[Full-disclosure] Why I hate you (and a philanthropic challenge!)
John C. A. Bambenek, CISSP
bambenek.infosec at gmail.com
Fri Nov 9 19:11:24 GMT 2007
I'll be more than happy to volunteer my charity to receive funds. :)
(Helps AIDS orphans in Tanzania get an education and otherwise
supports schools there).
On Nov 9, 2007 12:50 PM, don bailey <don.bailey at gmail.com> wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
> Dear jackasses,
> I really think you should stop saying you have "zero day"
> to sell on Full Disclosure. Mostly because no-one really gives a
> shit. Also, no-one is really interested in paying for your horrible
> code. It looks worse than initd.sh. Seriously. My code sucks, but
> yours is far worse. Please stop wasting our time caring what you
> On to my idea!
> I think the next 7 (I'm being very optimistic here) zero
> day bugs should be "bought" by people giving money to charity
> organizations! We don't see enough selflessness in computer
> security, so stop being a dick: help save stuff that's important.
> So, here's how it should work. Post your zero day up
> on full disclosure. Yes, actually disclose it. Post what
> charity you are releasing the zero day for. Then, we as a
> public, will PayPal that charity (no, it can't be the Save
> SnoSoft and Netragard Fund) some monies. Wouldn't that be
> nice? We can help the EFF, battle illegal pornography or
> even support your favorite politician! Doesn't sound bad,
> does it?
> I will personally promise to donate up to 300$ (total, I'm not
> rich) to said charities assuming that they are legal and such.
> NOW GET TO WORK AND DROP SOME ZERO DAY
> NO, XSS DOES NOT COUNT
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v1.4.6 (GNU/Linux)
> -----END PGP SIGNATURE-----
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/
Full-Disclosure is hosted and sponsored by Secunia.