for a job:

Recruitment Agency A-Z Directory: All
A B C D E F G H I J K L M N O P Q R S T U V W X Y Z

Full disclosure of bugs needed, bloke reckons

Share this:

Business Intelligence Software

Customer Relationship Management (CRM)

Enterprise Accounting Software

Enterprise Resource Planning (ERP)

Enterprise Systems Management