lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [day] [month] [year] [list] 
Message-ID: <1363900681.88525.YahooMailNeo@web171703.mail.ir2.yahoo.com>
Date: Thu, 21 Mar 2013 21:18:01 +0000 (GMT)
From: Hurgel Bumpf <l0rd_lunatic@...oo.com>
To: "full-disclosure@...ts.grok.org.uk" <full-disclosure@...ts.grok.org.uk>
Subject: Re: Deutsche Post Security Cup 2013

if you have a look at the jury, you see some guy from Computer Bild. This is a magazine for the broad mass and the everyday computer user (who is impressed by registry tricks and free software)..

Computer Bild is not that known for very in-depth security knowledge. I mean, if you have a sophisticated security question, Computer Bild is like the last place to look for. 

If they had at least choosen someone from Heise Security or Chaos Computer Club (i don't like their attitude but they have some competent members). These two are known for dealing with security every day. 

So then why Computer Bild ?

Computer Bild is a part of the Springer press, which is the most powerful publishing company here in Germany. 

http://en.wikipedia.org/wiki/Axel_Springer_AG

If they write "it's good", everybody will believe that. And they have a lot of mediums to propagate that information in "the right way", even if they are wrong ( Nice German site publishing all errors by Bild http://www.bildblog.de/ ;-) 

I really don't want to presume something but it's somehow obvious.

Coman the Intensivecareian




________________________________
 Von: Alex <fd@...oo.de>
An: full-disclosure@...ts.grok.org.uk 
Gesendet: 18:46 Donnerstag, 21.März 2013
Betreff: Re: [Full-disclosure] Deutsche Post Security Cup 2013
 

IMHO the goal here is not to find many vulns, it is to find none and therefore "prove" that the product is secure. The E-POST product is highly questioned in Germany, because it is sold as secure encrypted email service, although the security is only between server and client. The server unencrypts the mail and virus checks it or whatever else. I think I don't need to comment any further, just corelate those two facts.
Alexander Georgiev
On Wed, 20 Mar 2013 12:34:36 +0000 (GMT), Hurgel Bumpf <l0rd_lunatic@...oo.com> wrote:
Most of the subscribers are single individuals. Why bother sending them a invitaton when 99.9% are rejected because they dont have a "company" or a "big team". There a lot of valuable and competent individuals out there which are rejected because of their team size in the first place. Don't be so closed-minded, most freaks dont have friends and/or a cr3w. 
> 
>Thanks
> 
>Bonan the bavarian
>Von: "Juergen.Pabel@...tschePost.de" 
>An: full-disclosure@...ts.grok.org.uk 
>Gesendet: 10:24 Mittwoch, 20.März 2013
>Betreff: [Full-disclosure] Deutsche Post Security Cup 2013
>
>
>Dear  all,
>  
>as in 2010 (http://seclists.org/fulldisclosure/2010/Sep/318)  we will be conducting the Deutsche Post Security Cup this year again. 
>  
>Unfortunately, this  year only participants from Germany are allowed to the contest (because of legal  complications if international participants would be allowed to participate). I  understand that most of you on this list will thus not be able to participate,  but due to the lack of an equivalent german mailing list I opted for posting  this here as most german security researchers are also subscribers of this  list.
>  
>More information  about and the registration form (registration deadline is March 31st) for the  Security Cup 2013 can be found at http://www.epost.de/securitycup (in  german only, sorry).
> 
>Regards,
>Jürgen  Pabel
>
>Jürgen Pabel
>Information Security Officer E-POSTBRIEF
>
>Deutsche Post AG
>Moltkestrasse 14 
>53173  Bonn
>Deutschland
>
>Deutsche Post AG; Sitz Bonn; Registergericht  Bonn; HRB 6792
>Deutsche Post AG; Sitz Bonn; Registergericht Bonn; HRB  6792
>Vorstand: Dr. Frank Appel, Vorsitzender; Ken Allen, Roger Crook, Bruce  Edwards, Jürgen Gerdes, Lawrence Rosen, Angela Titzrath
>Vorsitzender des  Aufsichtsrates: Prof. Dr. Wulf von Schimmelmann
>
>Dies  ist eine Nachricht der Deutsche Post AG und kann vertrauliche, firmeninterne  Informationen enthalten. Sie ist ausschließlich für die oben adressierten  Empfänger bestimmt. Sind Sie nicht der beabsichtigte Empfänger, bitten wir Sie,  den Sender zu informieren und die Nachricht sowie deren Anhänge zu löschen.  Unzulässige Veröffentlichungen, Verwendungen, Verbreitung, Weiterleitung sowie  das Drucken oder Kopieren dieser Mail und ihrer verknüpften Anhänge sind strikt  untersagt.
> 
>Bitte denken Sie über Ihre Verantwortung gegenüber der  Umwelt nach, bevor Sie diese Nachricht ausdrucken!E-POSTBRIEF – Verbindlich. Vertraulich. Verlässlich. 
>Jetzt  registrieren: www.epost.de 
>_______________________________________________
>Full-Disclosure - We believe in it.
>Charter: http://lists.grok.org.uk/full-disclosure-charter.html
>Hosted and sponsored by Secunia - http://secunia.com/
>
>
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
Content of type "text/html" skipped

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ