Date: Fri, 01 Dec 2000 04:03:02 -0800 From: Jordan Hubbard <jkh@winston.osd.bsdi.com> To: Nevermind <never@nevermind.kiev.ua> Cc: freebsd-security@FreeBSD.ORG Subject: Re: Important!! Vulnerability in standard ftpd Message-ID: <34604.975672182@winston.osd.bsdi.com> In-Reply-To: Message from Nevermind <never@nevermind.kiev.ua> of "Fri, 01 Dec 2000 12:21:24 %2B0200." <20001201122124.H2185@nevermind.kiev.ua>
next in thread | previous in thread | raw e-mail | index | archive | help
> It is ttyp* and ttyv* sniffer, logger, password cracker. > Please, check it out! These are the kinds of "reports" we can actually do without because all they do is alarm people without actually informing them of anything. You make some vague reference to a tool but don't provide any information on where to get it, you make vague reference to a hack but don't give any details on how you confirmed it or the evidence you gathered, all you're essentially doing is making unsupported assertions which are basically difficult or impossible to verify. In short, if you're going to send messages with subject lines like "Important!! Vulnerability in XXX" at all, we expect you to follow some very basic common-sense guidelines for doing advance research and presentating sufficient evidence for your claims. If you are unable to meet that criteria, do not send such messages. It is very simple. - Jordan To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?34604.975672182>