Slashdot Mirror
Domain: securify.com
Stories and comments across the archive that link to securify.com.
Comments · 54
-
Exploit for 2.2.12
The best reason to get 2.2.13 is that it is no longer vulnerable to a STACK SMASH bug which effected the previous 2.2.12 and possibly earlier kernels.
-
Re:Don't books teaching security also teach cracki> I mean when you say there is a hole in version x.x of sendmail (e.g.), you're practically telling crackers that, "Hey! Here's the > back door! Start probing the net for servers running this software! Come on down!". This kind of information should only be > traded among LICENSED security consultants (yes, we need licensing) because... this is dangerous stuff.
You're not serious are you? This is nonsense and naive at best. You're not familiar with BUGTRAQ are you? BUGTRAQ is a mailing list that is a critical resource for admins all over the world. BUGTRAQ is also a full disclosure mailing list and it is open to anyone to read. Attempting to hide this information will only serve to keep it out of the hands of the people who need it. Clever crackers will find it regardless. Furthermore, open disclosure encourages the fixing of security holes. Hiding this information will lull people into a false sense of security.
Perhaps you should spend some time reading at Security Focus and Packet Storm to understand why full disclosure is a _good_ thing. You are fooling yourself if you thing licensing and attempting to hide security holes will provide any protection whatsoever.
-
Look's great!
Thank goodness Packet Storm is back! And it look's great. They have done a great job. Let's hope the site is as informative as ever.
-
url
Packetstorm's new Home. Just a splash page so far but i'm sure some of you, like me, will want to bookmark this. Courtesy of HackerNews.com