Discover Vendors/Products News
eWeek: Who's Watching Whom?
The flap began June 17 when news of a serious vulnerability in the popular Apache open-source Web server software hit security mailing lists. First to report the flaw was security vendor Internet Security Systems Inc., which released an advisory the day it discovered the problem. The ISS advisory included a piece of code that the company's X-Force research team said would close the security hole. At the time, no formal patch was available.
The Apache Software Foundation, in Forest Hill, Md., which maintains the Apache software, released its own advisory later the same day, which not only criticized ISS for releasing its advisory before a patch was ready but also claimed that Atlanta-based ISS' patch didn't fix the vulnerability.
The link for this article located at eWeek is no longer available.