Description: Brendan Forster is a Developer at GitHub, working on all things Windows - as well as some open source projects whenever time permits. He tweets silly things over on @shiftkey and has a neglected blog at brendanforster.com.
This past year I’ve had to take time out of my normal work routine to react to a couple of serious 0-day exploits in open source libraries I ship to customers. In this talk I walk through how two major open source projects (Bash and Git) went from report to resolution on a major issue, discussing - from my view - what worked, what didn't and what open source projects could do in the future to improve the situation around responsible disclosure of severe bugs.
For More Information Please Visit:- http://crikeycon.com/
Tags:
Disclaimer: We are a infosec video aggregator and this video is linked from an external website. The original author may be different from the user re-posting/linking it here. Please do not assume the authors to be same without verifying.