| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <043201c93a6a$d61b5d59$970a0a0a@gm.lan> Date: Thu, 30 Oct 2008 08:37:48 +0000 From: "Cassidy MacFarlane" <Cassidy.MacFarlane@...ntmanagement.co.uk> To: "Shawn Merdinger" <shawnmer@...il.com>, <full-disclosure@...ts.grok.org.uk> Cc: paul@...l-robinson.us Subject: Re: "Poison-pill auto-disclosure for securityvulnerabilities" by Paul Robinson Yup, interesting indeed. i would have more likely called this a ' Dead Mans Switch' disclosure. It is likely that there is existing DMS software that could be relatively easily adapted for this purpose. Thanks for referencing this journal, btw...hadn't come across it before. -----Original Message----- From: Shawn Merdinger <shawnmer@...il.com> Sent: 30 October 2008 02:49 To: full-disclosure@...ts.grok.org.uk <full-disclosure@...ts.grok.org.uk> Cc: paul@...l-robinson.us <paul@...l-robinson.us> Subject: [Full-disclosure] "Poison-pill auto-disclosure for securityvulnerabilities" by Paul Robinson fyi, an interesting email to Risks Digest 25.43: http://catless.ncl.ac.uk/Risks/25.43.html ............................ Date: Mon, 27 Oct 2008 02:15:20 -0700 (PDT) From: Paul Robinson <paul@...l-robinson.us> Subject: Poison-pill auto-disclosure for security vulnerabilities I have thought of something regarding researchers who have made security discoveries, and I thought of a way in which they might legally develop, in effect, a 'poison pill' to those who would want to silence them. I'm not a lawyer and I don't know all of the exact requirements but I thought of an interesting way to cause "blowback" on those who try to browbeat others into silence. ......<snipped>...... --scm _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ As an ARLA registered agent, we work to the highest industry standards. If you know someone who needs a property management company, please tell them to talk to us. We'd be delighted to help. _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Powered by blists - more mailing lists