Quote:
Originally Posted by milan
I can't answer #1 as I knew they are trying to resolve this, they did not sit on their ass... (I still think letting the customers know would be first priority)
as for #2 I will repeat that we still have respect for the idea that security issues should be secret until their fixed. and was urged by our clients that we located the issue on their server NOT to go public or something bad will happen to them, who know what bad is but lawsuit and revoke of license is what I heard... can't confirm the second one.
|
Well, you gotta do right by your clients, I suppose... Milan, I know what a nice guy you are and in this case, I think you might have been a little bit too nice to the TMM folks. Thats what I was trying to say. From the TMM response, it doesn't sound like they were doing alot to fix the issue but were working overtime to keep it hush hush. I know what you are saying about the keeping it secret part, but there is a balance there. If they are not working on fixing it, then someone needs to disclose it to force their hand for the greater good. I don't blame anyone other than NATS/TMM for this.