Bugtraq mailing list archives
Vulnerability database workshop
From: spaf () CS PURDUE EDU (Gene Spafford)
Date: Mon, 4 Jan 1999 13:32:18 -0500
The research community needs reference databases for work in intrusion detection, software engineering issues, penetration testing, trend analysis, forensics, and other advanced security research. Current holders and builders of such databases have shown little willingness to share their data because they view it as dangerous, or because it has a perceived commercial advantage. Thus, there have been almost no successful instances of data sharing. This continues to hinder important research in a number of areas. On January 21 & 22, the CERIAS at Purdue is hosting the 2nd workshop on vulnerability databases. The goal of the workshop is to bring together researchers from academia, government, and industry to discus how such data can be shared for research. The workshop announcement is available at <http://www.cerias.purdue.edu/vdbw.html>. Note that registration closes January 13! Also note that we may have some funding to offset the costs for full-time graduate students to attend the workshop. See the WWW page for more details. This is a *working* meeting intended for researchers. Please do not register to attend unless you plan on actively contributing to the discussions and break-out sessions -- attendance will be limited, and we do not want to fill up space with observers! Actual databases will not be exchanged, and specific vulnerability information will not be discussed. Thus, this workshop will definitely NOT be of interest to vendors seeking only to acquire data, or to hackers simply interested in finding out about new hacks.
Current thread:
- Re: Breeze Network Server remote reboot and other bogosity. Mike Pelley (Dec 31)
- Bug Mr Spooty (Dec 31)
- Re: Bug Curt Sampson (Jan 03)
- Re: Bug Jeffrey Hutzelman (Jan 07)
- Anonymous Qmail Denial of Service Wietse Venema (Jan 03)
- Dosemu/S-Lang Overflow + sploit Trev (Jan 03)
- Re: Dosemu/S-Lang Overflow + sploit Erik Mouw (Jan 12)
- Re: Anonymous Qmail Denial of Service Trev (Jan 04)
- Vulnerability database workshop Gene Spafford (Jan 04)
- Re: Anonymous Qmail Denial of Service Nick Andrew (Jan 04)
- Improved icmp time/mask querying program David G. Andersen (Jan 04)
- Re: Bug Curt Sampson (Jan 03)
- Re: Anonymous Qmail Denial of Service Illuminatus Primus (Jan 04)
- Re: Anonymous Qmail Denial of Service Nick Maclaren (Jan 04)
- Sendmail 8.9.2 released Patrick Oonk (Jan 04)
- SUN almost has a clue! (automountd) (fwd) Robert Borrell (Jan 04)
- Re: SUN almost has a clue! (automountd) (fwd) Bojan Zdrnja (Jan 05)
- Bug Mr Spooty (Dec 31)