Full Disclosure mailing list archives

Re: M$ puts bounty out for Blaster and Sobigculprits

From: Eric Bowser <ebowser () i-trap net>
Date: Wed, 05 Nov 2003 12:43:21 -0500

Too true, and I admit anything I write is probably swiss-cheese crap for
several iterations whenever I try something new or improved.

What I was attempting to say is that when you live in the ghetto and get
robbed because you forgot to lock your door, /SOME/ of the blame falls
on you.

Just my view.  I hate to start a flame war or a snowball this topic into
9000 posts, mail me directly if you wish.


On Wed, 2003-11-05 at 12:31, Corey Hart wrote:

To write flawed code is one thing.  To write code to expose flawed code
is another thing.  To write code to take advantage of the flawed code and
to cause damage to machines all over the world is a crime and the person
who wrote that should be brought to justice.

My 2 cents.


Eric Bowser wrote:

What about a bounty for the original engineer who wrote the flawed OS
components?

On Wed, 2003-11-05 at 10:02, Vic Vandal wrote:

M$ is offering $250K for info leading to the arrest of those
who released Blaster and/or Sobig.  See the details here:
http://news.com.com/2100-7355_3-5102110.html?tag=nefd_top

One outcome of this will be severely limiting bragging about
pulling off such sploits.
And one would think those actually guilty should be real busy
right now erasing any/all evidence (that they didn't take care
of long ago).

Maybe M$ should put out a bounty for reporting bugs in their
crappy software without going public instead.  That might be
more effective.

Peace,
Vic

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

--
Eric J. Bowser
330.658.9858 direct
330.658.0123 fax

i-TRAP Internet Security Services
888-658-TRAP toll-free
330.658.1040 local
www.i-trap.net

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

-- 
Eric J. Bowser 
330.658.9858 direct 
330.658.0123 fax 

i-TRAP Internet Security Services 
888-658-TRAP toll-free 
330.658.1040 local 
www.i-trap.net

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Current thread:

M$ puts bounty out for Blaster and Sobig culprits Vic Vandal (Nov 05)
- RE: M$ puts bounty out for Blaster and Sobig culprits Robert Davies (Nov 05)
  - Re: M$ puts bounty out for Blaster and Sobig culprits Dave Howe (Nov 05)
  - Re: M$ puts bounty out for Blaster and Sobig culprits Dan Wilder (Nov 05)
- Re: M$ puts bounty out for Blaster and Sobig culprits Eric Bowser (Nov 05)
  - Re: M$ puts bounty out for Blaster and Sobig culprits Patrick Dolan (Nov 05)
  - Re: M$ puts bounty out for Blaster and Sobigculprits Corey Hart (Nov 05)
    - Re: M$ puts bounty out for Blaster and Sobigculprits Eric Bowser (Nov 05)
- Re: M$ puts bounty out for Blaster and Sobig culprits Scott Taylor (Nov 05)
- <Possible follow-ups>
- RE: M$ puts bounty out for Blaster and Sobig culprits Jerry Heidtke (Nov 05)
  - RE: M$ puts bounty out for Blaster and Sobig culprits Vic Vandal (Nov 05)