Unfortunately, it's not so simple. Alerting the public before a fix is out is a ... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		nbpoole on May 6, 2011 \| parent \| context \| favorite \| on: Skype bug gives attackers root access to Mac OS X Unfortunately, it's not so simple. Alerting the public before a fix is out is a double-edged sword: it also means malicious attackers have a chance to replicate the finding and abuse it.

lancewiggs on May 6, 2011 [–]

Then perhaps the flow should be amended: Alert the public after the fix, or after a week, whichever is the earlier.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact