[<prev] [next>] [<thread-prev] [day] [month] [year] [list]
Message-ID: <CAG5DJwepfsstBqj0HdbVd9k+wrPOX=Mmpe4iqWXkSz2JvDa+3A@mail.gmail.com>
Date: Sun, 18 Mar 2012 12:23:36 -0700
From: "Zach C." <fxchip@...il.com>
To: noloader@...il.com
Cc: full-disclosure@...ts.grok.org.uk
Subject: Re: Earth to Facebook
Could he not use a trusted intermediary though? That is, find someone to
report the issue who can be entangled by ToS, will take screenshots, etc.
I suppose the biggest problem of this would be the trust part, though. :)
On Mar 18, 2012 9:14 AM, "Jeffrey Walton" <noloader@...il.com> wrote:
> On Sun, Mar 18, 2012 at 8:57 AM, Ferenc Kovacs <tyra3l@...il.com> wrote:
> > https://www.facebook.com/whitehat/report/ ?
> Its encumbered by Terms of Service. Its better to find an email
> address so that (1) you are not bound by legal entanglements, and (2)
> you have a written record of the correspondence.
>
> I'd try RFC 2142 (MAILBOX NAMES FORvCOMMON SERVICES, ROLES AND
> FUNCTIONS, http://www.ietf.org/rfc/rfc2142.txt). secure@...ebook.com
> and securty@...ebook.com.
>
> Jeff
>
> > On Thu, Mar 15, 2012 at 4:37 PM, J. Oquendo <sil@...iltrated.net> wrote:
> >>
> >> Earth calling Facebook security engineers, earth calling Facebook
> security
> >> engineers. Tried reaching out to you guys about a vulnerability a good
> >> friend discovered. No one should have to hunt you guys down in an
> effort to
> >> assist you with security flaws.
> >>
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/
Content of type "text/html" skipped
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
Powered by blists - more mailing lists