Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security FullDisclosure
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [Full-disclosure] sans handler gives out n3td3v e-mail to public

from [Jason] Network Security [Permanent Link]
Subject: Re: [Full-disclosure] sans handler gives out n3td3v e-mail to public
Date: Mon, 31 Mar 2008 09:44:10 -0400 
n3td3v wrote:

On Sun, Mar 23, 2008 at 10:44 AM,  <taneja.security@gmail.com> wrote:

I think this the most worst and alarming situation ..where SANS like
organization is doing the way.......... from onwards no body will report
info to SANS........... E+1 t+1 b+1 j+1 it OFF!!!


SANS hasn't admitted a breach occured yet and they've had 7 days to
come up with the wording.

I haven't seen Joel Esler, the guy who breached my privacy back on
duty yet, but i've seen him and Johannes Ullrich talking on the
internet storm center mentioning podcasts
http://isc.sans.org/diary.html?storyid=4202

Why are they announcing podcasts when both Joel Esler and Johannes
Ullrich have a privacy breach still to publically acknowledge and
apologize for?

Maybe they thought Full-Disclosure mailing list members wouldn't
notice if they pretend the incident didn't take place and tried to
sweep it under the carpet?

Johannes Ullrich, you told me you were investigating Joel Esler
internally, so please tell me the findings, so I can paste them onto
Full-Disclosure.




I fail to see why I should care. I might care if they provided name, 
address, phone, parents but that would only be because I could then send 
you annoying things in postal mail every time I get another crap email 
from you.

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: [Full-disclosure] London DEFCON meet - DC4420 - New Venue - Wednesday 2nd April, 2008, Valdis . Kletnieks
Next by Date:  [Full-disclosure] Directory traversal in 2X ThinClientServer v5.0_sp1-r3497, Luigi Auriemma
Previous by Thread:  Re: [Full-disclosure] sans handler gives out n3td3v e-mail to public, Valdis . Kletnieks
Next by Thread:  [Full-disclosure] {securityreason.com}PHP 5 *printf() - Integer Overflow, Maksymilian Arciemowicz
Indexes:  [Date] [Thread] [Top] [All Lists]