[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Full-Disclosure] THCIISSLame exploit

To: full-disclosure@xxxxxxxxxxxxxxxx
Subject: [Full-Disclosure] THCIISSLame exploit
From: Feher Tamas <etomcat@xxxxxxxxxxx>
Date: Thu, 22 Apr 2004 17:10:36 +0200 (CEST)

Hello,

>THC is a hacker group, not a cracker group.

Publishing root exploit source code is free speech and is protected.

Publishing the binary is VX-ing and is criminal. That is very clear.

BTW, AV software only alert on binaries. AV firm research labs refuse to 
investigate malware in source code format, even if you send them a 
sample of a brand new one.

To share knowledge with security researchers does not require 
releasing binary executables, professional testers can compile the 
source code for themselves. Avoid releasing binaries and you will not 
have problems with the authorities.

Regards, Tamas Feher.

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Follow-Ups:
- Re: [Full-Disclosure] THCIISSLame exploit
  - From: Sebastian Krahmer

Prev by Date: Re: [Full-Disclosure] ip_setsockopt() sploit
Next by Date: [Full-Disclosure] [Research Paper] DNS Cache Snooping
Previous by thread: [Full-Disclosure] THCIISSLame exploit
Next by thread: Re: [Full-Disclosure] THCIISSLame exploit
Index(es):
- Date
- Thread