Comments on: Full disclosure http://thinkhole.org/wp/2006/08/10/full-disclosure/ There should be one obvious way to do it. Fri, 21 Nov 2008 08:35:48 +0000 http://wordpress.org/?v=2.6 By: import this. » Blog Archive » Security hole found in Django http://thinkhole.org/wp/2006/08/10/full-disclosure/#comment-6450 import this. » Blog Archive » Security hole found in Django Thu, 17 Aug 2006 12:17:16 +0000 http://thinkhole.org/wp/2006/08/10/full-disclosure/#comment-6450 [...] Last Thursday (talking about Rails) I said: The time will come when each of the other frameworks will be found to have critical security flaws as well. [...] [...] Last Thursday (talking about Rails) I said: The time will come when each of the other frameworks will be found to have critical security flaws as well. [...]

]]> By: Nathan http://thinkhole.org/wp/2006/08/10/full-disclosure/#comment-6249 Nathan Fri, 11 Aug 2006 22:50:04 +0000 http://thinkhole.org/wp/2006/08/10/full-disclosure/#comment-6249 The other frameworks, hopefully learned something from this. Tell your users what the problem is. Which is good, since RoR made a mistake, got thwacked in the knuckles, and made amends. The others can then learn without having to go through it themselves. The other frameworks, hopefully learned something from this. Tell your users what the problem is. Which is good, since RoR made a mistake, got thwacked in the knuckles, and made amends. The others can then learn without having to go through it themselves.

]]> By: Lon http://thinkhole.org/wp/2006/08/10/full-disclosure/#comment-6241 Lon Fri, 11 Aug 2006 13:17:05 +0000 http://thinkhole.org/wp/2006/08/10/full-disclosure/#comment-6241 I think what amuses me the most is the "internet time accelleration." This went from zero to full disclosure in about a day, with some security by obscurity thrown in the midst. It's been touted as a scandal of Lewiskian proportions but when you look back it was a 24 hour blip. Not defending how it happened, just find it funny for such a short-term problem. I think what amuses me the most is the “internet time accelleration.” This went from zero to full disclosure in about a day, with some security by obscurity thrown in the midst. It’s been touted as a scandal of Lewiskian proportions but when you look back it was a 24 hour blip.

Not defending how it happened, just find it funny for such a short-term problem.

]]>