lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [day] [month] [year] [list]
Message-ID: <1082692295.26808.48.camel@Stargate>
From: nodialtone at comcast.net (Byron Copeland)
Subject: THCIISSLame exploit

On Thu, 2004-04-22 at 22:25, Oliver.C.Rochford wrote:
> On Fri, 23 Apr 2004, Elver Loho wrote:
> 
> Sorry, my bad, for the most part I was referring to the original flame
> from Feher Tamas.
> 
> Your Points are totally valid, I should have added the text from feher,
> but as I'm replying I might as well say my $0.5 ;)
> 
 For fear of being moderated....

--- snip ---

Well, ethically, your right.  Discovered flaws should be reported to
vendors and the vendors should evaluate that and respond in a TIMELY
manner. For the most of them, they in fact do.  Some give a rats ass,
some say your full of it.

What is your lose patience point?  When these vendors just blow you off?

This is supposed to be a FULL DISCLOSURE list, right?  What do you
want?  You tired of fixing your busted ass computers?  Tell the vendor
yourself then.


Guess what your witnessing right now?

Truthfully, there hasn't been a whole lot of any 0day stuff posted here
in a long time.  And your complaining.  How nice it would be to analyze
the works of people that are dedicated to finding the thousands?
millions? of flaws that haven't even been discovered yet.

So, my guess is this, live subterranean a bit now and then and you may
find your way outside the box.

no flame, just sayin'

-b

-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20040422/174a7f28/attachment.bin

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ