« Scalent Virtual OS | Main | Schmidt's dream »
October 03, 2006
"Mozilla exploit" story
"Mozilla exploit" story: The folks at Mozilla are still checking reports of possible security exploits in Firefox's JavaScript engine, but it seems like this story was based on an allegation, rather than true vulnerabilities. The story has caused damage, though... each individual reader will have to sort through the various stories they're told, and even the evaluation time is a significant cost on society. My takeaways: (1) We humans have a natural inclination to believe what we're told, and don't want the cost of investigating every story; (2) Security and privacy are journeys, not destinations... nothing is perfectly secure, but the pressures for protection and exploitation evolve against each other over time... "how secure is a technology?" has better answers than "is a technology secure?"; (3) Some messages are better when handled out of the public record... if you know of any possible way to harm others through the use of Adobe technology, then checking with the Security Team would be better than announcing it at a conference, like the way this Firefox story made its debut.... ;-)
Posted by JohnDowdell at October 3, 2006 08:55 PM
Trackback Pings
TrackBack URL for this entry:
http://weblogs.macromedia.com/mtadmin/mt-tb.cgi/7854