Re: [Fed-Talk] bug in SmartCard implementation
Re: [Fed-Talk] bug in SmartCard implementation
- Subject: Re: [Fed-Talk] bug in SmartCard implementation
- From: Todd Heberlein <email@hidden>
- Date: Fri, 26 Sep 2008 10:42:19 -0700
The statement you received about "After examining your report we do
not believe that the issue is security related" only meant that the
classification bug went from "Security" to "Serious Bug".
"Security" bugs are those which are being considered for Security
Updates to fix security exposures. This is a functionality bug.
I've had similar experiences with respect to BSM auditing (which is
broken). When filing the bug report, I needed to select a category,
and "security" seemed like an obvious category to me. But I guess
Apple's "Security" refers to an immediately exploitable vulnerability
(which I agree that it should get priority).
I was very pleased when Apple announced that its major plan for Snow
Leopard was *not* to add a bunch of new features and instead
concentrate on firming up its existing features.
Todd
PS. Any news on when BSM auditing is going to be fixed?
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Fed-talk mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden