[2389] in WWW Security List Archive
Re: Email Hack: Help.
daemon@ATHENA.MIT.EDU (Evil Pete)
Thu Jul 11 15:36:15 1996
To: "David W. Morris" <dwm@shell.portal.com>
cc: World Wide Web Security <WWW-SECURITY@ns2.rutgers.edu>
From: Evil Pete <shipley@dis.org>
In-reply-to: Your message of Mon, 24 Jun 1996 12:57:35 -0700.
<Pine.SUN.3.93.960624125455.12788A-100000@jobe.shell.portal.com>
Date: Thu, 11 Jul 1996 04:22:29 -0700
Errors-To: owner-www-security@ns2.rutgers.edu
>
>Doug,
>
>You'll probably get a better reply but in case you don't, you want
>to get in contact with the 'cert' folks. They publish bulletins on
>network hacking exposures, investigate, etc. I'm not sure exactly
>how you approach them, but I found a bunch of good starting points
>by using www.altavista.digital.com to search for 'cert.org'.
>
>Good luck,
>
>Dave Morris
>
Cert is great assuming that you do not mind hearing about
possible exploits weeks or months *AFTER* it as been posted to
most above and underground lists.
They are also very very useful when you do not want to be bothered with
the details of the exploit that can be used to test if your site is
vunerable.
