lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [day] [month] [year] [list] 
Date: Sat, 17 May 2008 12:34:57 +0100
From: Skratz0r <roryflyguy@...glemail.com>
To: full-disclosure@...ts.grok.org.uk
Subject:  Re: Thank you n3td3v

Edited for those of us who can read normal text better
than leet speak.

> First off, thanks for reporting the forwarding message
> vulnerability in Google groups(*) to the Full Disclosure
> mailing list. You are quite popular and well received on
> this list, so I'm sure you have just earned the respect
> and adulation of tens, nay, ones of people who wish they
> were so lucky to be as talented at finding vulnerabilities
> in Google groups as you.
>
> Most people will ask themselves, "How the fuck is this
> an "obviously critical" security issue and why does this
> guy who was born with a rather unfortunate physical
> disposition keep spamming fd with senseless garbage that
> does not adhere to the list charter?"
>
> The next question people will ask themselves is, "If this
> kid hates security researchers and the security community
> so much, why does this conglomeration of ugly-cells post
> "critical security issues" to the same mailing list he
> condemns other researchers on?"
>
> I must say, i've asked these same questions myself. But
> I remind myself that the really important security
> researchers such as yourself often only disclose the
> unimportant "obviously critical" vulnerabilities here,
> while reporting the "obviously super duper ultra mega
> threatcon 2 holy-shit-the-whole-internet-will-be-owned"
> issues to the vendor only, giving them ample time to patch
> and coordinate public disclosure.
>
> Let this serve as a reminder to all the haters of the NDQ
> that it's because of his pioneering method of evading bans
> on Google groups (which is so stupid even he isn't sure how
> to reproduce it) and his 4,000+ deep Google group of spambots,
> intelligence officials, and daily jokemail subscribers that
> we can all sleep a little better at night.
>

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ