Vulnerability Development mailing list archives
Re: Apache Worm?
From: "Raistlin" <raistlin () gioco net>
Date: Fri, 21 Jun 2002 13:46:00 +0200
Correct, reporting a vulnerability is the right thing to do, we are in raging agreement. But purposely *NOT* contacting the vendors involved because for some stupid immature reason your "don't trust them" and then doing a press release on the vulnerability is not the right thing to do.
Expecially if you provide a patch which doesn't patch correctly the bug. Bad move indeed, ISS. Stefano "Raistlin" Zanero System Administrator Gioco.Net public PGP key block at http://gioco.net/pgpkeys
Current thread:
- Apache Worm? Doesnt Matter (Jun 19)
- Re: Apache Worm? Replugge[ROD] (Jun 19)
- Re: Apache Worm? Steve Bremer (Jun 19)
- Re: Apache Worm? hellNbak (Jun 19)
- Re: Apache Worm? qobaiashi (Jun 19)
- <Possible follow-ups>
- RE: Apache Worm? Thor Larholm (Jun 19)
- RE: Apache Worm? Horner, Jonathan J. (JH8) (Jun 19)
- RE: Apache Worm? hellNbak (Jun 19)
- Re: Apache Worm? Raistlin (Jun 21)
- Re: Apache Worm? Blue Boar (Jun 21)
- Re: Apache Worm? Raistlin (Jun 21)