Re: [Full-Disclosure] no more public exploits

list_at_nolog.org
Date: 04/28/04

  • Next message: full-disclosure-admin_at_lists.netsys.com: "Your message to Full-Disclosure awaits moderator approval" 
    To: full-disclosure@lists.netsys.com
Date: Wed, 28 Apr 2004 12:54:12 +0200

    Hello,

    johnny cyberpunk wrote:
    > this is an anouncement that i personally have no more intention to
    > publish any further exploits to the public.

    sad to read that. But it's your decision we have to accept, if we agree
    or not, if we like it or not.

    > too many flames from guys who are too lame to use the exploits or to
    > fix offsets for other targets. too many risks that kiddies around the
    > world use it for bad purposes.

    I can understand the first, but not the second. In order to avoid
    kiddies to use your code, just release source code that is a little bit
    buggy - with some typos, for example. In contrast to pentesters, kiddies
    are usually not able to find and correct bugs in a source code, so the
    code will be useless for them.

    > i saw, that the original intention, to publish exploits, for
    > pentesting or patch verifing purposes didn't work.

    IMHO your intention to publish exploits *does* work. But: There will
    always be some people that use published exploits for, hmmm, let's say:
    other purposes. Did you really think that would never happen with yours?
    That's hard to believe.

    > remember, that i speak just for me, not for the rest of the group.

    I hope that others - not only in your group - will not follow your example.

    GTi

    _______________________________________________
    Full-Disclosure - We believe in it.
    Charter: http://lists.netsys.com/full-disclosure-charter.html

  • Next message: full-disclosure-admin_at_lists.netsys.com: "Your message to Full-Disclosure awaits moderator approval"

    Relevant Pages

    • Re: trial versions of D6 and D7
      ... fits with the Personal license, and can often be found on magazine CDs. ... ("Noncommercial Purposes"). ... agree to reimburse Borland for all attorney's fees, ... distribute the source code of such files. ...
      (borland.public.delphi.non-technical)
    • Re: OT: Interex bankruptcy
      ... The NO source code etc. policies must change if HP has any intention of ... what REASON does this unknown decision maker provide for the NO source code ... * To join/leave the list, search archives, change list settings, * ...
      (comp.sys.hp.mpe)
    • Re: How many releases of Castle Wolfenstein were there for Apple II?
      ... Now that the source code has been released for educational ... purposes someone ... I've played the Mac version of Sword of Sodan and it's nothing ... although it would be nice to see the IIgs version surface. ...
      (comp.sys.apple2)
    • Prolog network/web applications for security analysis
      ... I am looking for Prolog network or web application source code for the purposes of security analysis. ... The buggier the code the better. ...
      (comp.lang.prolog)
    • Re: The design is the code?
      ... >> saying that the distinction between a plan, intention, and guide, is ... I think the source code is the source code. ...
      (comp.object)