Comments on: Google fixes Web site security bug

Vulnerability could have exposed some users to account hijacks, phishing scams and other attacks, security firm says.

Just a bit concerned.
by Roman12 October 10, 2005 2:06 PM PDT: As a user of Gmail, and Google Adwords I am very concerned, and at the same time relieved that its been fixed. Such flaws can lead to disappointment.
__________________________________
R.K.
http://www.Remove-All-Spyware.com/; Like this Reply to this comment

Why isn't this marked as a High Impact issue!

by October 10, 2005 2:24 PM PDT

Come on News.com this is a super high impact! If it was Microsoft you would have been sure to make it so.

Why hi-impact now?
by Woodmon October 10, 2005 4:52 PM PDT: As anpother reader commented, yesterdays news.

Now if Google had not reponded to the issue and then Finjan had to go public, it would be a high impact issue.

The fact is there are many outstanding security issues lurking out there in various software products and online websites (and this will always be the case).

Many of these issues will not be reported publicly (until solved) but that does not mean they are not being worked on.

Publicly reporting the issues before the developer/service provider has had ample opportunity to repair is irresponsible.

Conversely it is irresponsible for security experts and the media not to report if there indeed has been ample time to repair.

The balancing act (the topping point) in reporting involves deciding on how much time is enough, and more importanly, how large the security issue is and if any workarounds are available.

This is up to intelligent minds to decide, at both software development companies, so-called security expert/consulting companies, the media and the public at-large.

Woody; Like this

This is last month's news...literally.
by M C October 10, 2005 2:27 PM PDT: What's next, a report on the worm that infested computers in 1998?; Like this Reply to this comment

I thought Google was not talking to cnet? What changed?
by Woodmon October 10, 2005 4:36 PM PDT: Google confirmed that it was alerted "a little while ago" and fixed the flaw. "No user data was compromised, and we applaud Finjan for following industry best practices for vulnerability disclosure," a Google representative said in an e-mailed statement.

-; Like this Reply to this comment

I kind of bet you guys to it
by n3td3v October 10, 2005 6:15 PM PDT: See: http://www.google.com/search?hl=en&lr=&q=%22script+injection+in+google+groups+beta%22&btnG=Search

Thanks, n3td3v ;-); Like this Reply to this comment

(6 Comments)

China arrests thousands in Web porn crackdown
Posted in News - Digital Media by Jennifer Guevin

January 2, 2010 6:26 PM PST
Application packaging for cloud computing: A proposal
Posted in The Wisdom of Clouds by James Urquhart

January 2, 2010 4:56 PM PST
When policemen are caught looking at Web porn
Posted in Technically Incorrect by Chris Matyszczyk

January 2, 2010 4:16 PM PST
See all headlines