Re: [Full-disclosure] Fwd: GWAVA Sender Notification (Content filter)
Valdis.Kletnieks_at_vt.edu
Date: 05/10/05
- Previous message: Kurt Grutzmacher: "Re: [Full-disclosure] coldfusion pentest"
- In reply to: James Tucker: "[Full-disclosure] Fwd: GWAVA Sender Notification (Content filter)"
- Next in thread: James Tucker: "Re: [Full-disclosure] Fwd: GWAVA Sender Notification (Content filter)"
- Reply: James Tucker: "Re: [Full-disclosure] Fwd: GWAVA Sender Notification (Content filter)"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
To: James Tucker <jftucker@gmail.com> Date: Mon, 09 May 2005 23:44:09 -0400
On Tue, 10 May 2005 02:32:41 BST, James Tucker said:
> Surely this kind of message is a really bad idea.
You know it, I know it, and the A/V vendors know it.
> What is the possible true business value of such a filter?
The true business value is for the A/V vendor, who can blat out a
free spam to the forged MAIL FROM: address (which is probably scraped off
a disk by the worm/virus and therefor likely an actual address.
In this case, the bozos at GWAVA can spam you about finding something they
didn't consider acceptable.
> What is the potential impact upon security to disclose the information
> that this mail does?
It demonstrates that the site running it is lame enough to still be running
A/V software that spams people.
> What is the cost of deployment of this system against the costs
> related to it's potential, and actual effects?
The GWAVA people don't care. They've been paid for the product already, and
they're not the ones paying for the bandwidth.
Remember - you're talking here about a market segment *founded* on the business
model that *partially* patching some other vendor's broken software will lead
to a permanent gravy train. Once you've wrapped your brain around the morals
and ethics of that business model, it's obviously a very tiny step to spamming
other people about the wonders of the product.
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
- application/pgp-signature attachment: stored
- Previous message: Kurt Grutzmacher: "Re: [Full-disclosure] coldfusion pentest"
- In reply to: James Tucker: "[Full-disclosure] Fwd: GWAVA Sender Notification (Content filter)"
- Next in thread: James Tucker: "Re: [Full-disclosure] Fwd: GWAVA Sender Notification (Content filter)"
- Reply: James Tucker: "Re: [Full-disclosure] Fwd: GWAVA Sender Notification (Content filter)"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
