I approved Mike Gleason's message to remind everyone that if possible you should contact the vendor of vulnerable software when you discover a vulnerability. This is not meant to imply that you should not inform BugTraq at the same time or soon after. But after all the purpose of the list is to try to improve everyones security. To that end you should use whatever means you have. I do not want this thread to become another full disclosure debate so it ends here. Take it a small reminder of why we are all here. Aleph One / aleph1at_private http://underground.org/ KeyID 1024/948FD6B5 Fingerprint EE C9 E8 AA CB AF 09 61 8C 39 EA 47 A8 6A B8 01
This archive was generated by hypermail 2b30 : Fri Apr 13 2001 - 13:47:02 PDT