>>The IIS issue may be a great point, but VFP ain't IIS and there are no CodeRed-like worries with VFP!
>
>Why not? There are times when security risks in VFP itself can be threatening, or security risks exclusive to my product can be threatening, in both cases, I think that Full Disclosure would be as bad as it is with IIS.

We obviously disagree.

I cite again that full disclosure (at least it sure sounded/looked like it, but how can a user ever know for sure) was the standard at Fox Software. The list of problems was miles long yet, despite that (and I maintain BECAUSE of that) people continued to buy FP in droves and droves.

It should never be considered a problem to be upfront with your customers and potential customers. My opinion is that to use any excuse to do otherwise is simply a cop-out, likely covering up other deficiencies.

Jim