Both the l0pht and
Microsoft are the only two groups no longer allowed to post to
BugTraq with updates and vulnerabilities because they give little
information in their post and reference their pages instead.
It is considered bad form in the
security world to drag people out to your
website in the name of "disclosure", and both of those organizations are
guilty of such, even if the l0pht has produced some great things, such as the l0phtCrack.