I'm not really clear on how you are grading these companies. I've had
no personal experience with them but I don't decide a companies
quality of work simply by their website and what information I get
from some customer support person. These grades seem pointless and
frankly unfounded. You
-disclosure] [Professional IT Security Providers
-Exposed]
Cybertrust ( C + )
I'm not really clear on how you are grading these companies. I've had
no personal experience with them but I don't decide a companies
quality of work simply by their website and what information I get
from some
Agreed. !!
I think theres a lot of 'fair play' with the secreview folks. -- We're
going to give Cybertrust a C but if you can convince us that they deserve
a different grade then we'll revise our opinion.
So they are open for rebuttals and to changing their opinions !
On Dec 20, 2007 9:55 AM,
PM
Subject: Re: [Full-disclosure] [Professional IT Security Providers -Exposed]
Cybertrust ( C + )
I'm not really clear on how you are grading these companies. I've had
no personal experience with them but I don't decide a companies
quality of work simply by their website and what information
a favour and get a proper job.
- Original Message -
From: guiness.stout [EMAIL PROTECTED]
To: full-disclosure@lists.grok.org.uk
Sent: Thursday, December 20, 2007 2:05 PM
Subject: Re: [Full-disclosure] [Professional IT Security Providers
-Exposed]
Cybertrust ( C
IT Security Providers -Exposed]
Cybertrust ( C + )
I'm not really clear on how you are grading these companies. I've had
no personal experience with them but I don't decide a companies
quality of work simply by their website and what information I get
from some customer support person
:[EMAIL PROTECTED] On Behalf Of Epic
Sent: Thursday, December 20, 2007 11:56 AM
To: c0redump
Cc: full-disclosure@lists.grok.org.uk
Subject: Re: [Full-disclosure] [Professional IT Security Providers
-Exposed] Cybertrust ( C + )
Isn't ANY review subjective to opinion?I do
I am a pentester and IDS/IPS administrator for a large-ish security
firm. None of our tech staff worked on the corporate web site. We
are too busy, and frankly, it's just not my bag.
Public facing websites are usually outsourced to professional graphics
arts firms and developed under the
Public facing websites are usually outsourced to professional
graphics
arts firms and developed under the supervision of the Director of
Business Development. It's usually a solid pile of fluffy
buzzwords and crap.
Its sad how true this is. What makes it worse is half the time the
Director
Greetings list.
We've had an abundant amount of questions and challenges with
respect to the grades that we give to businesses. As a result we
will be posting a grade key on our site in the near future.
At the risk of being redundant, our opinions of companies are
formed by approaching the
?
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of
Epic
Sent: Thursday, December 20, 2007 11:56 AM
To: c0redump
Cc: full-disclosure@lists.grok.org.uk
Subject: Re: [Full-disclosure] [Professional IT Security Providers
-Exposed]
Cybertrust ( C + )
Isn't ANY review subjective to opinion
Trains,
Thank you for the good email. We'll take your suggestions into
consideration. We do already ask for sample reports, but the
questions that you provide later are great. Thanks again!
On Thu, 20 Dec 2007 10:20:57 -0500 trains [EMAIL PROTECTED]
wrote:
I am a pentester and IDS/IPS
Sent: Thursday, December 20, 2007 2:05 PM
Subject: Re: [Full-disclosure] [Professional IT Security
Providers
-Exposed]
Cybertrust ( C + )
I'm not really clear on how you are grading these companies.
I've had
no personal experience with them but I don't decide a
companies
quality
Awesome,
So you were an RA Security customer, would you be willing to
answer a few questions that we have so that we can revise our post?
We don't want to post anything that is not accurate. Your help
would be very much appreciated and we'd keep you anonymous.
On Thu, 20 Dec 2007 11:49:23
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
SecReview wrote:
Awesome,
... would you be willing to
answer a few questions that we have so that we can revise our post?
... and we'd keep you anonymous.
This is the most comedic statement on full disclosure this month.
I, too, will ask
Don, the origional poster is anonymous so its not actually that
funny.
On Thu, 20 Dec 2007 14:59:01 -0500 don bailey
[EMAIL PROTECTED] wrote:
SecReview wrote:
Awesome,
... would you be willing to
answer a few questions that we have so that we can revise our
post?
... and we'd keep you
I don't mind answering some questions, however we had used them for
a very basic scan so I couldn't tell you anything as far as their
more in-depth services.
Elazar
On Thu, 20 Dec 2007 14:45:04 -0500 SecReview
[EMAIL PROTECTED] wrote:
Awesome,
So you were an RA Security customer, would
nothing don ever does is useful or funny
On Dec 20, 2007 2:14 PM, SecReview [EMAIL PROTECTED] wrote:
Don, the origional poster is anonymous so its not actually that
funny.
On Thu, 20 Dec 2007 14:59:01 -0500 don bailey
[EMAIL PROTECTED] wrote:
SecReview wrote:
Awesome,
... would you be
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
reepex wrote:
nothing don ever does is useful or funny
On Dec 20, 2007 2:14 PM, SecReview [EMAIL PROTECTED]
mailto:[EMAIL PROTECTED] wrote:
Don, the origional poster is anonymous so its not actually that
funny.
It's true that
You hax0red the hushmail and stole his ip address information thing?
Can I has your sploitz plz?
On Dec 20, 2007 5:35 PM, don bailey [EMAIL PROTECTED] wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
reepex wrote:
nothing don ever does is useful or funny
On Dec 20, 2007 2:14 PM,
On Dec 20, 2007 6:35 PM, don bailey [EMAIL PROTECTED] wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
reepex wrote:
nothing don ever does is useful or funny
On Dec 20, 2007 2:14 PM, SecReview [EMAIL PROTECTED]
mailto:[EMAIL PROTECTED] wrote:
Don, the origional poster is
On Dec 20, 2007 4:06 PM, Dude VanWinkle [EMAIL PROTECTED] wrote:
...
WTF are you taking about Don? Of course hushmail is completely anonymous !
http://blog.wired.com/27bstroke6/2007/11/pgp-creator-def.html
that shit makes me laugh so hard...
transitive trust in some singular unknown
The evil .gov are gonna subpoena hushmail for his identity because he
told the sec review guy things about a company no one cares about...
Oh noes!
On Dec 20, 2007 6:32 PM, coderman [EMAIL PROTECTED] wrote:
On Dec 20, 2007 4:06 PM, Dude VanWinkle [EMAIL PROTECTED] wrote:
...
WTF are you
However, if you think hushmail = anonymity you're worse
at security than even I am. It's a funny coincidence that
there are two Elazars posting to full disclosure at one
time! I wonder if they're related?!?! HmmM!!m!M!Mm!M
Jackpot! Ill give you some of my UK lottery winnings once I get
them from
One of our readers made a request that we review Cybertrust
(http://www.cybertrust.com;). Cybertrust was recently acquired by
Verizon and as a result this review was a bit more complicated and
required a lot more digging to complete (In fact its now Cybertrust and
Netsec). Never the less, we
25 matches
Mail list logo