| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Fri, 11 Sep 2009 19:31:21 -0500 From: "Lincoln Anderson" <ayblinkin@...il.com> To: "'mrx'" <mrx@...pergander.org.uk>, <full-disclosure@...ts.grok.org.uk> Subject: Re: Plain Text Password Disclosure vulnerability in rediff mail If you spit on it in just the right spot, you will have created a brick-wall - an oft underappreciated network device that both livens the décor of any datacenter and obviates the need for most security practices. -----Original Message----- From: full-disclosure-bounces@...ts.grok.org.uk [mailto:full-disclosure-bounces@...ts.grok.org.uk] On Behalf Of mrx Sent: Friday, September 11, 2009 6:58 PM To: full-disclosure@...ts.grok.org.uk Subject: Re: [Full-disclosure] Plain Text Password Disclosure vulnerability in rediff mail Rohit Patnaik wrote: > full-censorship@...hmail.com wrote: > >> On Fri, 11 Sep 2009 22:27:41 +0100 Valdis.Kletnieks@...edu wrote: >> >> >>> On Fri, 11 Sep 2009 21:49:00 BST, you said: >>> >>> >>> >>>> would one not rather hire someone *not* well-known and *doesn't* >>>> >>>> get owned? >>>> >>>> >>> Feel free to hire that guy flipping burgers at McD's to do your >>> security >>> assessment. >>> >>> >> the burger flipper would be the obvious choice, young and eager to >> learn. >> _______________________________________________ >> Full-Disclosure - We believe in it. >> Charter: http://lists.grok.org.uk/full-disclosure-charter.html >> Hosted and sponsored by Secunia - http://secunia.com/ >> >> > The choice is obvious only as long as you ignore the fact that eager to > learn also means eager to make mistakes. After all, isn't trying (and > failing) the most effective method of learning? > > --Rohit Patnaik > But how does spitting on a router help to secure it? _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Powered by blists - more mailing lists