lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list] 
Message-ID: <3F32AA29.1030303@guninski.com>
From: guninski at guninski.com (Georgi Guninski)
Subject: Vulnerability Disclosure Debate

Florian Weimer wrote:
> The free software camp has adopted the responsible disclosure process
> while Microsoft still was struggling with significant security issues

Unless you can prove this, I consider this pure FUD.
 From personal experience with losers like m$ and on the other hand open source 
camp, your statement is completely wrong.
Personally don't see any open source in the OIS crap.

> 
> ..., but the days of full
> disclosure are over.

lol.
This is pure FUD.
Full disclosure is alive and well, no matter what you think.
Virus writing is illegal, but are virii dead?
If full disclosure becomes "obfuscated", people like you will have troubles 
reconstructing exploits from sniffer logs - just check the only exploit which m$ 
fixed soon.

georgi

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ