On Mon, Feb 6, 2012 at 6:00 PM, Stefan Esser <ste...@nopiracy.de> wrote: > Hey Nikita, > >> Full disclosure sure is controversial, but I don't think it is >> regarded as necessarily bad. Just look at the way Stefan disclosed the >> PHP 5.3.9 remote code execution vulnerability: Full disclosure. >> >> So please, again, don't call people names. > > I guess you are not aware that the bug was disclosed by Stas when he commited > the fix to the SVN. > I never told anyone where the bug is before it was already all over the > internet. > > So please get your facts straight. Sorry, I was misinformed. My point still stands, that full disclosure is controversial, but not necessarily bad.
Sorry again for mixing things up. -- PHP Internals - PHP Runtime Development Mailing List To unsubscribe, visit: http://www.php.net/unsub.php
