lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Message-ID: <001101c3521d$67a85480$0100a8c0@ark>
From: rikul at bellsouth.net (Rick patel)
Subject: morning_wood should stop posting xss

Vendor Fix:
-----------
No fix on 0day ( aww.. shucks )


morning_wood do you know how to fix these 0day security holes??? I think
my site has this problem and I'd like to get it (apache) patched as soon
as possible. And also are you planning on selling tools in future to
find XSS holes?? 

TIA!


-----Original Message-----
From: full-disclosure-admin@...ts.netsys.com
[mailto:full-disclosure-admin@...ts.netsys.com] On Behalf Of Jennifer
Bradley
Sent: Thursday, July 24, 2003 11:48 AM
To: full-disclosure@...ts.netsys.com
Subject: Re: Re: [Full-Disclosure] morning_wood should stop posting xss


The whole point, you moron, is that you are trying to gain credibility
as a security researcher.  If your own web site has a so-called XSS
security hole that you love to post about, then you look like an idiot.
People, glass houses, stones, yada yada.

On Thu, 24 Jul 2003 03:35:47 -0700 morning_wood
(se_cur_ity@...mail.com) wrote:

 my site is my site, why are you telling me to "fix" it? I knew it's 404
has xss before any of you did. Whats the big deal what my site has or
hasnt... hmm? If you dont like my stuff, dont read it, my name is on
every one of my posts.. every hear of filter? I dont read several
advisories here based on title alone.. am i missing out? mby, mby not..
are you? XSS is a seecurity issue plain and simple, and "my site" can
have or have not whatever i please, i suggest not visiting then, hell ..
why are you even bothering to visit if you dont like.. "all you do is
lame xss" ???  a job... ROFL  stfu  .. mmmmkay

morning_wood

  ----- Original Message -----
  From: Faulty
  To: full-disclosure@...ts.netsys.com
  Sent: Thursday, July 24, 2003 2:30 AM
  Subject: [Full-Disclosure] morning_wood should stop posting xss vulns
in sites and fix his own site.


  morning_wood what is it with you and xss no one cares. Don't you think
you shoudl fix your own xss vulns in your site
http://lists.netsys.com/pipermail/full-disclosure/2003-July/011565.htm
l
  before you accuse other people of being dumb for having the vulns.
Mabee you want to fix your site but you can't ? cuz you have no skillz
  here is a tip - GIVE UP GET A JOB AT BURGER KING.


----------------------------------------------------------------------
--------
  Want to chat instantly with your online friends? Get the FREE Yahoo!
Messenger


_______________________________________________________________________
LOOK GOOD, FEEL GOOD - WWW.HEALTHIEST.CO.ZA

Cool Connection, Cool Price, Internet Access for R59 monthly @ WebMail
http://www.webmail.co.za/dialup/
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html


Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ