Month of bugs

Month of bugs

Month of Bugs is an increasingly popular strategy used by security researchers to draw attention to the lax security procedures of commercial software corporations. The tenet is these corporations have shown themselves to be unresponsive and uncooperative to security alerts and that "responsible disclosure" isn't working properly where they're concerned. To that effect, researchers start a Month of Bugs project for a certain software product and disclose one security vulnerability each day for one month.

The original "Month of Bugs" was the Month of Browser Bugs (MoBB) run by security researcher HD Moore.[1] Subsequent projects include the Month of Kernel Bugs (MoKB) which published kernel bugs for Mac OS X, Linux, FreeBSD, Solaris and Windows, as well as four wireless driver bugs;[2][3][4] the Month of Apple Bugs (MoAB) conducted by researchers Kevin Finisterre and LMH which published bugs related to OS X;[5][6][7] and the Month of PHP Bugs sponsored by the Hardened PHP team which published 44 PHP bugs.[8][9][10]

Contents

See also

References

  1. ^ Kerner, Sean Michael (5 July 2006). "The Month of The Browser Bugs Begins". InternetNews.com. QuinStreet Inc.. http://www.internetnews.com/security/article.php/3618126. Retrieved 22 October 2010. 
  2. ^ Mogull, Rich (6 November 2006). "Learn from 'Month of Kernel Bugs'". Gartner archive. Gartner Inc.. http://www.gartner.com/DisplayDocument?doc_cd=144700&ref=g_homelink. Retrieved 22 October 2010. 
  3. ^ Naraine, Ryan (1 November 2006). "Month of Kernel Bugs Launches with Apple Wi-Fi Exploit". eWeek. Ziff Davis Enterprise Holdings Inc.. http://www.eweek.com/c/a/Security/Month-of-Kernel-Bugs-Launches-with-Apple-WiFi-Exploit/. Retrieved 22 October 2010. 
  4. ^ Evers, Joris (2 November 2006). "Apple wireless flaw revealed". ZDNet. CBS Interactive. http://www.zdnet.co.uk/news/security-threats/2006/11/02/apple-wireless-flaw-revealed-39284508/. Retrieved 22 October 2010. 
  5. ^ McMillan, Robert (20 December 2006). "Apple Bug-Hunt Begins". PC World. PCWorld Communications, Inc.. http://www.pcworld.com/article/128282/apple_bughunt_begins.html. Retrieved 22 October 2010. 
  6. ^ Leyden, John (20 December 2006). "Month of Apple bugs planned for January". The Register. The Register. http://www.theregister.co.uk/2006/12/20/month_of_apple_bugs/. Retrieved 22 October 2010. 
  7. ^ Naraine, Ryan (19 December 2006). "Coming in January: Month of Apple Bugs". eWeek Security Watch. Ziff Davis Enterprise Holdings Inc.. http://securitywatch.eweek.com/apple/coming_in_january_month_of_apple_bugs.html. Retrieved 22 October 2010. 
  8. ^ Prince, Brian (3 March 2007). "Month of PHP Bugs Begins". eWeek. Ziff Davis Enterprise Holdings Inc.. http://www.eweek.com/c/a/Security/Month-of-PHP-Bugs-Begins/. Retrieved 22 October 2010. 
  9. ^ Naraine, Ryan (1 March 2007). "Flaw trifecta kicks off Month of PHP bugs". ZDNet. CBS Interactive. http://www.zdnet.com/blog/security/flaw-trifecta-kicks-off-month-of-php-bugs/107. Retrieved 22 October 2007. 
  10. ^ Naraine, Ryan (4 May 2007). "Controversial 'month of bugs' getting security results". ZDNet. CBS Interactive. http://www.zdnet.com/blog/security/controversial-month-of-bugs-getting-security-results/189?tag=mantle_skin;content. Retrieved 22 October 2010. 

Further reading

External links


Wikimedia Foundation. 2010.

Игры ⚽ Нужно сделать НИР?

Look at other dictionaries:

  • Month of Bugs — The Month of Bugs is an increasingly popular strategy used by security researchers to draw attention to the lax security procedures of commercial software corporations. The tenet is these corporations have shown themselves to be unresponsive and… …   Wikipedia

  • Time formatting and storage bugs — In computer science, time formatting and storage bugs are a class of software bugs which may cause time and date calculation or display to be improperly handled. These are most commonly manifestations of arithmetic overflow, but can also be the… …   Wikipedia

  • The Mythical Man-Month —   …   Wikipedia

  • List of software bugs — Many software bugs are merely annoying or inconvenient but some can have extremely serious consequences either financially or as a threat to human well being. This is a list of the software bugs with the most notable consequences: Space… …   Wikipedia

  • Internet Explorer — Windows Internet Explorer A component of Microsoft Windows Internet Explorer 9 in Wi …   Wikipedia

  • Firefox — For other uses, see Firefox (disambiguation). Phoenix (web browser) redirects here. For the Phoenix browser based on tkWWW, see tkWWW. Firefox …   Wikipedia

  • Safari (web browser) — Safari Safari 5.1 on Mac OS X Lion Developer(s) …   Wikipedia

  • Moab (disambiguation) — Moab is the historical name for an ancient kingdom located in modern day Jordan. Moab may also refer to: Moab, in The Bible, the first son of Lot and patriarch of the kingdom of Moab Moab, Utah, U.S., a city GBU 43/B Massive Ordnance Air Blast… …   Wikipedia

  • Countermeasure (computer) — For other uses, see Countermeasure.   In Computer Security a countermeasure is an action, device, procedure, or technique that reduces a threat, a vulnerability, or an attack by eliminating or preventing it, by minimizing the harm it can… …   Wikipedia

  • Year 2000 problem — Y2K redirects here. For other uses, see Y2K (disambiguation). The (French) sign reads 3 January 1900 instead of 3 January 2000 The Year 2000 problem (also known as the Y2K problem, the Millennium bug, the Y2K bug, or simply Y2K) was a problem for …   Wikipedia

Share the article and excerpts

Direct link
Do a right-click on the link above
and select “Copy Link”