I still like the idea of collecting a reward if I find an exploit, rather
than paying to find out about them.
For all the talk on this list about people being concerned about system
security, it baffles me why, when it comes to things like BIND, people
justify continuing to use it, and attack alternatives without fully
evaluating them. It reminds me more and more of listening to M$
apologists.
--Pete
On Thu, 22 Feb 2001, Kenneth E. Lussier wrote:
> This is an extremely misunderstood point. The point here is not to have
> people pay in order to find out what the bugs are. The point is to
> streamline the process for developers and commercial vendors. The pay
> service is for companies that supply a commercial version of BIND and
> need to deploy custom fixes to a large customer base quickly. The bugs
> will still be reported to the world via CERT as they always have, and
> organizations will still be able to get the fixes via ISC's site.
>
> The entire reason for this is to provide better communication between
> vendors and ISC. It has absolutely nothing to do with people who *USE*
> BIND, just the people who *SELL* it.
>
> Kenny
>
> Peter Cavender wrote:
> >
> > No, ISC sounds like MS. Keep using BIND - now they want to have you PAY
> > to be told the software is broken.
>
> **********************************************************
> To unsubscribe from this list, send mail to
> [EMAIL PROTECTED] with the following text in the
> *body* (*not* the subject line) of the letter:
> unsubscribe gnhlug
> **********************************************************
>
**********************************************************
To unsubscribe from this list, send mail to
[EMAIL PROTECTED] with the following text in the
*body* (*not* the subject line) of the letter:
unsubscribe gnhlug
**********************************************************
