> Yeah, the general FD list policy is to reject requests for vendor contacts > unless they also include full disclosure of the bug details: > > https://secwiki.org/w/FD_Moderation#Requests_for_vendor_security_contacts > > It's not that there is anything wrong with the more limited disclosure and > vendor pre-disclosure approaches, but those aren't full disclosure and so > probably belong on a different list.
Maybe FunSec (http://lists.linuxbox.org/cgi-bin/mailman/listinfo/funsec) would be a better place to ask for hep finding the contact: Funsec -- Fun and Misc security discussion for OT posts. Jeff _______________________________________________ Sent through the Full Disclosure mailing list https://nmap.org/mailman/listinfo/fulldisclosure Web Archives & RSS: http://seclists.org/fulldisclosure/
