We are pleased to host a new security mailing list that may be of interest BUGTRAQ subscribers. What is EXPLOIT-DEV? There are many forums for reporting security bugs and distributing exploit code or examples. A prime example of such a forum is the BUGTRAQ mailing-list. However, nearly all of these forums exist mostly for the dissemination of fully-researched reports, and they leave little room for discussion. In addition, many bugs are spotted not written-up, due to lack of interest, time, or expertise. The EXPLOIT-DEV list exists to allow people to report potential or undeveloped holes. The idea is to help people who lack expertise, time, or information about how to exploit a hole do so. The EXPLOIT-DEV list is dedicated to the concept of full disclosure. We believe that release of exploit code serves the security community overall. Since the list is dedicated to interactively developing exploits, there will there will generally NOT be an opportunity to warn software vendors or authors. In many cases it will not be clear that there is a problem until the exploit or description is finalized, at which point all list subscribers will know. It is very appropriate to notify vendors or authors as soon as it is clear there is a problem. For more information read http://www.securityfocus.com/forums/exploit-dev/faq.html To subscribe email LISTSERVat_private with a message body of: SUBS EXPLOIT-DEV Firstname Lastname -- Elias Levy Security Focus http://www.securityfocus.com/
This archive was generated by hypermail 2b30 : Fri Apr 13 2001 - 14:57:57 PDT