Re: [Full-disclosure] Publishing exploit code - what is it good for
From: Erik Fichtner (emf_at_obfuscation.org)
Date: 06/30/05
- Previous message: Steve Milner: "[Full-disclosure] Re: Publishing exploit code - what is it good for"
- In reply to: Joachim Schipper: "Re: [Full-disclosure] Publishing exploit code - what is it good for"
- Next in thread: Erick Mechler: "Re: [Full-disclosure] Publishing exploit code - what is it good for"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Thu, 30 Jun 2005 13:35:37 -0400 To: Joachim Schipper <j.schipper@math.uu.nl>
Joachim Schipper wrote:
> This is doubly true if we're not talking about a dedicated pentester,
> but about a sysadmin with a networking/security background who likes to
> verify that the patches did, indeed, work.
Likewise; a sysadmin that likes to verify that their other security
management tools work properly: firewalls, IDS's, VA GUI's, ...
...especially when there isn't a patch yet.
-- Erik Fichtner; Unix Ronin "Mathematics is something best shared between consenting adults in the privacy of their own office" - Adam O'Donnell
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
- application/pgp-signature attachment: OpenPGP digital signature
- Previous message: Steve Milner: "[Full-disclosure] Re: Publishing exploit code - what is it good for"
- In reply to: Joachim Schipper: "Re: [Full-disclosure] Publishing exploit code - what is it good for"
- Next in thread: Erick Mechler: "Re: [Full-disclosure] Publishing exploit code - what is it good for"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
