[28695] in bugtraq
David Litchfield talks about the SQL Worm in the Washington Post
daemon@ATHENA.MIT.EDU (Richard M. Smith)
Wed Jan 29 13:50:55 2003
From: "Richard M. Smith" <rms@computerbytesman.com>
To: <bugtraq@securityfocus.com>
Date: Wed, 29 Jan 2003 10:49:09 -0500
Message-ID: <008501c2c7ad$f6336c30$6601a8c0@rms2>
MIME-Version: 1.0
Content-Type: text/plain;
charset="US-ASCII"
Content-Transfer-Encoding: 7bit
Hi,
The following quote from David Litchfield appeared in a front-page
article in today's Washington Post:
http://www.washingtonpost.com/wp-dyn/articles/A57550-2003Jan28.html
"You have this ideal vision of doing something
for the greater good," said David Litchfield,
managing director of Next Generation Security
Software Ltd. of London, who acknowledged that
a small bit of his code might have been used in
the attack. "I will probably no longer publish such code."
Perhaps David can put together a longer message for Bugtraq and
Full-Disclosure on his changing views of publishing proof-of-concept
code for security vulnerabilities.
Richard M. Smith
http://www.ComputerBytesMan.com
