Vulnerability Development mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Exploit Ease Level

From: rsavage () CROSSWINDS NET (Rory Savage)
Date: Sat, 29 Apr 2000 08:33:46 -0400

True, but I people like me who are always busy, don't always have alot of
time to do research.

Rory Savage

--
Systems Administrator
 email: rsavage () crosswinds net
.-.-.-..---..-..-..---.
| | | || | || .` || |'_
`-----'`-^-'`-'`-'`-'-/
-=/ MCI WorldCom/WANG/FAA \=-
 work (919)-377-7702
 beep (800)-PAGE-MCI
 page mail: 1433539 () pagemci com

On Sat, 29 Apr 2000, jms wrote:


On Fri, 28 Apr 2000, Rory Savage wrote:


   Sunch a rating could help System Administrators, and Security officals
with two keys aspects. 1. The amount of effort to casue the exploit on
their systems, and 2. Who is capable of the attack.



you know, a qualified system administrator / security official can
generally figure out whats going on in the code in an exploit and reach
those conclusions by him/herself.

the answer to your concerns isnt to dummy down exploits or their
descriptions, it is to do the homework needed to understand what the code
in front of you is doing, and to reach your own conclusions concerning
threat assessment.

-jason storm
 negation industries

~only two things can stop an orgy;
 and thats dawn, or a bigger orgy across town.~
              -u.c.b.
Previous By Date Next
Previous By Thread Next

Current thread: