Full Disclosure mailing list archives
Re: CERT, Full Disclosure, and Security By Obscurity
From: Grant Bayley <gbayley () ausmac net>
Date: Fri, 31 Jan 2003 13:51:17 +1100 (EST)
On Fri, 31 Jan 2003, Darren Reed wrote:
In some mail from Grant Bayley, sie said:Access Denied ------------------------------------------------------------------------ This information is only accessible to authorised AusCERT members. If you wish to access this document. Please Login. It's just lucky the information was already out there. We have our own self-appointed ivory tower here in Australia. It is called AusCERT. _______________________________________________Whatever you might think, AusCERT is like this because they get bugger all funding from the Government and so need to be able to provide their "members" with some sort of exclusive services that they can collect money for in order to pay for staff and facilities. Even when it was Government funded, they had bugger all in the way of (hardware) resources because it arose inside a Uni I suppose my advice here is do not think of AusCERT or treat them like an organisation that provides free service(s).
My comment was intended to illustrate that the "exclusive service" of having access to the information on the ethernet padding problem isn't even remotely "exclusive". To me, this hints at the same sort of thing that the original poster mentioned in relation to CERT in the US - that they're little more than a place where people can pay to get vulnerability information with some amount of analysis on top, and hence are "nothing special" in a sea of other commercial organisations doing much the same. _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
Current thread:
- CERT, Full Disclosure, and Security By Obscurity Len Rose (Jan 30)
- RE: CERT, Full Disclosure, and Security By Obscurity Jason Coombs (Jan 30)
- RE: CERT, Full Disclosure, and Security By Obscurity Grant Bayley (Jan 30)
- Re: CERT, Full Disclosure, and Security By Obscurity Darren Reed (Jan 30)
- Re: CERT, Full Disclosure, and Security By Obscurity Grant Bayley (Jan 30)
- RE: CERT, Full Disclosure, and Security By Obscurity Grant Bayley (Jan 30)
- RE: CERT, Full Disclosure, and Security By Obscurity Jason Coombs (Jan 30)
- Re: CERT, Full Disclosure, and Security By Obscurity Ben Laurie (Jan 30)
- Re: CERT, Full Disclosure, and Security By Obscurity Georgi Guninski (Jan 30)
- Re: CERT, Full Disclosure, and Security By Obscurity Blue Boar (Jan 30)
- Re: CERT, Full Disclosure, and Security By Obscurity KF (Jan 30)
- Re: CERT, Full Disclosure, and Security By Obscurity Georgi Guninski (Jan 31)
- Re: CERT, Full Disclosure, and Security By O hellNbak (Jan 31)
- Re: CERT, Full Disclosure, and Security By Obscurity Georgi Guninski (Jan 30)