lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite for Android: free password hash cracker in your pocket
[<prev] [next>] [day] [month] [year] [list] 
Date: Fri, 23 Nov 2007 15:36:34 -0500
From: <whupass@...hmail.com>
To: <full-disclosure@...ts.grok.org.uk>
Subject: Google Sacure V2.0 -- Sacure Corporation

Dear Sacure Corporation, Todd Michael Cohan and FD:

This will be my last email, its getting boring, but I figured that 
I'd give Sacure the chance to clear the air. 

I've done a bit of research on the Sacure Corporation (Google) and 
decided that instead of "bashing" Sacure I'd just ask them some 
direct questions in public forum. And now, without further ado here 
are my     questions for Sacure (cc'd on this email):

1-) Why was your first customer portal a fake portal?

    Proof: (taken from Sacure's old portal)

    <input type="submit" name="Submit" value="Login"
    onClick="alert('Access Denied!')";/>

2-) Why has your second (current) customer portal been broken since
    August of 2007 (according to Google's cache)? (Or, you can just 
    try to login to your customer portal as many of us have, we all
    get the same SQL error.)

3-) Question 2 makes us wonder, do you have any customers that use 
your 
    Managed Security Services? If so, how can you afford to have 
your 
    portal broken for so long? 

4-) How can you be a "leader" if your customers can't even login to 
the
    portal? Aren't you lying to your customers?

Thank you for your time. You must be very busy doing important 
security stuff like Penetration Tests with Cross Site Shipping 
attacks. 






--
Save on Cell Phones. Click Now!
http://tagline.hushmail.com/fc/Ioyw6h4eWoRO1Fa9res5x6fp5rrDp3dp623oyg5ttAY3ULY6TLr0Gc/

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ