lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite for Android: free password hash cracker in your pocket
[<prev] [next>] [thread-next>] [day] [month] [year] [list]
Message-ID: <4b6ee9310811291017r5d641efdx4dc5b375fa43721e@mail.gmail.com>
Date: Sat, 29 Nov 2008 18:17:22 +0000
From: andrew.wallace <andrew.wallace@...ketmail.com>
To: full-disclosure@...ts.grok.org.uk
Subject: Security industry software license

I think we should push for this so that attack platforms that are
designed for penetration testers aren't used by the bad guys. I've
already outlined the details, but the government can scrap that and
work out their own details to how the scheme should work. Although I
have no doubt in my mind we can't let the bad guys continue to use
attack platforms that are designed for the security professional
community.

If HD Moore is serious that his attack platform isn't for the bad guys
he would support this scheme, but of course his motivations are always
questionable.

The Department of Homeland Security were going to build a 45 foot
border fence, as Bruce Schneier
http://www.schneier.com/blog/archives/2008/11/new_dhs_head_un.html
points out is a complete waste of money. Now what the DHS need to do
if they want to counter hackers and cyber terrorism is to focus on
worth while things like developing a security industry software
license scheme that vets everybody using software and gets better
regulation into the industry.

This is the way ahead,

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ