Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security FullDisclosure
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [Full-disclosure] Persistent XSS and CSRF and on network appliance

from [scott] Network Security [Permanent Link]
Subject: Re: [Full-disclosure] Persistent XSS and CSRF and on network appliance
Date: Thu, 28 Jun 2007 00:40:37 -0400 
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Even better ,if you push a hash on us,do tell whether it's a 0-day or a
known exploit.

Regards,
  Redhowlingwolves              
______________________
It's all about (IN)Security

http://www.hacking-passion.com







Brian Eaton wrote:

On 6/27/07, bugtraq@cgisecurity.net <bugtraq@cgisecurity.net> wrote:

For the love of god people can we stop with the hashing already?


The hashes would be less annoying if they had an easily filtered subject line.

Let me suggest that anyone who wants to publish a hash of
vulnerability report on full disclosure include the string "MORH" in
the subject line, in honor of the "Month of Random Hashes" project.
Presumably anyone with enough of a clue to want to publish a hash of a
vulnerability disclosure also has enough of a clue to do so with a
standard subject line.

Cheers,
Brian

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/



-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQFGgzvFelSgjADJQKsRAk55AJ9Q5Sx7QEQ6y62W80vVutwtLk6wcACfY0sF
jksMVerCQhWjfG3d+Hw+tdc=
=OcE3
-----END PGP SIGNATURE-----

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: [Full-disclosure] Persistent XSS and CSRF and on network appliance, Brian Eaton
Next by Date:  [Full-disclosure] Secunia Research: Symantec Mail Security for SMTP Boundary Errors, Secunia Research
Previous by Thread:  Re: [Full-disclosure] Persistent XSS and CSRF and on network appliance, Brian Eaton
Next by Thread:  [Full-disclosure] Persistent XSS and CSRF on network appliance [subject corrected :) ], pagvac
Indexes:  [Date] [Thread] [Top] [All Lists]