Full Disclosure mailing list archives
Re: CERT, Full Disclosure, and Security By O
From: hellNbak <hellnbak () nmrc org>
Date: Fri, 31 Jan 2003 13:24:45 -0600 (CST)
How predictable. What are you 12? On Fri, 31 Jan 2003, Georgi Guninski wrote:
Steven M. Christey proposed the responsible disclosure lame draft and signed it. I find it quite hipocritical to propose delaying of information, and at the same time mitre to get the 0days before they are released.
So because Mitre proposes a "lame draft" you all of a sudden have a huge problem with them? Where in the draft did it say anything - or on Mitre's web site for that matter - that they collect zero days? I mean maybe I have to learn how to read better or pay more attention to Christey's talks but I have never heard of Mitre collecting code. AFAIK - they rely on outside information sources. That being said, even if they did collect zero days. how is that hypocritical? An example of hypocritical would be helping company find and bury security issues while spending all your time hacking their competing products....maybe thats not hypocritical and just unethical... -- -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- "I don't intend to offend, I offend with my intent" hellNbak () nmrc org http://www.nmrc.org/~hellnbak -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
Current thread:
- CERT, Full Disclosure, and Security By Obscurity Len Rose (Jan 30)
- RE: CERT, Full Disclosure, and Security By Obscurity Jason Coombs (Jan 30)
- RE: CERT, Full Disclosure, and Security By Obscurity Grant Bayley (Jan 30)
- Re: CERT, Full Disclosure, and Security By Obscurity Darren Reed (Jan 30)
- Re: CERT, Full Disclosure, and Security By Obscurity Grant Bayley (Jan 30)
- RE: CERT, Full Disclosure, and Security By Obscurity Grant Bayley (Jan 30)
- RE: CERT, Full Disclosure, and Security By Obscurity Jason Coombs (Jan 30)
- Re: CERT, Full Disclosure, and Security By Obscurity Ben Laurie (Jan 30)
- Re: CERT, Full Disclosure, and Security By Obscurity Georgi Guninski (Jan 30)
- Re: CERT, Full Disclosure, and Security By Obscurity Blue Boar (Jan 30)
- Re: CERT, Full Disclosure, and Security By Obscurity KF (Jan 30)
- Re: CERT, Full Disclosure, and Security By Obscurity Georgi Guninski (Jan 31)
- Re: CERT, Full Disclosure, and Security By O hellNbak (Jan 31)
- Re: CERT, Full Disclosure, and Security By Obscurity Georgi Guninski (Jan 30)