lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [thread-next>] [day] [month] [year] [list] 
Message-ID: <200603282104.k2SL4Nm7054070@mailserver2.hushmail.com>
Date: Tue Mar 28 22:04:35 2006
From: bart.lansing at hushmail.com (bart.lansing@...hmail.com)
Subject: Security Alert: Unofficial IE patches appear on
	internet

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Opinion on actual topic forthcoming:

As someone not hiding behind a pseudo-leet handle, who actually
does get to deal with ramifications of Microsoft's (and others, of
course) patch policies,  I heartily endorse the release of the eEye
patch as beneficial and as a patch that will be in the hands of
large numbers of users outside the infosec community in short
order.  In fact, it already is.  The Washington Post,
ComputerWorld, ZDNet, Business Wire, The Register, and a host of
others are all publicing its existence...kudos to them.

n3td3v, whoever you are, you have been little more than a source of
occasionally amusing noise on this list.  However, when you attempt
to put yourself into a position where some poor unsuspecting IT sot
might  actually listen to what you have to say and impact real
people doing real business...well, maybe you need to rethink your
need for self-gratification and this hopeless quest for recognition
from anyone who in fact 'does' have a clue or a legitimate place on
this list.  Try, if you can, to weigh the needs of your obviously
undernourished ego with the real needs of people who might
accidently follow some of your advice.



On Tue, 28 Mar 2006 14:45:18 -0600 n3td3v <n3td3v@...il.com> wrote:
>No security alert? Unofficial patches is very much a security
>alert. You say
>i'm not adding anything to the list, but what are *you* adding,
>apart from
>off-topic bitch remarks about thread authors. When you have the
>confidence
>to post your opinion on the actual topic, then i'll be glad to
>hear from
>you.
>
>
>
>On 3/28/06, Micheal Espinola Jr <michealespinola@...il.com> wrote:
>>
>> Patch Tuesday = Good before third party patches appear
>> Third party patch = Evil
>> Patch Tuesday = Bad for everyone after third party patches
>appear,
>> even Microsoft...
>>
>> Ahh, but you forgot one:
>>
>> n3td3v = Annoying.  Posting as an individual or as a "group"...
>>
>> Your "security alert" has offered nothing in terms of Full
>Disclosure
>> or any actual security alert.  You'd be better served to send
>your
>> "opinion" to the Patch Management list.
>>
>> _______________________________________________
>> Full-Disclosure - We believe in it.
>> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
>> Hosted and sponsored by Secunia - http://secunia.com/
>>
-----BEGIN PGP SIGNATURE-----
Note: This signature can be verified at https://www.hushtools.com/verify
Version: Hush 2.5

wkYEARECAAYFAkQppNYACgkQuCj5fjTzkbAjXgCfVUkFQ6Gc5W5TG3Mz5gfU47cbB9IA
oL30dCyCafI4Cx8S6NFJDXqUnoy9
=7hC9
-----END PGP SIGNATURE-----

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ