Re: [Full-disclosure] Microsoft Windows Help Centre Handles Malformed Escape Sequences Incorrectly
On 06/11/2010 02:40 AM, Christian Sciberras wrote: In my humble opinion, he could have waited a couple more days just in case Microsoft decided to do the unprecedented. In which case, I progressive change of policies at Microsoft are better than a couple of users getting hacked from pron sites... As I said: Travis indicated in his original post he believes the exploit *was already being used in the wild*. So NOT releasing it wouldn't protect users. It would just keep it secret from everyone except Microsoft *and the black hats who were already using it*. While maintaining a false air of intact security for everyone else. That is better, how? -- Benjamin Franz ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] Re: Re: George Bush appoints a 9 year old to be the chairperson of the Information Security Deportment
On Mon, 28 Aug 2006, Paul Schmehl wrote: --On Monday, August 28, 2006 09:54:42 -0400 [EMAIL PROTECTED] wrote: Who needs that XSS shit when there's Fox News? Like the other news agencies are any better. Yes, actually. The other news agencies are *provably* better. The more people watch FoxNews, the *less* accurate their understanding of world events is - making them unique among the large US news media. FoxNews is very little more than a propaganda arm of the Republican Party. (Note: PDF document) Misperceptions, the Media and the Iraq War http://www.psqonline.org/cgi-bin/99_article.cgi?byear=2003bmonth=wintera=02freeformat=view -- Jerry It is moronic to predict without first establishing an error rate for a prediction and keeping track of one’s past record of accuracy. -- Nassim Nicholas Taleb, Fooled By Randomness ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] [Clips] A small editorial about recent events. (fwd)
On Sun, 18 Dec 2005, Jamie C. Pole wrote: Well, for one thing, I am a veteran, and have EARNED these rights that you liberal whiners take for granted. When you believe in something enough to die for it, come back and talk to me. I'm a veteran as well. 6 years in the US Navy: 1987 through 1993. I served during Gulf War I aboard the ship that fired the second shots of the war (although the press got it wrong by about 20 minutes and reported them as the first shots) and was the US force closest to Kuwait the day it was invaded by Iraq. We were 75 miles of its coast. I remember being woken up at an ungodly hour of the morning that day by the ship going to General Quarters and working in the guts of the broken missile launcher that was the ship's long range air defense repairing it while some hundreds of planes of unknown intent were flying south towards us the next day (after having been woken up by another call to General Quarters that morning). Now go to hell. -- Benjamin Franz ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] Benign Worms
On Fri, 13 May 2005, Eric Paynter wrote: On Fri, May 13, 2005 9:59 am, Michael Holstein said: 3. If not, what prevents you from doing that? Any worm/virus, regardless of intent, is still illegal -- and I don't think I can get a DSL line in jail. Not true. Intent is *everything* as far a criminal activity is concerned. Don't quit your day job to work as a lawyer. There are a many laws that turn on facts rather than intent. Lack of criminal intent does not shield a citizen from the BATF. In United States v. Thomas, the defendant found a 16- inch-long gun while horseback riding. Taking it to be an antique pistol, he pawned it. But it turned out to be short-barreled rifle, which should have been registered before selling. Although the prosecutor conceded that Thomas lacked criminal intent, he was convicted of a felony anyway.[64] The Supreme Court's decision in United States v. Freed declared that criminal intent was not necessary for a conviction of violation of the Gun Control Act of 1968.[65] David Kopel, in Trust The People: The Case Against Gun Control Note: This is not intended to bring gun control into the argument, it was simply the first clear example I found of a conviction for a crime without intent. -- Benjamin Franz Simple things should be simple, complex things should be possible. - Alan Kay ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/