Maybe he should build a vulnerability into each version, so he can announce each new version with the disclosure and satisfy your constraints.<br><br>-Travis<br><br><div class="gmail_quote">On Wed, Aug 10, 2011 at 10:44 AM, Steven Pinkham <span dir="ltr"><<a href="mailto:steve.pinkham@gmail.com">steve.pinkham@gmail.com</a>></span> wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex;"><div class="im"><a href="mailto:Valdis.Kletnieks@vt.edu">Valdis.Kletnieks@vt.edu</a> wrote:<br>
> On Tue, 02 Aug 2011 22:17:58 -0300, root said:<br>
>> Dude you just released INSECT Pro 2.7 less than a week ago. I swear to<br>
>> god I'm being serious.<br>
><br>
> It's not unusual for commercial products with customers that demand product<br>
> stability to release version 3.5 or whatever, then release 3.6, and after that<br>
> release 3.5.1, 3.5.2, yadda yadda with just bugfixes so sites can get patched<br>
> without having to make the 3.5->3.6 jump.<br>
<br>
</div>Yes. But they don't spam full-disclosure with that info every week.<br>
Rapid releases can be good, but the list charter says:<br>
<br>
"Gratuitous advertisement, product placement, or self-promotion is<br>
forbidden."<br>
<br>
Announcing every point release of a commercial product falls afoul of<br>
that.<br>
<font color="#888888">--<br>
| Steven Pinkham, Security Consultant |<br>
| <a href="http://www.mavensecurity.com" target="_blank">http://www.mavensecurity.com</a> |<br>
| GPG public key ID CD31CAFB |<br>
</font><div><div></div><div class="h5"><br>
<br>
_______________________________________________<br>
Full-Disclosure - We believe in it.<br>
Charter: <a href="http://lists.grok.org.uk/full-disclosure-charter.html" target="_blank">http://lists.grok.org.uk/full-disclosure-charter.html</a><br>
Hosted and sponsored by Secunia - <a href="http://secunia.com/" target="_blank">http://secunia.com/</a><br>
</div></div></blockquote></div><br><br clear="all"><br>-- <br>FD1D E574 6CAB 2FAF 2921 F22E B8B7 9D0D 99FF A73C<br><a href="http://pgp.mit.edu:11371/pks/lookup?search=tbiehn&op=index&fingerprint=on">http://pgp.mit.edu:11371/pks/lookup?search=tbiehn&op=index&fingerprint=on</a><br>
<a href="http://pastebin.com/f6fd606da">http://pastebin.com/f6fd606da</a><br>