| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
From: nodialtone at comcast.net (Byron Copeland) Subject: THCIISSLame exploit On Thu, 2004-04-22 at 22:25, Oliver.C.Rochford wrote: > On Fri, 23 Apr 2004, Elver Loho wrote: > > Sorry, my bad, for the most part I was referring to the original flame > from Feher Tamas. > > Your Points are totally valid, I should have added the text from feher, > but as I'm replying I might as well say my $0.5 ;) > For fear of being moderated.... --- snip --- Well, ethically, your right. Discovered flaws should be reported to vendors and the vendors should evaluate that and respond in a TIMELY manner. For the most of them, they in fact do. Some give a rats ass, some say your full of it. What is your lose patience point? When these vendors just blow you off? This is supposed to be a FULL DISCLOSURE list, right? What do you want? You tired of fixing your busted ass computers? Tell the vendor yourself then. Guess what your witnessing right now? Truthfully, there hasn't been a whole lot of any 0day stuff posted here in a long time. And your complaining. How nice it would be to analyze the works of people that are dedicated to finding the thousands? millions? of flaws that haven't even been discovered yet. So, my guess is this, live subterranean a bit now and then and you may find your way outside the box. no flame, just sayin' -b -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: This is a digitally signed message part Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20040422/174a7f28/attachment.bin
Powered by blists - more mailing lists