Full Disclosure mailing list archives

RE: Security Industry Under Scrutiny: Part One

From: "sockz loves you" <sockz () email com>
Date: Thu, 07 Nov 2002 06:54:57 -0500


----- Original Message -----
From: John.Airey () rnib org uk
Date: Thu, 7 Nov 2002 11:01:48 -0000 
To: sockz () email com, full-disclosure () lists netsys com
Subject: RE: [Full-disclosure] Security Industry Under Scrutiny: Part One

-----Original Message-----
From: sockz loves you [mailto:sockz () email com]
Sent: 07 November 2002 10:13
To: full-disclosure () lists netsys com
Cc: vuln-dev () securityfocus com; vulnwatch () vulnwatch org;
bugtraq () securityfocus com
Subject: [Full-disclosure] Security Industry Under Scrutiny: Part One


*snip*

i replied to your email only to say that you need serious help in the area of
comprehension.  nothing of what you posted had anything to do with my original
post.  nor did it make any sense.  i can only assume that it is something they
put in the water in britain.  that or the school system.  how you graduated with
honours is completely beyond me, and i question those letters the end of your
name.  you said my post had too much noise itself?  allow me to clarify for you:

* security advisories are rarely based on original concepts
* most of them are filled with lots of crap used to build up the reputation of
  the whitehat.
* whitehats should contact vendors and not public forums as only the vendors can
  release an update.
* "proof of concept" toolz are used to fuel script kiddies so as to justify the
  employment of security professionals.  kinda like the CIA bombing a sky
  scraper to get more funding.

things we can do to make the security industry better:

* dont post to public forums.  contact the vendor directly.  make vendors more
  responsible for their products.
* stop producing "proof of concept" code/tools, as these are more often used to
  harm, rather than to heal.
* care more about security and less about money.

!<3 sockz
-- 
_______________________________________________
Sign-up for your own FREE Personalized E-mail at Mail.com
http://www.mail.com/?sr=signup

Single & ready to mingle? lavalife.com:  Where singles click. Free to Search!
http://www.lavalife.com/mailcom.epl?a=2116

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Current thread:

Security Industry Under Scrutiny: Part One sockz loves you (Nov 07)
- Re: Security Industry Under Scrutiny: Part One Grant Bayley (Nov 07)
- <Possible follow-ups>
- RE: Security Industry Under Scrutiny: Part One John . Airey (Nov 07)
- RE: Security Industry Under Scrutiny: Part One sockz loves you (Nov 07)
  - Re: Security Industry Under Scrutiny: Part One Georgi Guninski (Nov 07)
    - Re: Security Industry Under Scrutiny: Part One Len Rose (Nov 07)
    - Re: Security Industry Under Scrutiny: Part One Ron DuFresne (Nov 07)
  - RE: Security Industry Under Scrutiny: Part One João Miguel Neves (Nov 07)
    - RE: Security Industry Under Scrutiny: Part One hellNbak (Nov 07)
    - RE: Security Industry Under Scrutiny: Part One João Miguel Neves (Nov 07)
  - RE: Security Industry Under Scrutiny: Part One ATD (Nov 14)
- Re: Security Industry Under Scrutiny: Part One sockz loves you (Nov 10)
  - Re: Security Industry Under Scrutiny: Part One White Vampire (Nov 10)
    - Re: Security Industry Under Scrutiny: Part One noconflic (Nov 10)

(Thread continues...)