Penetration Testing mailing list archives
Re: Informing Companies about security vulnerabilities...
From: bugtraq () cgisecurity net
Date: Wed, 4 Oct 2006 16:07:30 -0400 (EDT)
I guess nobody told this judge http://www.samizdata.net/blog/archives/008118.html Oh, and he wasn't teaching a class. - Robert http://www.cgisecurity.com/ Application Security News http://www.cgisecurity.com/index.rss [RSS Security News Feed]
"On the count of entering an apostrophe into the Search box on the plaintiff's web site, how do you plead?" ...doubtful. -----Original Message----- From: bugtraq () cgisecurity net [mailto:bugtraq () cgisecurity net]=20 Sent: Wednesday, October 04, 2006 3:15 PM To: joe () learnsecurityonline com; pen-test () securityfocus com Cc: bugtraq () securityfocus com Subject: RE: Informing Companies about security vulnerabilities... So you are admitting publicly that you and a class of students that you teach are illegally testing random public=20 websites for the purpose of learning about security vulnerabilities? Sounds like you/your company need to speak with a lawyer. =20 - Robert=20 http://www.cgisecurity.com/ Application Security news and more http://www.cgisecurity.com/index.rss [RSS Security Feed] -----Original Message----- From: listbounce () securityfocus com [mailto:listbounce () securityfocus com] On Behalf Of Joseph McCray Sent: Wednesday, October 04, 2006 3:07 AM To: pen-test () securityfocus com Subject: Informing Companies about security vulnerabilities... This probably won't sound like that big of a deal, but it still bothered me so I figured I'd ask the list. I was teaching a Web Application Security class last week and we were performing simple XXS, SQL Injection, etc on the vulnerable web apps I use for class.
------------------------------------------------------------------------ This List Sponsored by: Cenzic Need to secure your web apps? Cenzic Hailstorm finds vulnerabilities fast. Click the link to buy it, try it or download Hailstorm for FREE. http://www.cenzic.com/products_services/download_hailstorm.php?camp=701600000008bOW ------------------------------------------------------------------------
Current thread:
- Re: Informing Companies about security vulnerabilities..., (continued)
- Re: Informing Companies about security vulnerabilities... s-williams (Oct 05)
- Re: Informing Companies about security vulnerabilities... Dan Catalin Vasile (Oct 05)
- RE: Informing Companies about security vulnerabilities... bugtraq (Oct 04)
- RE: Informing Companies about security vulnerabilities... Brian . Marino (Oct 04)
- Re: Informing Companies about security vulnerabilities... gat0r (Oct 06)
- Re: Informing Companies about security vulnerabilities... Dragos Ruiu (Oct 05)
- RE: Informing Companies about security vulnerabilities... Brian . Marino (Oct 04)
- Re: Informing Companies about security vulnerabilities... jay.tomas (Oct 04)
- Re: Informing Companies about security vulnerabilities... Thor (Hammer of God) (Oct 04)
- Re: Informing Companies about security vulnerabilities... Stefano Zanero (Oct 05)
- Re: Informing Companies about security vulnerabilities... Thor (Hammer of God) (Oct 04)
- RE: Informing Companies about security vulnerabilities... Krpata, Tyler (Oct 04)
- Re: Informing Companies about security vulnerabilities... bugtraq (Oct 04)
- RE: Informing Companies about security vulnerabilities... Craig Wright (Oct 04)
- Re: Informing Companies about security vulnerabilities... techlists (Oct 04)
- RE: Informing Companies about security vulnerabilities... Craig Wright (Oct 05)
- RE: Informing Companies about security vulnerabilities... Arian J. Evans (Oct 05)
- RE: Informing Companies about security vulnerabilities... Michael Scheidell (Oct 05)
- RE: Informing Companies about security vulnerabilities... Michael Scheidell (Oct 05)
- RE: Informing Companies about security vulnerabilities... alan (Oct 05)
- RE: Informing Companies about security vulnerabilities... Clemens, Dan (Oct 05)
- Re: Informing Companies about security vulnerabilities... mailing lists (Oct 05)
- Re: RE: Informing Companies about security vulnerabilities... jay.tomas (Oct 05)
(Thread continues...)