[unisog] Security Verbage for Bids or Request for Purchase

Harry Hoffman hhoffman at ip-solutions.net
Thu Apr 14 19:55:24 GMT 2005


so, you're a non-MS shop then ;-)

marchany at vt.edu wrote:
> We've had a clause in our software purchasing contracts that requires the 
> vendor to certify their software isn't vulnerable to the SANS/FBI Top 20 
> Vulnerabilities. It's been in place since 2002 and we've only had 3 vendors 
> balk since then. I've attached a screenshot of an example.
> 
> 	-r.
> 
> 
> ------------------------------------------------------------------------
> 
> 
> ------------------------------------------------------------------------
> 
> _______________________________________________
> unisog mailing list
> unisog at lists.sans.org
> http://www.dshield.org/mailman/listinfo/unisog


More information about the unisog mailing list