| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <01a801c6ae91$cc82c150$0400a8c0@pc4> Date: Sun, 23 Jul 2006 22:54:24 +0300 From: "Valery Marchuk" <tecklord@...ocom.cv.ua> To: <full-disclosure@...ts.grok.org.uk> Cc: bugtraq@...urityfocus.com Subject: Re: To XSS or not? Separating just XSS vulns from others is not an option. It would make more sense to create a separate mailing list for vulnerabilities in Web applications. > Major ones could still be reported on the other lists. If kiddies discover them, then how should they know that the vulnerability they`ve found is not a major one? They`ve desided to publish a vuln to the list, because it seems to be important to them :) ----- Original Message ----- From: "Aaron Gray" <angray@...b.net> To: <full-disclosure@...ts.grok.org.uk> Cc: <bugtraq@...urityfocus.com> Sent: Sunday, July 23, 2006 9:04 PM Subject: Re: [Full-disclosure] To XSS or not? > Major ones could still be reported on the other lists. > > Aaron > >> something like xsstraq powered on securityfocus should be cleaner yep :) >> >>> Maybe there should be a special XSS list that could specialize in that >>> area ? > > _______________________________________________ > Full-Disclosure - We believe in it. > Charter: http://lists.grok.org.uk/full-disclosure-charter.html > Hosted and sponsored by Secunia - http://secunia.com/ _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Powered by blists - more mailing lists