lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [thread-next>] [day] [month] [year] [list]
Message-ID: <5f4333a90710141031r36b3843w2c5cfdb49d8770b0@mail.gmail.com>
Date: Sun, 14 Oct 2007 12:31:26 -0500
From: phioust <phioust@...il.com>
To: full-disclosure@...ts.grok.org.uk
Subject: Re: full-disclosure@...hmail.com

I believe this discussion is about people who have real skills ( which is
why you are confused ).. not "o so I couldn't finish my CS degree or
function outside of computers so now I am doing XSS for a living" .... If
XSS is the extent of your knowledge then I guess it will get food on your
table but I think you should switch to this:
http://www.securityfocus.com/archive/105 mailing list.

and btw:
needing someone to visit a webpage so you can xsrf isnt exactly military
grade 0day nor is it stealthy ( not that you would know anything about
stealthy exploits)  but i guess people jumped on it so much so that their
cissp capable minds wouldn't be confused by sql injection [1].

I also do not know why you assume someone that doesnt consider lame XSS as
an 'exploit' could not work professionally. Maybe you just have no skill and
thats all your job requires of you?

[1]  http://seclists.org/dailydave/2007/q4/0016.html


On 10/14/07, pdp (architect) <pdp.gnucitizen@...glemail.com> wrote:
>
> I really don't know what you refer to as an exploit.. :)  and more
> over, it is obvious that you have a lack of knowledge on what's more
> valuable nowadays. don't take it personal.
>
> do you work professionally?
>
>

Content of type "text/html" skipped

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ