| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <6158bb410811061744qe0d743cs5baeea649471bf40@mail.gmail.com> Date: Thu, 6 Nov 2008 20:44:07 -0500 From: Ureleet <ureleet@...il.com> To: n3td3v <xploitable@...il.com> Cc: full-disclosure@...ts.grok.org.uk Subject: Re: Two bulletins from Microsoft on Patch Tuesday first off, u arent going to get any1 2 change anything. so, lets get that out of the way right there. second of all, in order for u 2 prove ur point, id like 4 u to go to some research of how many exploits have come out during the 5 day period between vague-ass disclosure and patch publish. then compare and contrast that against how many exploits have come out in the 24 hours following the patch publish after people have had a chance to do bindiffs (u know what that means right white-hat?) against the patches. then, take all that data, draw some charts and graphs, write a whitepaper, and present it somewhere. u know what thats called? research. real ppl do it. u dont. and that is why, u suck. ta ta. On Thu, Nov 6, 2008 at 8:34 PM, n3td3v <xploitable@...il.com> wrote: > so you don't think its logical that these 5 day heads up could be > helping the bad guys out? right. i think the world's biggest hackers > could do a lot of research in 5 days. but then again n3td3v isn't > logical so i must be wrong. damn those drugs eh? i just asked what the > realistic possibility was for a 5 day turn around from the day of the > heads up until a patch is released. i just thought it was bad that we > were giving the bad guys a 5 day head start, but never mind n3td3v > isn't logical so i must be wrong. scraping the 5 day head start isn't > a good idea because n3td3v isn't logical? right, i threw away 10 years > of my life to not be logical... > > On Fri, Nov 7, 2008 at 1:20 AM, waveroad waveroad <waveroad@...il.com> wrote: >> >> You can be ""monitoring"" the scene since 20 years if you want to, it's not >> for that your point will be valuable. >> And actually it is not, also this is about logic. >> >> See you're wrong again. >> >> Get the fuck out of here. >> >> >> >> >> >> >> >> >> 2008/11/6, n3td3v <xploitable@...il.com>: >>> >>> i've been monitoring the scene since 1999 so what do you mean no >>> experience? i make that about 10 years experience if my math is >>> correct. >>> >>> >>> On Fri, Nov 7, 2008 at 12:48 AM, Biz Marqee <biz.marqee@...il.com> wrote: >>> > Do you even understand why people dont like you? It is because you have >>> > all >>> > these crackpot ideas but no experience to back it up. All your ideas >>> > only >>> > make sense from a theoretical standpoint, but in practicality most will >>> > fail. >>> > >>> >>> > On Fri, Nov 7, 2008 at 11:31 AM, n3td3v <xploitable@...il.com> wrote: >>> >> >>> >> blackhats like you will always hate on me, so i just ignore the >>> >> negative responses i get. >>> > >>> >>> >>> _______________________________________________ >>> Full-Disclosure - We believe in it. >>> Charter: http://lists.grok.org.uk/full-disclosure-charter.html >>> Hosted and sponsored by Secunia - http://secunia.com/ >> >> >> _______________________________________________ >> Full-Disclosure - We believe in it. >> Charter: http://lists.grok.org.uk/full-disclosure-charter.html >> Hosted and sponsored by Secunia - http://secunia.com/ >> > > _______________________________________________ > Full-Disclosure - We believe in it. > Charter: http://lists.grok.org.uk/full-disclosure-charter.html > Hosted and sponsored by Secunia - http://secunia.com/ > _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Powered by blists - more mailing lists