lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Message-ID: <00d701c6b236$b2d63a40$6501a8c0@infosysec>
Date: Fri, 28 Jul 2006 07:12:22 -0400
From: "Curt Purdy" <purdy@...man.com>
To: <Valdis.Kletnieks@...edu>,
	"'n3td3v'" <xploitable@...il.com>
Cc: 'n3td3v' <n3td3v@...glegroups.com>, full-disclosure@...ts.grok.org.uk
Subject: RE: [lists] Re: F-Secure to release XSS "potential
	dangers"


Valdis.Kletnieks@...edu wrote:
> >n3td3v said:
> >
> > This is highly irresponsible of F-Secure and they should be held
> > legally responsible if the information they release in relation to
> > their "Netscape hacked" blog entry is used maliciously.
> 
> You might want to review what you've posted to lists 
> regarding vulnerabilities,
> and ask yourself - if F-Secure gets held to some legal 
> standard of liability.
> where do you end up yourself?
> 
> I don't know who's going to end up the test case/poster child 
> for vulnerability
> liability - but it's much more likely to be an individual 
> that posts to
> this list and can't afford a lawyer than a corporation with 
> deep pockets
> like F-Secure....

:) n3td3v's mouth is going to get her in trouble one of these days.

Curt Purdy CISSP, GSNA, GSEC, CNE, MCSE+I, CCDA 
Information Security Officer 
Information Systems Security
infosysec.net
443.846.4231

-------------

If you spend more on coffee than on IT security, you will be hacked. 
What's more, you deserve to be hacked. 
-- former White House cybersecurity czar Richard Clarke 

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ