Re: Security contact @ Gigabyte

[Gustavo Sorondo <gs () cintainfinita com ar>]

Fyodor,

We were not aware of that FD moderation rule. Now we know, and we'll try to
avoid this kind of request on FD.
Luckily, through this thread we got the contact we were looking for, so we
thank you all for that.

Cheers,

Gus.-

--
Ing. Gustavo M. Sorondo
Cinta Infinita - CTO
Web: http://cintainfinita.com
LinkedIn: https://www.linkedin.com/in/gustavosorondo
GPG: http://www.cintainfinita.com/gpg/gs-pkey.txt

On Mon, Mar 14, 2016 at 8:14 PM, Fyodor <fyodor () nmap org> wrote:

> On Thu, Mar 10, 2016 at 2:15 AM, Mustafa Al-Bassam <mus () musalbas com>
> wrote:
>
> > You're asking this on the full disclosure mailing list. Disclose it here.
>
> Yeah, the general FD list policy is to reject requests for vendor contacts
> unless they also include full disclosure of the bug details:
>
> https://secwiki.org/w/FD_Moderation#Requests_for_vendor_security_contacts
>
> It's not that there is anything wrong with the more limited disclosure and
> vendor pre-disclosure approaches, but those aren't full disclosure and so
> probably belong on a different list. This post must have slipped by one of
> the moderators, but we'll try not to do it again!
>
> Cheers,
> Fyodor

_______________________________________________
Sent through the Full Disclosure mailing list
https://nmap.org/mailman/listinfo/fulldisclosure
Web Archives & RSS: http://seclists.org/fulldisclosure/