| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Thu, 07 Jan 2010 10:51:14 -0500 From: Cody Robertson <cody@...khost.com> To: full-disclosure@...ts.grok.org.uk Subject: Re: iiscan -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On 1/7/10 10:18 AM, auto454357@...hmail.com wrote: > So let me see if I got this the right way. > > You guys are allowing an unknown company to scan for your webapps, > being those apps business critical or not. On top of that, the > unknown company is based on a country where government supports > acts of electronic espionage against other nations, mainly those > where you guys are based. > > Is this correct? or am I missing something? > > _______________________________________________ > Full-Disclosure - We believe in it. > Charter: http://lists.grok.org.uk/full-disclosure-charter.html > Hosted and sponsored by Secunia - http://secunia.com/ Call me cynical but unless you're trying to scan something that's supposed to be private it's wide open anyway - who cares if you send them a URL? They're fully capable of scraping URL's - having someone simply submit it isn't really going to benefit them much. You forgot the tin foil hat. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (Darwin) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iEYEARECAAYFAktGAvEACgkQAr2PPaFwRuqJ5QCfTtsJRPVHSKNalzpUhWx6jMa0 pfkAoIam1UAIaQdfOBgC2krstU71icVm =r8G7 -----END PGP SIGNATURE----- _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Powered by blists - more mailing lists