[VoiceOps] Broadworks Patch Religion
Dan White
dwhite at olp.net
Mon Feb 8 11:38:47 EST 2010
On 08/02/10 08:28 -0800, David Hiers wrote:
>I'm just not willing to assume that everyone tells me everything about
>everything all the time in a perfectly instantaneously, error-free
>manner.
>
>Even if they tried, they couldn't pull it off.
Trust No One and Verify, Verify, Verify are good security policies, and I
don't expect a company to always produce bug free software.
However, I do expect a company to document all fixes and security patches.
There's no excuse to do otherwise. If they can't hold to that promise, then
they should open up their source code for peer review.
--
Dan White
More information about the VoiceOps
mailing list