David Litchfield talks about the SQL Worm in the Washington Post

From: Richard M. Smith (rmsat_private)
Date: Wed Jan 29 2003 - 07:49:09 PST

Next message: backed.up.by.2048.bit.encryptionat_private: "[Full-Disclosure] (no subject)"

Previous message: Frog Man: "Re: dotproject Remote Code Execution Vulnerability : Patch"
Next in thread: David Litchfield: "Re: David Litchfield talks about the SQL Worm in the Washington Post"
Reply: David Litchfield: "Re: David Litchfield talks about the SQL Worm in the Washington Post"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hi,

The following quote from David Litchfield appeared in a front-page
article in today's Washington Post:

   http://www.washingtonpost.com/wp-dyn/articles/A57550-2003Jan28.html

   "You have this ideal vision of doing something 
   for the greater good," said David Litchfield, 
   managing director of Next Generation Security 
   Software Ltd. of London, who acknowledged that 
   a small bit of his code might have been used in 
   the attack. "I will probably no longer publish such code." 

Perhaps David can put together a longer message for Bugtraq and
Full-Disclosure on his changing views of publishing proof-of-concept
code for security vulnerabilities.

Richard M. Smith
http://www.ComputerBytesMan.com

Next message: backed.up.by.2048.bit.encryptionat_private: "[Full-Disclosure] (no subject)"
Previous message: Frog Man: "Re: dotproject Remote Code Execution Vulnerability : Patch"
Next in thread: David Litchfield: "Re: David Litchfield talks about the SQL Worm in the Washington Post"
Reply: David Litchfield: "Re: David Litchfield talks about the SQL Worm in the Washington Post"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Wed Jan 29 2003 - 10:48:03 PST