RE: The Code Red hype Hall of Shame

[InfoSec News <isn () c4i org>]

Forwarded from: Dan Verton <intel0202 () yahoo com>

I think it is perfectly clear to all that the issue is not about two
journalists fighting to get a story out on the street first. The real
issue is something that eEye will have to deal with based on what the
community at large has said publicly in the original stories that ran
and in the hordes of copycat stories that are running now. And yes,
eEye did have their supporters.

And re: the personal tone of Mr. Maiffret's comments. Suffice to say,
I was an ISSO and doing sysadmin on intelligence systems ten years
ago. I understand Mr. Maiffret is relatively young.

Dan

--- InfoSec News <isn () c4i org> wrote:
> Forwarded from: Marc Maiffret <marc () eeye com>
>
> Wow. Two writers fighting over who wrote an inaccurate story
> first. What fun.
>
> Since neither Tommy nor Danny have any technical understanding of
> CodeRed nor the .ida exploit (yet write about it and point fingers
> anyway) they both might want to go look at the thread called "Can
> we afford full disclosure of security holes?" that was on Bugtraq
> just recently. You will actually see knowledgeable people who
> understand the topic rather than two writers just looking to meet
> their weekly quota of articles.
http://www.securityfocus.com/templates/archive.pike?list=1
> Signed,
> Marc Maiffret
> Chief Hacking Officer
> eEye Digital Security
> T.949.349.9062
> F.949.349.9538
> http://eEye.com/Retina - Network Security Scanner
> http://eEye.com/Iris - Network Traffic Analyzer
> http://eEye.com/SecureIIS - Web Application Firewall

[...]




-
ISN is currently hosted by Attrition.org

To unsubscribe email majordomo () attrition org with 'unsubscribe isn' in the BODY
of the mail.