lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Message-ID: <e172cd090711091111r7ee3ae5ew8ab9d06b687bf3ff@mail.gmail.com>
Date: Fri, 9 Nov 2007 13:11:24 -0600
From: "John C. A. Bambenek, CISSP" <bambenek.infosec@...il.com>
Cc: full-disclosure@...ts.grok.org.uk
Subject: Re: Why I hate you (and a philanthropic
	challenge!)

I'll be more than happy to volunteer my charity to receive funds. :)
(Helps AIDS orphans in Tanzania get an education and otherwise
supports schools there).

j

On Nov 9, 2007 12:50 PM, don bailey <don.bailey@...il.com> wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> Dear jackasses,
>
>         I really think you should stop saying you have "zero day"
> to sell on Full Disclosure. Mostly because no-one really gives a
> shit. Also, no-one is really interested in paying for your horrible
> code. It looks worse than initd.sh. Seriously. My code sucks, but
> yours is far worse. Please stop wasting our time caring what you
> think.
>
>         On to my idea!
>
>         I think the next 7 (I'm being very optimistic here) zero
> day bugs should be "bought" by people giving money to charity
> organizations! We don't see enough selflessness in computer
> security, so stop being a dick: help save stuff that's important.
>
>         So, here's how it should work. Post your zero day up
> on full disclosure. Yes, actually disclose it. Post what
> charity you are releasing the zero day for. Then, we as a
> public, will PayPal that charity (no, it can't be the Save
> SnoSoft and Netragard Fund) some monies. Wouldn't that be
> nice? We can help the EFF, battle illegal pornography or
> even support your favorite politician! Doesn't sound bad,
> does it?
>
> I will personally promise to donate up to 300$ (total, I'm not
> rich) to said charities assuming that they are legal and such.
>
> NOW GET TO WORK AND DROP SOME ZERO DAY
> NO, XSS DOES NOT COUNT
>
> Donb
>
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v1.4.6 (GNU/Linux)
>
> iD8DBQFHNKwDyWX0NBMJYAcRAjKAAJ0TGa4nMIKxkzn0L8abxrr6hrrueQCfUkti
> hul0/vIOYofT4TGBMxtBJ3o=
> =T42x
> -----END PGP SIGNATURE-----
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/
>

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ