On Mar 1, 2012, at 07:52, David Cole wrote: > > It outrages me that a customer's trust would be so egregiously violated. I > believe that it is the duty of those who do know who this vendor is to name > it immediately. > This runs afoul of IBM's practice of "security through obscurity", with which I mostly disagree, and even of common sense. Rather, the vendor should be given a reasonable time to comply, perhaps a few months, with the threat of public humiliation when that period expires.
Remember SATAN? -- gil
