mailing list archives
Why I hate you (and a philanthropic challenge!)
From: don bailey <don.bailey () gmail com>
Date: Fri, 09 Nov 2007 11:50:46 -0700
-----BEGIN PGP SIGNED MESSAGE-----
I really think you should stop saying you have "zero day"
to sell on Full Disclosure. Mostly because no-one really gives a
shit. Also, no-one is really interested in paying for your horrible
code. It looks worse than initd.sh. Seriously. My code sucks, but
yours is far worse. Please stop wasting our time caring what you
On to my idea!
I think the next 7 (I'm being very optimistic here) zero
day bugs should be "bought" by people giving money to charity
organizations! We don't see enough selflessness in computer
security, so stop being a dick: help save stuff that's important.
So, here's how it should work. Post your zero day up
on full disclosure. Yes, actually disclose it. Post what
charity you are releasing the zero day for. Then, we as a
public, will PayPal that charity (no, it can't be the Save
SnoSoft and Netragard Fund) some monies. Wouldn't that be
nice? We can help the EFF, battle illegal pornography or
even support your favorite politician! Doesn't sound bad,
I will personally promise to donate up to 300$ (total, I'm not
rich) to said charities assuming that they are legal and such.
NOW GET TO WORK AND DROP SOME ZERO DAY
NO, XSS DOES NOT COUNT
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
-----END PGP SIGNATURE-----
Full-Disclosure - We believe in it.
Hosted and sponsored by Secunia - http://secunia.com/
- Why I hate you (and a philanthropic challenge!) don bailey (Nov 09)