| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
From: GKornblum at guesswho.com (Gregory Kornblum) Subject: The info-sec circle of life... Whitehat finds hole... Whitehat reports hole to vendor and public... A ratio of 10 script kiddies to every 1 sysadmin learns about the vuln./exploit... Whitehat has now created a perfect scenario to sell you an IDS... Net as a whole suffers from the imbalance of power... An Alternative: Blackhat codes an exploit... Blackhat tarballs it and throws it in his home directory somewhere while off to the next... Blackhat now has instilled fear in the consumers/corporations... As we all know no network is 100% secure. So why let the world know something that only a few gifted people should? Maybe the term "Quality Assurance" should include security and let the vendors worry about it themselves. But why do that when they can throw pennies at the info-sec industry to create the havoc we have now. I see project mayhem as the nets savior, not disaster. I am sure none of this means sh*t to the people that are slobbing investor knobs. However things will change and maybe if you would pick your head up from the constant bobbing up and down you would see that. Don't be afraid the hate the info-sec industry for what they are. Don't be afraid to do your best to stop this insanity. That is not illegal in society. Look the free love hippy sh*t is over. Keep it to yourself and make others do the same anyway you know how. That is what it means to be a protector of the way it should be. A blackhat as you would like to call it. Regards! Gregory Kornblum Software Engineer greg@...sswho.com
Powered by blists - more mailing lists