Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:
edgeos



Full Disclosure: Re: SECNICHE : Dwelling Security is On the Run

Re: SECNICHE : Dwelling Security is On the Run

From: Aditya K Sood <zeroknock_at_secniche.org>
Date: Sun, 17 Jun 2007 11:23:17 -0700

Michal Zalewski wrote:
> On Tue, 12 Jun 2007 dcdave_at_att.net wrote:
>
>
>> In an admittedly brief review of this page, I saw nothing useful or
>> informative to my career in information assurance.
>>
>
> Aditya has a history of using security mailing lists to advertise
> his various security consulting projects (metaeye.org, etc) under the
> guise of fairly bogus whitepapers and vulnerability reports:
>
> http://portal.spidynamics.com/blogs/jeff/archive/2007/04/16/ASP.NET-encoding-shortcomings-_2800_review-of-MetaEye-analysis_2900_.aspx
> http://www.webappsec.org/lists/websecurity/archive/2007-03/msg00079.html
> http://www.webappsec.org/lists/websecurity/archive/2007-03/msg00115.html
>
> As a rule, these claim to discuss cutting-edge attack techniques whilist
> in fact describing something remarkably mundane (register_globals as
> "Global Space Exploitation", form-based XSS as "Double Trap Attacks").
>
> I would advise WEBSECURITY moderators to exercise... well, moderation in
> approving his non-advisory posts:
>
> http://www.webappsec.org/lists/websecurity/archive/2007-06/msg00010.html
> http://www.webappsec.org/lists/websecurity/archive/2007-06/msg00019.html
>
> /mz
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/
>
>
Hi all

              I dont know why Mr. Michael , such a good professional
taking things in this way.
Upbringing to a new domain and releasing is a positive process. Rest I
never use list
for something awful. Thats it.

I respect Michael for the work he had done. I have only one thing to say
its not
necessary to have similar views and one sided perception of looking things.

The use of these words "aggrandizing" and "bogus" should not be done.

Thats it.

Regards
Zeroknock

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
Received on Jun 15 2007

[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]