Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Vulnerability Development mailing list archives

RE: Digg Security.
From: "Rocky" <rocky.he () g-wizinnovations com>
Date: Fri, 12 May 2006 12:47:40 +1000
I hope this wasn't just a case of them trying to cover up their problem by
claiming it wasn't a problem publicly while scrambling to fix it behind
closed doors. I hate it when people try to get sneaky that way.  Just admit
it and be a good example of listening to those that cared enough to report
it properly.  

-----Original Message-----
From: Jon Keating [mailto:jonkeating () gmail com] 
Sent: Friday, 12 May 2006 12:39 PM
To: steve () quicksilverscreen com
Cc: vuln-dev () securityfocus com
Subject: Re: Digg Security.

On 11 May 2006 21:17:07 -0000, steve () quicksilverscreen com

In an email I recieved later one of their developers told me that unless I

can show them otherwise, they would not consider this a security problem,
and would not fix it.

Looks like they did take you seriously, I copied your HTML source to
my own server and accessed the page. When I get sent to Digg.com it
gives this error:

Incident has been logged - hope you enjoyed the site while you had a chance

Jon

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]