Full Disclosure mailing list archives
Re: Firefox Remote Compromise Leaked
From: Jason Coombs <jasonc () science org>
Date: Sat, 07 May 2005 22:14:48 -1000
tuytumadre () att net wrote:
So apparently, the secret is out. I wish that this could have been used for good purposes but I guess that just isn't possible these days...
What 'good purposes' did you have in mind?What higher purpose is there above full disclosure with a proof of concept? Disclosure spreads awareness, and awareness allows defense.
The secret is no longer a secret, and it didn't remain one as long as you had hoped it would. This reduces the chances that the secret will be exploited against people who aren't aware that there is a secret. Nothing at all would have been gained by delaying disclosure, other than to give attackers a bigger window of opportunity to mount successful attacks and design new exploits that will launch successfully against a completely unprepared computing public.
Your belief that you could keep a secret, or that you have any right to keep such a secret even if you could, is moronic and it's wrong-headed.
Sincerely, Jason Coombs jasonc () science org _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Current thread:
- Firefox Remote Compromise Leaked tuytumadre (May 07)
- Re: Firefox Remote Compromise Leaked Jason Coombs (May 08)
- Re: Firefox Remote Compromise Leaked Vincent van Scherpenseel (May 08)
- Re: Firefox Remote Compromise Leaked Bipin Gautam (May 08)
- Re: Firefox Remote Compromise Leaked Eric Paynter (May 09)
- Re: Firefox Remote Compromise Leaked Mary Landesman (May 09)
- Re: Firefox Remote Compromise Leaked Eric Paynter (May 09)
- Re: Firefox Remote Compromise Leaked Mary Landesman (May 09)
- Re: Firefox Remote Compromise Leaked bkfsec (May 10)
- Re: Firefox Remote Compromise Leaked Vincent van Scherpenseel (May 08)
- Re: Firefox Remote Compromise Leaked Jason Coombs (May 08)
- Re: Firefox Remote Compromise Leaked Georgi Guninski (May 10)
- <Possible follow-ups>
- Re: Firefox Remote Compromise Leaked mattmurphy () kc rr com (May 08)