[Owasp-Malaysia] How do you disclose vulnerabilities ethically?

[email protected] Wed, 23 Mar 2011 17:58:52 -0700

Hi,

This is recent SCADA vulnerabilities publicly disclosed


Full-disclosure advisories and proof-of-concepts:

http://seclists.org/bugtraq/2011/Mar/187


If you track down the thread, the emails later "discuss" on public
disclosure without vendor being notified beforehand.

De Raadt reponse:
http://seclists.org/bugtraq/2011/Mar/236


But I keep wonder why SCADA has to be connected through Internet? Does
"Die Hard 4" not teach you anything?





-- 
Join #ISOC [Internet Society] today and create connections with
Internet Users around the world!

Simplified Link: http://goo.gl/xmG90
_______________________________________________
Owasp-Malaysia mailing list
[email protected]
https://lists.owasp.org/mailman/listinfo/owasp-malaysia

OWASP Malaysia Wiki
http://www.owasp.my

OWASP Malaysia Facebook
http://www.facebook.com/OWASP.Malaysia

OWASP Malaysia Twitter #owaspmy
http://www.twitter.com/owaspmy

[Owasp-Malaysia] How do you disclose vulnerabilities ethically?

Reply via email to