Comment Re:Submit details! (Score 0) 250
For everyone whinging that they shouldn't have disclosed this to the Chinese government, they didn't!
In fact, they only reported the denial of service (DoS) issue to CERT, who passed it on to CERT-CN. This is the proper and expected behaviour for security researchers.
They did NOT report the observation that discarding resets made the firewall ineffective. The only way that the Chinese government can find out about that is by reading sites like Slashdot.
Reference: http://www.lightbluetouchpaper.org/2006/06/27/igno ring-the-great-firewall-of-china/, Comment #30.
In fact, they only reported the denial of service (DoS) issue to CERT, who passed it on to CERT-CN. This is the proper and expected behaviour for security researchers.
They did NOT report the observation that discarding resets made the firewall ineffective. The only way that the Chinese government can find out about that is by reading sites like Slashdot.
Reference: http://www.lightbluetouchpaper.org/2006/06/27/ign
