lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Message-ID: <Pine.SGI.4.44.0208230719450.15081-100000@hexeris>
From: aliver at xexil.com (aliver@...il.com)
Subject: HP Full Disclosure Story

On Fri, 23 Aug 2002, Tamer Sahin wrote:
> vulnerability affected 8 different swicth models. There had been an
> interesting mail traffic between HP Security Response Team and me.

	Thanks a ton Tamer for sharing this! I think it's exactly the kind
of thing that the "security community" needs to see. This response is the
type of thing that I believe we will see more and more of. Things like the
DCMA, Wassanar, and the corporate view of "free" (as in if you pay for it)
speech. Funny (not) how guys like this HP goon that threatened you love to
invoke the specter of the September 11 tragedy, and make "terrorist"
insinuations. It was also amusing how this guy acted like they'd take
their sweet time and do as they damn well pleased until you released your
advisory, then promptly released their own. I just hope they don't sue
you.

aliver


Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ