What will happen to bugtraq, hosted by Symantec...

[Martin Peikert <lists () nolog org>]

Hello,

for anyone who hasn't read that already: oisafety (members: @stake, 
BindView, Caldera International (The SCO Group), Foundstone, Guardent, 
ISS, Microsoft, NAI, Oracle, SGI, and *Symantec*) wants to establish a 
process of reporting vulnerabilities - see 
http://www.oisafety.org/process.html

Comments to that draft (sent to draft-feedback () oisafety org) will be 
accepted for 30 days.

,--- qoute from http://www.securityfocus.com/news/5458
|
| Whether or not that includes popular forums and mailing lists like
| Bugtraq, NTBugtraq and Full Disclosure is a gray area, says Blake [1],
| that the group deliberately left open to interpretation.
`--- end quote


GTi
[1] same source as the quote: Scott Blake, a VP at security software 
firm BindView, an OIS member

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html