Posts tagged “computer security”

I explore two opposing views on disclosing security vulnerabilities. Full disclosure with exploit code may spike attacks but drives patching. Secrecy spreads attacks over time with less patching. Both extremes seem wrong: publicize vulnerabilities, yes, but step-by-step attack guides go too far.