So the new P0 policy is to disclose details only after 90 days even if vendor releases the patch after 20 days. That means people will wait for 70 days before patching because nobody tells them what the bug exactly is and if it is really worth patching 
-
-
So maybe reformulating, the claim is not that things will go slower, but that some exceptional things won't go faster? That's a substantially different, less boisterous one, that I can grok better but also seems less impactful?
-
No, the problem is patching is disruptive. Knowing why you're being disrupted and being able to understand and reason about the risks allows you to make better decisions.
- 4 more replies
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.
