> Yeah, the general FD list policy is to reject requests for vendor contacts
> unless they also include full disclosure of the bug details:
>
> https://secwiki.org/w/FD_Moderation#Requests_for_vendor_security_contacts
>
> It's not that there is anything wrong with the more limited disclosure and
>
Fyodor,
We were not aware of that FD moderation rule. Now we know, and we'll try to
avoid this kind of request on FD.
Luckily, through this thread we got the contact we were looking for, so we
thank you all for that.
Cheers,
Gus.-
--
Ing. Gustavo M. Sorondo
Cinta Infinita - CTO
Web: http://cint
On Thu, Mar 10, 2016 at 2:15 AM, Mustafa Al-Bassam wrote:
> You're asking this on the full disclosure mailing list. Disclose it here.
>
Yeah, the general FD list policy is to reject requests for vendor contacts
unless they also include full disclosure of the bug details:
https://secwiki.org/w/F
On Wed, Mar 9, 2016 at 4:15 PM, Gustavo Sorondo
wrote:
> Hi list,
>
> I'd like to know if anyone here know someone working on security at
> Gigabyte (http://www.gigabyte.com/), since we are trying to responsibly
> report a high risk security flaw we found.
>
> We opened a ticket asking to be cont
> You're asking this on the full disclosure mailing list. Disclose it here.
Well, they're trying to ensure they're doing their due diligence with
respect to responsible disclosure before they make a public
disclosure.
It sounds like they got a response from a confirmed idiot working at
Gigabyte.
You're asking this on the full disclosure mailing list. Disclose it here.
On 09/03/16 21:15, Gustavo Sorondo wrote:
> Hi list,
>
> I'd like to know if anyone here know someone working on security at
> Gigabyte (http://www.gigabyte.com/), since we are trying to responsibly
> report a high risk secu
Hi list,
I'd like to know if anyone here know someone working on security at
Gigabyte (http://www.gigabyte.com/), since we are trying to responsibly
report a high risk security flaw we found.
We opened a ticket asking to be contacted by their security team, and the
answer we got was:
"Thanks for
