Full Disclosure mailing list archives

Re: Anyone know IBM's security address?

From: Jedi/Sector One <j () pureftpd org>
Date: Fri, 6 Aug 2004 23:42:21 +0200

On Fri, Aug 06, 2004 at 05:11:19PM -0400, Michael Scheidell wrote:

Have a vulnerability in an IBM product.
sent alert to security () ibm com secure () ibm com and cert () ibm com, all three bounced.
Can anyone tell me the official address or procedure to notify IBM?


  For AIX-releated flaws, the contact is security-alert () austin ibm com
  
  For other products... good luck. I also have a vulnerability in an IBM
product but I wasn't able to get in touch with anyone.

  Online forms told me to call a number that is unreachable outside USA.
  
  The AIX security officer told me he would find the right contact but I
never got anything else since.

-- 
 __  /*-    Frank DENIS (Jedi/Sector One) <j at 42-Networks.Com>    -*\  __
 \ '/    <a href="http://www.PureFTPd.Org/";> Secure FTP Server </a>    \' /
  \/  <a href="http://www.Jedi.Claranet.Fr/";> Misc. free software </a>  \/

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Current thread:

Anyone know IBM's security address? Michael Scheidell (Aug 06)
- Re: Anyone know IBM's security address? Jedi/Sector One (Aug 06)
  - Re: Re: Anyone know IBM's security address? Thomas Loch (Aug 06)
    - Re: Re: Anyone know IBM's security address? Jean-Marie Monnier (Aug 07)
  - Re: Re: Anyone know IBM's security address? jmpascual (Aug 06)
  - Re: Re: Anyone know IBM's security address? Oliver () greyhat de (Aug 07)
- Re: Anyone know IBM's security address? troy (Aug 06)
- <Possible follow-ups>
- RE: Anyone know IBM's security address? Michael Scheidell (Aug 10)
- RE: Anyone know IBM's security address? Discini, Sonny (Aug 10)