[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Full-Disclosure] GREENAPPLE Release
- To: full-disclosure@xxxxxxxxxxxxxxxx
- Subject: Re: [Full-Disclosure] GREENAPPLE Release
- From: Loptr Chaote <loptr.chaote@xxxxxxxxx>
- Date: Sat, 12 Feb 2005 20:29:05 +0100
On Fri, 11 Feb 2005 19:20:11 -0500, Byron L. Sonne <blsonne@xxxxxxxxxx> wrote:
> > This is a quick announcement that the recent Microsoft patch (MS-05- has
> > fixed a vulnerability I found a while back in SMB.
>
> This vuln that you found 'a while back', did you mention anything about
> it then or have you just conveniently kept it to yourself until now?
> Doesn't sound like full disclosure to me.
>
I thought Full Disclosure propagators actually endorsed waiting for a
vendor to fix the vulnerability before announcing a security hole..
On the other hand what do I know? My hat is black.
-LC
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html