lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [thread-next>] [day] [month] [year] [list]
Message-ID: <200310251718.h9PHI2Tt076026@mailserver3.hushmail.com>
From: dhtml at hush.com (dhtml@...h.com)
Subject: PIVX - GLAMOR PUSSES DE LUXE

While it is certainly everyone's God given right to eek out a living
form the insecurities of software, we must still point out the obvious
to those that will do this eeking. PivX or is it PiVx or is it pIvX.
Simply too confusing, has suddenly become the darling of the responsible
disclosure process no doubt as the filthy lucre of Microsoft wafts gently
across the stream

Uno\ there is no scurity confirmation on the new mailing list created
by pivx. We have subscribed everyone on this list to their new security
update and self-promotion mailing list. And you don't even know it.

Dos\ there is no way to unsubscribe from the new mailing list created
by pivx. How the blazes can one not receive this self-promotional drivel
at this time

Tres\ html or plaintext selection for the the new mailing list created
by pivx has no effect. The self-promotional material arrives as insidious
html 

Cuatro\ "About 1 in 10 potential vulnerabilities submitted to PivX for
review actually passed the test for suitable posting on the `Unpatched'
page" This is false. No one "submits" anything to pivx, rather they culled
the vulnerabilities from various security mailing lists. A little bit
too high and mighty to suggest that people are submitting these to them.

Cinco\ this two cent application Qwik Fix is nothing more than GUI for
what can be done manually through registry settings by script or reg
files. Hardly the complicated Security Programming Device that it is
advertised to be

Becareful of the Benjamin's kids, too much fluff and not enough flavor
will come back to haunt you.





Nota Bena\ let us see how Quick the Fix for 1,2 and 3 will be


*/*



Concerned about your privacy? Follow this link to get
FREE encrypted email: https://www.hushmail.com/?l=2

Free, ultra-private instant messaging with Hush Messenger
https://www.hushmail.com/services.php?subloc=messenger&l=434

Promote security and make money with the Hushmail Affiliate Program: 
https://www.hushmail.com/about.php?subloc=affiliate&l=427


Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ