Deutsch   English   Français   Italiano  
<vttra7$36p3b$3@dont-email.me>

View for Bookmarking (what is this?)
Look up another Usenet article

Path: ...!eternal-september.org!feeder3.eternal-september.org!news.eternal-september.org!eternal-september.org!.POSTED!not-for-mail
From: chrisq <devzero@nospam.com>
Newsgroups: comp.os.vms
Subject: Re: Americans: that clueless cretin you elected just killed the CVE
 program :-(
Date: Fri, 18 Apr 2025 16:32:22 +0100
Organization: A noiseless patient Spider
Lines: 50
Message-ID: <vttra7$36p3b$3@dont-email.me>
References: <vto74r$25guk$1@dont-email.me> <vttnam$36p3b$1@dont-email.me>
 <68026647$0$713$14726298@news.sunsite.dk>
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8; format=flowed
Content-Transfer-Encoding: 8bit
Injection-Date: Fri, 18 Apr 2025 17:32:23 +0200 (CEST)
Injection-Info: dont-email.me; posting-host="d3171d06018216e770a3b207084f5b8c";
	logging-data="3368043"; mail-complaints-to="abuse@eternal-september.org";	posting-account="U2FsdGVkX18aGYODNcMn6dSlnIf/7bH9"
User-Agent: Mozilla Thunderbird
Cancel-Lock: sha1:Z20Hytly8BGt2ErGZ0RLPhyy5n8=
In-Reply-To: <68026647$0$713$14726298@news.sunsite.dk>
Content-Language: en-US
Bytes: 2615

On 4/18/25 15:48, Arne Vajhøj wrote:
> On 4/18/2025 10:24 AM, chrisq wrote:
>> On 4/16/25 13:17, Simon Clubley wrote:
>>> Read for yourself:
>>>
>>> https://www.theregister.com/2025/04/16/homeland_security_funding_for_cve/
> 
>>                                       and why do so many people think the
>> taxpayer should fund everything ?.
> 
> It does not have to. I assume it has been so for historic
> reasons.
> 
> But I think this is one case where the taxpayers get a lot
> of bang for the buck.
> 
> The CVE program has a significant impact on security at
> US federal system, US state and local systems, US private
> companies, US citizens and same for other countries including
> close US allies.
> 
> And at a cost of approx. 50 M$ per year for running the program.
> 
> The global cost of cybersecurity incidents are estimated
> at 10 T$.
> 
> It is a bargain.
> 
> I am pretty sure there are many other programs with more
> questionable value.
> 
> Arne
> 
> 

If it's so cheap, let the very prosperous industry pay
for it. If a product has vulnerabilities, that's a
product defect, and the responsibility of the
manufacturer to fix it. Sorry, no excuses. Self interest
should ensure that defects will still get fixed, just
as they are now.

Apparently, the US is trillions in debt, and that can't be
ignored forever. The state needs to live within its
means, just like the people do.

Chris