| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Thu, 1 Jul 2004 11:25:25 -0700 From: "Drew Copley" <dcopley@...e.com> To: "Robin Landis" <rebl@...ramail.com> Cc: <bugtraq@...urityfocus.com>, <full-disclosure@...ts.netsys.com>, <ntbugtraq@...tserv.ntbugtraq.com> Subject: RE: > -----Original Message----- > From: Robin Landis [mailto:rebl@...ramail.com] > Sent: Thursday, July 01, 2004 11:26 AM > To: Drew Copley > Cc: bugtraq@...urityfocus.com; > full-disclosure@...ts.netsys.com; ntbugtraq@...tserv.ntbugtraq.com > Subject: > > -> The very same people are finding these big bugs. It is not > like there are a whole ton of unexperienced people finding > these bugs. These are the best. They are experts at finding > them. They may not always be cognizant of this themselves, > the act of finding them may not seem difficult to them, but > it is -- and this is clearly shown by the fact that the same > people keep finding these bugs. > > I contend that the fact that the very same people are > reporting bugs does not mean that they are the only ones > finding them. Nor does it mean that only an expert might > find them. Nor does it mean that all experts would be > inclined to report them. Great. Based on what evidence. _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
Powered by blists - more mailing lists