RE: Anonymized Question for *

["Thor Larholm" <thor () pivx com>]

Everybody is finding tons of vulnerabilities in Microsoft products
without ever having had access to the source code. The source is not
some holy shrine like everybody imagines, all you need is an incentive.



Regards

Thor Larholm
Senior Security Researcher
PivX Solutions
24 Corporate Plaza #180
Newport Beach, CA 92660
http://www.pivx.com
thor () pivx com
Stock symbol: (OTCBB:DRIL)
Phone: +1 (949) 231-8496
PGP: 0x5A276569
6BB1 B77F CB62 0D3D 5A82 C65D E1A4 157C 5A27 6569

PivX defines a new genre in Desktop Security: Proactive Threat
Mitigation. 
<http://www.pivx.com/qwikfix>

-----Original Message-----
From: Dave Aitel [mailto:dave () immunitysec com] 
Sent: Thursday, May 06, 2004 12:08 PM
To: dailydave () lists immunitysec com
Subject: [Dailydave] Anonymized Question for *


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

"""
Does Microsoft's Government Security Program (GSP), which gives access
MS source code to participating governments, make it significantly
easier for those governments' intelligence services to find
vulnerabilities in Microsoft products?

**Assumption: Most GSP participants would share the MS source code with
their intelligence services...

**URL: http://www.linuxinsider.com/perl/story/33504.html
"""

Please answer to the DD list, as it's not MY question.

Dave Aitel
VP ************* *** ******
Immunity, Inc.

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.1 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQFAmozxzOrqAtg8JS8RAkpZAJ9urKoLLggo7B3TmhqzQfcdOnF19wCfRpOE
QECuLB4OzxYst7aj2oA0fh0=
=IMRM
-----END PGP SIGNATURE-----

_______________________________________________
Dailydave mailing list
Dailydave () lists immunitysec com
http://www.immunitysec.com/mailman/listinfo/dailydave
_______________________________________________
Dailydave mailing list
Dailydave () lists immunitysec com
http://www.immunitysec.com/mailman/listinfo/dailydave