'[Full-Disclosure] Re: Re: Empty emails example'

[prev in list] [next in list] [prev in thread] [next in thread] 

List:       full-disclosure
Subject:    [Full-Disclosure] Re: Re: Empty emails example
From:       gabriel rosenkoetter <gr () eclipsed ! net>
Date:       2004-02-29 23:32:09
Message-ID: 20040229233209.GK22426 () uriel ! eclipsed ! net
[Download RAW message or body]

On Sun, Feb 29, 2004 at 04:47:31PM -0500, Bill Royds wrote:
>   I was disclosing a possible reconnaissance of compromised hosts. Perhaps
> you don't like full disclosure of attacks, only exploits?

I approve of disclosure of those attacks, but I don't think that
Full-Disclosure is the appropriate place for it. From the list's
charter, which is referenced in the footer of every piece of list
mail:

  Any information pertaining to vulnerabilities is acceptable, for
  instance announcement and discussion thereof, exploit techniques and
  code, related tools and papers, and other useful information.

"Vulnerabilities" does not imply "misuse of functional networks".

Discussion of the type you want belongs on, and takes place
regularly on, the incidents@securityfocus.com mailing list.

--=20
gabriel rosenkoetter
gr@eclipsed.net

[Attachment #3 (application/pgp-signature)]
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

[prev in list] [next in list] [prev in thread] [next in thread]
Configure | About | News | Add a list | Sponsored by KoreLogic