[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Message-ID: <CAKaGO1Yuzqw5fd08ARmgnLNb+-OOz5Lqm1VfYM-hHH9V1D+BLw@mail.gmail.com>
Date: Mon, 14 Mar 2016 21:27:34 -0300
From: Gustavo Sorondo <gs@...tainfinita.com.ar>
To: Fyodor <fyodor@...p.org>
Cc: Full Disclosure Mailing List <fulldisclosure@...lists.org>
Subject: Re: [FD] Security contact @ Gigabyte
Fyodor,
We were not aware of that FD moderation rule. Now we know, and we'll try to
avoid this kind of request on FD.
Luckily, through this thread we got the contact we were looking for, so we
thank you all for that.
Cheers,
Gus.-
--
Ing. Gustavo M. Sorondo
Cinta Infinita - CTO
Web: http://cintainfinita.com
LinkedIn: https://www.linkedin.com/in/gustavosorondo
GPG: http://www.cintainfinita.com/gpg/gs-pkey.txt
On Mon, Mar 14, 2016 at 8:14 PM, Fyodor <fyodor@...p.org> wrote:
>
> On Thu, Mar 10, 2016 at 2:15 AM, Mustafa Al-Bassam <mus@...albas.com>
> wrote:
>
>> You're asking this on the full disclosure mailing list. Disclose it here.
>>
>
> Yeah, the general FD list policy is to reject requests for vendor contacts
> unless they also include full disclosure of the bug details:
>
> https://secwiki.org/w/FD_Moderation#Requests_for_vendor_security_contacts
>
> It's not that there is anything wrong with the more limited disclosure and
> vendor pre-disclosure approaches, but those aren't full disclosure and so
> probably belong on a different list. This post must have slipped by one of
> the moderators, but we'll try not to do it again!
>
> Cheers,
> Fyodor
>
>
>
_______________________________________________
Sent through the Full Disclosure mailing list
https://nmap.org/mailman/listinfo/fulldisclosure
Web Archives & RSS: http://seclists.org/fulldisclosure/
Powered by blists - more mailing lists