On Mon, 22 Apr 1996, Garth Kidd wrote:
> There's also the matter of liability -- nobody wants to be sued for
> revealing to the intruder community a security hole later exploited to
> <insert something nasty here>.
I think that such a lawsuit would be really grasping at straws.
Anyway, if such lawsuits were plausible how come they haven't happened
yet? I think we can pretty much discount that as being an organization's
or individual's reason for withholding such information.