Chat directly with me if you want. Go to my
Chat page to find a web messenger!
Shoaib's blog actually pointed me to a pretty interesting article called Face-Off: Is vulnerability research ethical? - Security Experts Bruce Schneier & Marcus Ranum Offer Their Opposing Points of View. Not surprisingly Bruce says "yes" and Marcus says "no". If you read through their points, you might even agree partly with each of them:
But to me, this is the wrong question: It is not so much about security research. To me it is about two things:
That's really bad if vendors make money selling security updates…
Remember me talking about Is Security Research Ethical? I made a statement in there when it comes to