SquirrelMail "vendor" notification feeler

From: Jonathan Angliss (jon_at_squirrelmail.org)
Date: 06/16/05

  • Next message: Sverre H. Huseby: "Adobe Reader 7: XML External Entity (XXE) Attack"
    Date: Thu, 16 Jun 2005 09:30:29 -0500
    To: bugtraq@securityfocus.com
    
    

    -----BEGIN PGP SIGNED MESSAGE-----
    Hash: SHA1

    Hi Guys,

    This is a general feeler email. Due to the popularity of SquirrelMail,
    and the fact it is packaged with quite a few distributions, the
    SquirrelMail administration team are looking to setup a "vendor"
    notification list to work in conjunction with vendors, and major users
    (ISPs, large corporations etc) on releases of updates, and security
    issues, to ensure, or help reduce, the possible impact of security
    issues.

    Would vendors/large users/corporations find this useful? If so, please
    contact myself off-list, and I shall gauge the feasibility, and
    usefulness of such a list. This list will work something similar to
    vendor-sec and have a limited subscription list, and will most likely
    be very quiet.

    - --
    Jonathan Angliss
    <jon@squirrelmail.org>
    -----BEGIN PGP SIGNATURE-----
    Version: GnuPG v1.4.1 (MingW32)

    iD8DBQFCsYz3K4PoFPj9H3MRAk0MAJ4lUNhlQXsV5O0A7nQ1XSlijVHJWwCfVfow
    xk3OojVzt7pcnvp391aXuWU=
    =jS2b
    -----END PGP SIGNATURE-----


  • Next message: Sverre H. Huseby: "Adobe Reader 7: XML External Entity (XXE) Attack"

    Relevant Pages

    • [NEWS] Wonderware SuiteLink Denial of Service Vulnerability
      ... The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com ... Get your security news from a reliable source. ... Vendor Information, Solutions and Workarounds ... Core sends the advisory draft to Wonderware support team. ...
      (Securiteam)
    • [Full-Disclosure] Security Industry Under Scrutiny: Part 3
      ... > varying degrees of 'faith' in the security industry. ... site admins and other whitehats. ... > architect would be notifying the software vendor alone... ... Full disclosure isn't so much a tool to get vunerability information ...
      (Full-Disclosure)
    • [NT] Internet Explorer Zone Elevation Restrictions Bypass and Security Zone Restrictions Bypass (MS0
      ... Get your security news from a reliable source. ... Internet Explorer Zone Elevation Restrictions Bypass and Security Zone ... Vendor Information, Solutions and Workarounds: ... Core sends an advisory ...
      (Securiteam)
    • RE: Vendor wants remote control of our Servers and Workstations
      ... Of course the age-old problem with security is that ... Vendor has significant access to your internal ... this vendor uses the same method to support a number ... customer and makes significant changes ... ...
      (Security-Basics)
    • Security researchers organization
      ... of security researchers, plain and simple. ... better than the vendor itself. ... industry, telecommunications industry and banking industry has ( ... These are all common ideals we can agree and act upon, ...
      (NT-Bugtraq)