[11491] in bugtraq
Administrivia
daemon@ATHENA.MIT.EDU (Elias Levy)
Mon Aug 23 13:05:59 1999
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Message-Id: <19990823094300.A5607@securityfocus.com>
Date: Mon, 23 Aug 1999 09:43:00 -0700
Reply-To: aleph1@SECURITYFOCUS.COM
From: Elias Levy <aleph1@SECURITYFOCUS.COM>
X-To: bugtraq@securityfocus.com
To: BUGTRAQ@SECURITYFOCUS.COM
We are pleased to host a new security mailing list that may be of
interest BUGTRAQ subscribers.
What is EXPLOIT-DEV?
There are many forums for reporting security bugs and distributing exploit
code or examples. A prime example of such a forum is the BUGTRAQ
mailing-list. However, nearly all of these forums exist mostly for the
dissemination of fully-researched reports, and they leave little room
for discussion. In addition, many bugs are spotted not written-up,
due to lack of interest, time, or expertise.
The EXPLOIT-DEV list exists to allow people to report potential or
undeveloped holes. The idea is to help people who lack expertise, time,
or information about how to exploit a hole do so.
The EXPLOIT-DEV list is dedicated to the concept of full disclosure. We
believe that release of exploit code serves the security community overall.
Since the list is dedicated to interactively developing exploits, there will
there will generally NOT be an opportunity to warn software vendors or
authors. In many cases it will not be clear that there is a problem until
the exploit or description is finalized, at which point all list subscribers
will know. It is very appropriate to notify vendors or authors as soon as
it is clear there is a problem.
For more information read http://www.securityfocus.com/forums/exploit-dev/faq.html
To subscribe email LISTSERV@SECURITYFOCUS.COM with a message body of:
SUBS EXPLOIT-DEV Firstname Lastname
--
Elias Levy
Security Focus
http://www.securityfocus.com/
