Full Disclosure mailing list archives

Previous By Date Next
Previous By Thread Next

Re: How to Report a Security Vulnerability to Microsoft

From: Steve Friedl <steve () unixwiz net>
Date: Wed, 13 Apr 2005 09:09:57 -0700
On Wed, Apr 13, 2005 at 06:42:22PM +0300, Georgi Guninski wrote:

m$ users have deal with m$.
the m$ eula clearly explains to users that if users get fucked because of m$
warez m$ are not responsible.

you are proposing a 3rd party to save m$ users?


I'm proposing that security researchers act like professionals who care
about other people, not arrogant headline-seekers who only care about
fscking a company they don't like.

It's OK to hate Microsoft for a whole host of reasons ("their lawyers"
do it for me), but when you're OK with screwing their *users*, that says
a lot more about you than it does about Microsoft.

And you don't lose your technical creds by doing it responsibly.

Steve

-- 
Stephen J Friedl | Security Consultant |  UNIX Wizard  |   +1 714 544-6561
www.unixwiz.net  | Tustin, Calif. USA  | Microsoft MVP | steve () unixwiz net
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
Previous By Date Next
Previous By Thread Next

Current thread: