sc-l  

Messages by Date

• 2006/05/04 RE: [SC-L] By default, the Verifier is disabled on .Net and Java Gary McGraw
• 2006/05/04 RE: [SC-L] By default, the Verifier is disabled on .Net and Java Tim Hollebeek
• 2006/05/04 Re: [SC-L] By default, the Verifier is disabled on .Net and Java David Eisner
• 2006/05/04 Re: [SC-L] HNS - Biggest X Window security hole since 2000 Kenneth R. van Wyk
• 2006/05/04 Re: [SC-L] HNS - Biggest X Window security hole since 2000 Gadi Evron
• 2006/05/04 [SC-L] HNS - Biggest X Window security hole since 2000 Kenneth R. van Wyk
• 2006/05/04 Re: [SC-L] By default, the Verifier is disabled on .Net and Java Michael Silk
• 2006/05/04 Re: [SC-L] By default, the Verifier is disabled on .Net and Java Dinis Cruz
• 2006/05/04 Re: [SC-L] By default, the Verifier is disabled on .Net and Java Dinis Cruz
• 2006/05/03 Re: [SC-L] By default, the Verifier is disabled on .Net and Java Michael Silk
• 2006/05/03 Re: [SC-L] By default, the Verifier is disabled on .Net and Java Dinis Cruz
• 2006/05/03 RE: [SC-L] By default, the Verifier is disabled on .Net and Java Wall, Kevin
• 2006/05/03 Re: [SC-L] By default, the Verifier is disabled on .Net and Java David Eisner
• 2006/05/03 Re: [SC-L] By default, the Verifier is disabled on .Net and Java Stephen de Vries
• 2006/05/03 RE: [SC-L] By default, the Verifier is disabled on .Net and Java Jeff Williams
• 2006/05/02 RE: [SC-L] By default, the Verifier is disabled on .Net and Java Wall, Kevin
• 2006/05/02 [SC-L] By default, the Verifier is disabled on .Net and Java Dinis Cruz
• 2006/05/02 Re: Vista and the Type Safe missed oportunity (was Re: [SC-L] New security website: darkreading ) George Capehart
• 2006/05/01 Vista and the Type Safe missed oportunity (was Re: [SC-L] New security website: darkreading ) Dinis Cruz
• 2006/05/01 [SC-L] Secure Software Architecture, Design, Implementation and Assurance CFP Robert C. Seacord
• 2006/05/01 [SC-L] New security website: darkreading Gary McGraw
• 2006/04/26 Re: [SC-L] Another example of the futility of hardwareless 2 factor authentication der Mouse
• 2006/04/26 [SC-L] Another example of the futility of hardwareless 2 factor authentication Glenn Everhart
• 2006/04/21 [SC-L] HNS - A Modular Approach to Data Validation in Web Applications Kenneth R. van Wyk
• 2006/04/18 [SC-L] IEEE S&P: malware Gary McGraw
• 2006/04/08 [SC-L] YAI (yet another interview) Gary McGraw
• 2006/04/07 Re: [SC-L] 4 Questions: Latest IE vulnerability, Firefox vs IE security, User vs Admin risk profile, and browsers coded in 100% Managed Verifiable code der Mouse
• 2006/04/07 Re: [SC-L] 4 Questions: Latest IE vulnerability, Firefox vs IE security, User vs Admin risk profile, and browsers coded in 100% Managed Verifiable code ljknews
• 2006/04/07 Re: [SC-L] 4 Questions: Latest IE vulnerability, Firefox vs IE security, User vs Admin risk profile, and browsers coded in 100% Managed Verifiable code ljknews
• 2006/04/06 Re: [SC-L] Managed Code and Runtime Environments - Another layer of added security? Dinis Cruz
• 2006/04/06 Re: [SC-L] 4 Questions: Latest IE vulnerability, Firefox vs IE security, Uservs Admin risk profile, and browsers coded in 100% Managed Verifiable code Dinis Cruz
• 2006/04/06 Re: [Owasp-dotnet] RE: [SC-L] 4 Questions: Latest IE vulnerability, Firefox vs IE security, Uservs Admin risk profile, and browsers coded in 100% Managed Verifiable code Dinis Cruz
• 2006/04/06 Re: [SC-L] 4 Questions: Latest IE vulnerability, Firefox vs IE security, User vs Admin risk profile, and browsers coded in 100% Managed Verifiable code Dinis Cruz
• 2006/04/06 Re: [SC-L] 4 Questions: Latest IE vulnerability, Firefox vs IE security, User vs Admin risk profile, and browsers coded in 100% Managed Verifiable code Dinis Cruz
• 2006/04/05 [SC-L] Some different ways to authenticate people Glenn Everhart
• 2006/04/05 Re: [SC-L] Re: [Owasp-dotnet] RE: 4 Questions: Latest IE vulnerability, Firefox vs IE security, User vs Admin risk profile, and browsers coded in 100% Managed Verifiable code Crispin Cowan
• 2006/04/05 [SC-L] AJAX: Is your application secure enough? Kenneth R. van Wyk
• 2006/04/05 [SC-L] Underhanded C contest Kenneth R. van Wyk
• 2006/04/04 RE: [SC-L] Segments, eh Smithers? Aleksander P. Czarnowski
• 2006/04/04 [SC-L] advice from the past Steven M. Bellovin
• 2006/04/04 Re: [SC-L] Segments, eh Smithers? Steven M. Bellovin
• 2006/04/04 Re: [SC-L] Segments, eh Smithers? Blue Boar
• 2006/04/04 Re: [SC-L] Segments, eh Smithers? karger
• 2006/04/04 Re: [SC-L] Segments, eh Smithers? der Mouse
• 2006/04/04 RE: [SC-L] Segments, eh Smithers? Michael S Hines
• 2006/04/04 Re: [SC-L] Segments, eh Smithers? ljknews
• 2006/04/04 [SC-L] Segments, eh Smithers? Crispin Cowan
• 2006/04/03 Re: [SC-L] Re: [Owasp-dotnet] RE: 4 Questions: Latest IE vulnerability, Firefox vs IE security, User vs Admin risk profile, and browsers coded in 100% Managed Verifiable code Pascal Meunier
• 2006/04/03 Re: [SC-L] Re: [Owasp-dotnet] RE: 4 Questions: Latest IE vulnerability, Firefox vs IE security, User vs Admin risk profile, and browsers coded in 100% Managed Verifiable code Crispin Cowan
• 2006/03/31 [SC-L] CNN podcast Gary McGraw
• 2006/03/31 [SC-L] upwards growing stacks karger
• 2006/03/30 Re: [SC-L] Managed Code and Runtime Environments - Another layer of added security? Steven M. Bellovin
• 2006/03/30 [SC-L] Multics history karger
• 2006/03/30 [SC-L] On sandboxes, and why you should care Dinis Cruz
• 2006/03/29 [Full-disclosure] Re: [Owasp-dotnet] RE: [SC-L] 4 Questions: LatestIE vulnerability, Firefox vs IE security, Uservs Admin risk profile, and browsers coded in 100% Managed Verifiable code Gunnar Peterson
• 2006/03/29 Re: [SC-L] Managed Code and Runtime Environments - Another layer of added security? der Mouse
• 2006/03/29 Re: [SC-L] Managed Code and Runtime Environments - Another layer of added security? Olin Sibert
• 2006/03/29 Re: [SC-L] Managed Code and Runtime Environments - Another layer of added security? der Mouse
• 2006/03/29 Re: [SC-L] Managed Code and Runtime Environments - Another layer of added security? Peter G. Neumann
• 2006/03/29 Re: [SC-L] Managed Code and Runtime Environments - Another layer of added security? der Mouse
• 2006/03/29 [SC-L] Software security efforts at DTCC Kenneth R. van Wyk
• 2006/03/29 [SC-L] Managed Code and Runtime Environments - Another layer of added security? Michael S Hines
• 2006/03/29 Re: [Owasp-dotnet] RE: [SC-L] 4 Questions: Latest IE vulnerability, Firefox vs IE security, Uservs Admin risk profile, and browsers coded in 100% Managed Verifiable code Gunnar Peterson
• 2006/03/29 Re: [OWASP-LEADERS] Re: [Owasp-dotnet] RE: [SC-L] 4 Questions: Latest IE vulnerability, Firefox vs IE security, Uservs Admin risk profile, and browsers coded in 100% Managed Verifiable code Stephen de Vries
• 2006/03/29 Re: [SC-L] Re: [Full-disclosure] 4 Questions: Latest IE vulnerability, Firefox vs IE security, User vs Admin risk profile, and browsers coded in 100% Managed Verifiable code der Mouse
• 2006/03/29 [SC-L] Re: [Full-disclosure] Re: [Owasp-dotnet] Re: 4 Questions: Latest IEvulnerability, Firefox vs IE security, Uservs Admin risk profile, and browsers coded in100% Managed Verifiable code michaelslists
• 2006/03/29 [SC-L] Re: [Owasp-dotnet] Re: 4 Questions: Latest IE vulnerability, Firefox vs IE security, Uservs Admin risk profile, and browsers coded in100% Managed Verifiable code michaelslists
• 2006/03/29 [SC-L] Re: [Full-disclosure] Re: Java integer overflows (was: a really long topic) michaelslists
• 2006/03/29 [SC-L] Re: Java integer overflows (was: a really long topic) michaelslists
• 2006/03/29 [SC-L] Java integer overflows (was: a really long topic) Andrew van der Stock
• 2006/03/29 [SC-L] Re: [Full-disclosure] 4 Questions: Latest IE vulnerability, Firefox vs IE security, User vs Admin risk profile, and browsers coded in 100% Managed Verifiable code michaelslists
• 2006/03/29 [SC-L] Re: 4 Questions: Latest IE vulnerability, Firefox vs IE security, Uservs Admin risk profile, and browsers coded in100% Managed Verifiable code Jeff Williams
• 2006/03/28 [SC-L] Re: [Full-disclosure] 4 Questions: Latest IE vulnerability, Firefox vs IE security, User vs Admin risk profile, and browsers coded in 100% Managed Verifiable code Andrew van der Stock
• 2006/03/28 [SC-L] Re: [Full-disclosure] 4 Questions: Latest IE vulnerability, Firefox vs IE security, User vs Admin risk profile, and browsers coded in 100% Managed Verifiable code michaelslists
• 2006/03/28 [SC-L] Re: [Full-disclosure] 4 Questions: Latest IE vulnerability, Firefox vs IE security, User vs Admin risk profile, and browsers coded in 100% Managed Verifiable code michaelslists
• 2006/03/28 Re: FW: [SC-L] 4 Questions: Latest IE vulnerability, Firefox vs IE security, User vs Admin risk profile, and browsers coded in 100% Managed Verifiable code michaelslists
• 2006/03/28 [SC-L] Owasp SiteGenerator v0.70 (public beta release) Dinis Cruz
• 2006/03/28 Re: FW: [SC-L] 4 Questions: Latest IE vulnerability, Firefox vs IE security, User vs Admin risk profile, and browsers coded in 100% Managed Verifiable code Dinis Cruz
• 2006/03/28 Re: [OWASP-LEADERS] Re: [Owasp-dotnet] RE: [SC-L] 4 Questions: Latest IE vulnerability, Firefox vs IE security, Uservs Admin risk profile, and browsers coded in 100% Managed Verifiable code Dinis Cruz
• 2006/03/28 Re: [OWASP-LEADERS] Re: [Owasp-dotnet] RE: [SC-L] 4 Questions: Latest IE vulnerability, Firefox vs IE security, Uservs Admin risk profile, and browsers coded in 100% Managed Verifiable code Dinis Cruz
• 2006/03/28 [SC-L] Re: [Owasp-dotnet] Re: Is there any Security problem in Ajax technology? Dinis Cruz
• 2006/03/28 Re: [Owasp-dotnet] RE: [SC-L] 4 Questions: Latest IE vulnerability, Firefox vs IE security, Uservs Admin risk profile, and browsers coded in 100% Managed Verifiable code Dinis Cruz
• 2006/03/27 [SC-L] 4 Questions: Latest IE vulnerability, Firefox vs IE security, User vs Admin risk profile, and browsers coded in 100% Managed Verifiable code David A. Wheeler
• 2006/03/27 Re: [OWASP-LEADERS] Re: [Owasp-dotnet] RE: [SC-L] 4 Questions: Latest IE vulnerability, Firefox vs IE security, Uservs Admin risk profile, and browsers coded in 100% Managed Verifiable code Stephen de Vries
• 2006/03/27 FW: [SC-L] 4 Questions: Latest IE vulnerability, Firefox vs IE security, User vs Admin risk profile, and browsers coded in 100% Managed Verifiable code Michael S Hines
• 2006/03/27 [SC-L] A Modular Approach to Data Validation in Web Applications Stephen de Vries
• 2006/03/27 Re: [Owasp-dotnet] RE: [SC-L] 4 Questions: Latest IE vulnerability, Firefox vs IE security, Uservs Admin risk profile, and browsers coded in 100% Managed Verifiable code ljknews
• 2006/03/27 Re: [SC-L] 4 Questions: Latest IE vulnerability, Firefox vs IE security, User vs Admin risk profile, and browsers coded in 100% Managed Verifiable code der Mouse
• 2006/03/27 [SC-L] Re: [Full-disclosure] 4 Questions: Latest IE vulnerability, Firefox vs IE security, User vs Admin risk profile, and browsers coded in 100% Managed Verifiable code Pilon Mntry
• 2006/03/27 [SC-L] Re: [Owasp-dotnet] RE: 4 Questions: Latest IE vulnerability, Firefox vs IE security, User vs Admin risk profile, and browsers coded in 100% Managed Verifiable code Dinis Cruz
• 2006/03/27 Re: [Owasp-dotnet] RE: [SC-L] 4 Questions: Latest IE vulnerability, Firefox vs IE security, Uservs Admin risk profile, and browsers coded in 100% Managed Verifiable code Dinis Cruz
• 2006/03/25 Re: [SC-L] 4 Questions: Latest IE vulnerability, Firefox vs IE security, User vs Admin risk profile, and browsers coded in 100% Managed Verifiable code ljknews
• 2006/03/25 RE: [SC-L] 4 Questions: Latest IE vulnerability, Firefox vs IE security, Uservs Admin risk profile, and browsers coded in 100% Managed Verifiable code Wall, Kevin
• 2006/03/25 [SC-L] 4 Questions: Latest IE vulnerability, Firefox vs IE security, User vs Admin risk profile, and browsers coded in 100% Managed Verifiable code Dinis Cruz
• 2006/03/17 Re: [Owasp-dotnet] Re: [SC-L] Is there any Security problem in Ajax technology? George Capehart
• 2006/03/16 Re: [Owasp-dotnet] Re: [SC-L] Is there any Security problem in Ajax technology? Gadi Evron
• 2006/03/16 Re: [Owasp-dotnet] Re: [SC-L] Is there any Security problem in Ajax technology? George Capehart
• 2006/03/15 [SC-L] CFP -- HICSS 2007 Kenneth R. van Wyk
• 2006/03/14 Re: [Owasp-dotnet] Re: [SC-L] Is there any Security problem in Ajax technology? Andrew van der Stock
• 2006/03/14 Re: [SC-L] Is there any Security problem in Ajax technology? Gadi Evron
• 2006/03/13 Re: [SC-L] Is there any Security problem in Ajax technology? George Capehart
• 2006/03/08 [SC-L] Software security for the enterprise Gary McGraw
• 2006/03/07 RE: [SC-L] ZDNET: LAMP lights the way in open-source security Gary McGraw
• 2006/03/07 RE: [SC-L] ZDNET: LAMP lights the way in open-source security Gavin, Michael
• 2006/03/07 Re: [SC-L] ZDNET: LAMP lights the way in open-source security Crispin Cowan
• 2006/03/07 RE: [SC-L] ZDNET: LAMP lights the way in open-source security Gary McGraw
• 2006/03/07 RE: [SC-L] ZDNET: LAMP lights the way in open-source security Jeff Williams
• 2006/03/07 RE: [SC-L] ZDNET: LAMP lights the way in open-source security Gavin, Michael
• 2006/03/07 RE: [SC-L] ZDNET: LAMP lights the way in open-source security Jeremy Epstein
• 2006/03/07 RE: [SC-L] ZDNET: LAMP lights the way in open-source security Gavin, Michael
• 2006/03/07 [SC-L] ZDNET: LAMP lights the way in open-source security Kenneth R. van Wyk
• 2006/03/06 re: [SC-L] Is there any Security problem in Ajax technology? Dinis Cruz
• 2006/03/06 Re: [SC-L] Question about the terms "encypt" and "secure" Steven M. Bellovin
• 2006/03/06 [SC-L] Fwd: Security problems with Ajax Andrew van der Stock
• 2006/03/06 RE: [SC-L] Question about the terms "encypt" and "secure" Wachdorf, Daniel R
• 2006/03/06 RE: [SC-L] Question about the terms "encypt" and "secure" ljknews
• 2006/03/06 RE: [SC-L] Question about the terms "encypt" and "secure" Jeremy Epstein
• 2006/03/06 [SC-L] Is there any Security problem in Ajax technology? Kentaro Arai
• 2006/03/06 RE: [SC-L] Question about the terms "encypt" and "secure" Gary McGraw
• 2006/03/06 Re: [SC-L] Question about the terms "encypt" and "secure" ljknews
• 2006/03/06 [SC-L] Interview on informIT Gary McGraw
• 2006/03/06 [SC-L] Question about the terms "encypt" and "secure" William L. Anderson
• 2006/03/03 [SC-L] Software security hits the big time Gary McGraw
• 2006/03/01 Re: [SC-L] eWeek: AJAX Poses Security, Performance Risks Gunnar Peterson
• 2006/02/23 Re: [SC-L] BSI: SOA what? Gunnar Peterson
• 2006/02/22 [SC-L] BSI: SOA what? Gary McGraw
• 2006/02/17 [SC-L] Call For Papers: 2006 OWASP AppSec Europe Conference Dave Wichers
• 2006/02/16 [SC-L] Podcast Gary McGraw
• 2006/02/15 [SC-L] Freedom to tinker Gary McGraw
• 2006/02/15 [SC-L] AJAX security paper Kenneth R. van Wyk
• 2006/02/13 [SC-L] Book review: Essential PHP Security Kenneth R. van Wyk
• 2006/02/13 [SC-L] RSA book signing Gary McGraw
• 2006/02/09 RE: [SC-L] it's not a bug, it's a feature! Gary McGraw
• 2006/02/09 [SC-L] static analysis you say? Gadi Evron
• 2006/02/09 [SC-L] it's not a bug, it's a feature! Gadi Evron
• 2006/02/08 [SC-L] boundaries/responsibilities Pete Shanahan
• 2006/02/08 RE: [SC-L] (Software Risk)--was-->Bugs and flaws Evans, Arian
• 2006/02/07 RE: [SC-L] Bugs and flaws Gunnar Peterson
• 2006/02/07 Re: [SC-L] Bugs and flaws Julie Ryan
• 2006/02/07 RE: [SC-L] Bugs and flaws Jeff Williams
• 2006/02/07 Re: [SC-L] RE: The role static analysis tools play in uncovering elements of design Crispin Cowan
• 2006/02/07 [SC-L] Where to read about construction quality software ljknews
• 2006/02/07 Re: [SC-L] Bugs and flaws Crispin Cowan
• 2006/02/06 RE: [SC-L] Bugs and flaws Gary McGraw
• 2006/02/06 RE: [SC-L] Bugs and flaws Gary McGraw
• 2006/02/06 RE: [SC-L] Bugs and flaws Evans, Arian
• 2006/02/06 RE: [SC-L] Bugs and flaws Evans, Arian
• 2006/02/06 RE: [SC-L] RE: The role static analysis tools play in uncoveringelements of design Jeff Williams
• 2006/02/05 [SC-L] RE: The role static analysis tools play in uncovering elements of design Brian Chess
• 2006/02/04 [SC-L] RE: The role static analysis tools play in uncovering elements of design Jeff Williams
• 2006/02/03 Re: [SC-L] Bugs and flaws Nick FitzGerald
• 2006/02/03 RE: [SC-L] Bugs and flaws Brian Chess
• 2006/02/03 RE: [SC-L] Bugs and flaws Nick FitzGerald
• 2006/02/03 [SC-L] Re: SC-L Digest, Vol 2, Issue 17 Brian Chess
• 2006/02/03 RE: [SC-L] Bugs and flaws Dana Epp
• 2006/02/03 Re: [SC-L] Bugs and flaws Crispin Cowan
• 2006/02/03 [SC-L] The role static analysis tools play in uncovering elements of design John Steven
• 2006/02/03 [SC-L] Re: Software Security (the book) Jonathan Leffler
• 2006/02/03 Re: [SC-L] Bugs and flaws Greg Beeley
• 2006/02/03 RE: [SC-L] Bugs and flaws James Stibbards
• 2006/02/03 Re: [SC-L] Bugs and flaws Al Eridani
• 2006/02/03 [SC-L] Software Security (the book) Gary McGraw
• 2006/02/03 RE: [SC-L] Bugs and flaws Gary McGraw
• 2006/02/03 Re: [SC-L] Bugs and flaws Kenneth R. van Wyk
• 2006/02/03 Re: [SC-L] Bugs and flaws Wietse Venema
• 2006/02/03 Re: [SC-L] Bugs and flaws der Mouse
• 2006/02/03 Re: [SC-L] Bugs and flaws John Steven
• 2006/02/03 Re: [SC-L] Bugs and flaws Blue Boar
• 2006/02/02 RE: [SC-L] Bugs and flaws Chris Wysopal
• 2006/02/02 RE: [SC-L] Bugs and flaws Jeff Williams
• 2006/02/02 RE: [SC-L] Bugs and flaws Gary McGraw
• 2006/02/02 RE: [SC-L] Bugs and flaws Jeff Williams
• 2006/02/02 RE: [SC-L] Bugs and flaws Gary McGraw
• 2006/02/02 RE: [SC-L] Bugs and flaws Brian Chess
• 2006/02/02 RE: [SC-L] Bugs and flaws Jeff Williams
• 2006/02/02 [SC-L] Administrative: whitelisting on SC-L Kenneth R. van Wyk
• 2006/02/02 RE: [SC-L] Bugs and flaws David Crocker
• 2006/02/02 RE: [SC-L] Bugs and flaws Gunnar Peterson
• 2006/02/02 Re: [SC-L] Bugs and flaws Crispin Cowan
• 2006/02/02 RE: [SC-L] Bugs and flaws Gavin, Michael
• 2006/02/02 RE: [SC-L] Bugs and flaws Gary McGraw
• 2006/02/02 RE: [SC-L] Bugs and flaws Chris Wysopal
• 2006/02/02 RE: [SC-L] Bugs and flaws Gary McGraw
• 2006/02/02 Re: [SC-L] Bugs and flaws John Steven
• 2006/02/02 RE: [SC-L] Bugs and flaws Wall, Kevin
• 2006/02/01 Re: [SC-L] Bugs and flaws Gunnar Peterson
• 2006/02/01 Re: [SC-L] Bugs and flaws Crispin Cowan
• 2006/02/01 Re: [SC-L] Bugs and flaws John Steven
• 2006/02/01 [SC-L] Bugs and flaws -- Micro-tainting David A. Wheeler
• 2006/02/01 Re: [SC-L] Bugs and flaws Steven M. Bellovin
• 2006/02/01 Re: [SC-L] Bugs and flaws Crispin Cowan
• 2006/02/01 Re: [SC-L] eWeek: AJAX Poses Security, Performance Risks Crispin Cowan
• 2006/01/30 Re: [SC-L] eWeek says "Apple's Switch to Intel Could Allow OS X Exploits" Jose Nazario
• 2006/01/30 Re: [SC-L] eWeek: AJAX Poses Security, Performance Risks ljknews
• 2006/01/30 [SC-L] Bugs and flaws Gary McGraw
• 2006/01/30 Re: [SC-L] eWeek: AJAX Poses Security, Performance Risks Pascal Meunier
• 2006/01/30 [SC-L] eWeek: AJAX Poses Security, Performance Risks Kenneth R. van Wyk
• 2006/01/27 Re: [SC-L] eWeek says "Apple's Switch to Intel Could Allow OS XExploits" Gary McGraw
• 2006/01/27 Re: [SC-L] eWeek says "Apple's Switch to Intel Could Allow OS X Exploits" Pascal Meunier
• 2006/01/27 Re: [SC-L] eWeek says "Apple's Switch to Intel Could Allow OS X Exploits" Blue Boar

• Later messages