lndcentral.com
Advanced Search
 

Welcome to lndcentral.com
Submit a Story Calendar Links Forum Journals Site Stats RSS/Avantgo
Sun, 05Feb12, 03:51 PM EST
 User Functions 
Username:

Password:

Don't have an account yet? Sign up as a New User


 Site Navigation 
Home

Topics
In the News
Lotusphere 2005
Other Events
User Groups
Microsoft
Competition (Other)
3rd Party Products
Notes/Domino 5/6
Notes/Domino 5/6 tech.
Notes/Domino 7 beta
Lotus Workplace
Websphere Portal
IBM WP Client Technology
Eclipse
Quickplace
Sametime
Domino.Doc
Site News

Other
Event Calendar
Links
Forum
Journals
Polls
Stuff Store
Amazon Shop
Privacy Policy



 What's New 
STORIES
No new stories


COMMENTS last 48 hrs
No new comments


 Forum posts 
Order By:New Views Posts
Latest 5 Forum Posts
Lotus Notes/Domino..
 By:  wlloyd
 On:  10/06/05 11:49 AM
 Views 15220 Replies 0
Could you fix this..
 By:  Admin
 On:  03/08/05 17:26 PM
 Views 15637 Replies 1
URGENT Action Need..
 By:  Marshall Wilensky
 On:  01/23/05 14:50 PM
 Views 15560 Replies 0
ESPN SportsZone - ..
 By:  EaglesFan
 On:  01/17/05 16:42 PM
 Views 16619 Replies 0
Certifications at ..
 By:  Steve
 On:  11/10/04 21:19 PM
 Views 15461 Replies 1


 Older Stories 
Monday 17-Jan
  • Subsciption Services, and URL Bookmarking for Domino.Doc (0)

    • Friday 07-Jan
  • 5th annual Lotusphere sessions db available (0)

    • Thursday 23-Dec
  • Business Partner Application Showcase (0)

    • Wednesday 03-Nov
  • Apache Tomcat (1)

    • Tuesday 26-Oct
  • Trust Always Matters (3)

    • Thursday 14-Oct
  • Google Desktop Search (3)

    • Friday 08-Oct
  • Domino vs. Exchange debate? Not likely. (0)

    • Monday 27-Sep
  • Armor2net Personal Firewall (1)
  • IDC Report (0)
  • PureEdge Delivers XML E-forms for IBM Lotus Workplace 2.0 (0)
    		•


     Top Links 

    Site NameHits
    developerWorks: Developing Struts with Easy Struts for Eclipse4309
    Greyhawk's Meanderings3724
    codestore3662
    Genii Blog3462
    vowe.net3449
    benpoole.com3384
    notes.net a.k.a. IBM Developerworks3363
    OpenNTF3048
    Granite - Chicago Lotus User Group2893
    Notestips2815

    More Links


     Google Search 
    Powered By Google


     Got Ethics? 
    Learn about business ethics from the Radicati Group.


     Get Firefox 

    Get Firefox!




       
    Mon, 28Jun04, 08:28 AM EDT Contributed by:Greyhawk68 Views: 2267

    Notes/Domino 5/6Given that Notes/Domino had it's first security flaw in quite some time, I was checking out the technotes and found the following:

    VIII. DISCLOSURE TIMELINE

    04/21/2004 Exploit acquired by iDEFENSE
    05/05/2004 iDEFENSE clients notified
    05/05/2004 Initial vendor notification
    05/07/2004 Initial vendor response
    06/23/2004 Public disclosure

    It only took Lotus six weeks to fix the vulnerabilities, as opposed to six months the competition normally takes. I think this says a LOT for IBM and Lotus.

             

    Security Flaw Turnaround Time | 3 comments | Create New Account
    The following comments are owned by whomever posted them. This site is not responsible for what they say.

    Security Flaw Turnaround Time
    Authored by: jmichael on Mon, 28Jun04, 03:40 PM EDT
    Yup. But it probably makes a big difference if you have one or two semi-serious issues about every leap year or if you have a stack of *critical* problems from your desk to the ceiling. I mean, these poor folks at the other company probably just don't know where to start the fixing. So they don't. I mean, hey, instead of fixing these problems, let's sell a virus scanner. I bet it'll also kill worms. They don't have to fix anymore problems and even make a buck off their anti-virus product. Pure Genius!
    [ Reply to This ]
    Security Flaw Turnaround Time
    Authored by: philipstorry on Wed, 30Jun04, 07:28 AM EDT
    It also makes a difference if you have the process in place to produce regular maintenance releases, as Iris/Lotus/IBM have always had.

    When IBM were notified, a fix didn't take long. Any delay was probably more down to shoehorning it into the next release of Notes/Domino - notice that the fix was the normal maintenance release of 6.0.4/6.5.2. Only if it was critical and presented a real problem would IBM go for an a/b/c suffix as a small patch.

    The fact is that the developers of Domino/Notes are used to producing regular releases. They have a development/QA/release cycle set up for it. Most of the competition doesn't - they release service packs when they feel like it, and even when their service packs are in beta, they won't commit to a release date until the final month. Because of this, they end up having to ship lots of little patches in between service packs - and then roll them all up into the next service pack, dealing with all those dependancies and interoperability problems at that stage.

    The regular release system just seems so much nicer, really.
    [ Reply to This ]
    Security Flaw Turnaround Time
    Authored by: jmichael on Tue, 29Jun04, 04:52 PM EDT
    Well, let's see how much time MS needs to fix this one: New IE Malware Captures Passwords Ahead Of SSL.
    [ Reply to This ]
     What's Related 
  • technotes
  • More by Greyhawk68
  • More from Notes/Domino 5/6
    		•


     Story Options 
  • Mail Story to a Friend
  • Printable Story Format
    		•



    Dessous zum Verlieben lndcentral.com News Feeds Powered By GeekLog 
    Created this page in 0.16 seconds