How does DNS work again, Gadi?<br><br><div><span class="gmail_quote">On 7/14/07, <b class="gmail_sendername">Gadi Evron</b> <<a href="mailto:ge@linuxbox.org">ge@linuxbox.org</a>> wrote:</span><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">
On Sat, 14 Jul 2007, Dragos Ruiu wrote:<br>> On Tuesday 10 July 2007 08:53, Gadi Evron wrote:<br>>> To paraphrase Guninski, this is still not a 0day. It is a vulnerability<br>>> being disclosed.<br>><br>
> You're being pedantic Gadi. :-)<br>><br>> We have to accept the term "0day" has passed into<br>> the realm of meaningless nebulousness along with<br>> "hacker" and other misused terms.
<br>><br>> If we are to be pedantic, the original meaning of<br>> 0day is new warez release :-).<br><br>I think there is still hope for us buddy, at least when professionals make<br>releases.<br>For example, instead of saying I'm being pedantic on this (which I am),
<br>you could (also, in addition) reply and say "yep" or "nope", thus<br>contributing to some discussion. Meaning, we would either make a stand for<br>our profession or at the very least get educated as we go along.
<br><br>Some people believe the way to reach a "mature industry" is time, others<br>believe it's training or in a more specific fashion, certifications. I<br>don't know what the answer is, and I am sure it isn't terminology (or
<br>certifications, hehe).<br><br>I do know though, what a 0day is, and don't intend to compromise it for<br>the sake of what the press makes of it. It's a strong term and concept<br>which shouldn't be abused. That or we can decide on a new term for what
<br>0day used to mean. How about "blubla"?<br><br>>From professionals, we can expect good language and for their work to<br>speak for them. We shouldn't compromise on silly things like what 0day<br>means.
<br><br>Maybe I will give this up next year, but for now, advisories named "0day"<br>have disapeared lately. Maybe peer pressure does have some effect.<br><br>The above is over-thinking and some could consider it very silly, but for
<br>now, I believe in it. It's just like I resent those among consultants who<br>conduct themselves in a fashion that makes me ashamed of my profession, as<br>a far-off analogy.<br><br>> cheers,<br>> --dr<br>>
<br>> --<br>> World Security Pros. Cutting Edge Training, Tools, and Techniques<br>> Tokyo, Japan November 29/30 - 2007 <a href="http://pacsec.jp">http://pacsec.jp</a><br>> pgpkey <a href="http://dragos.com/">
http://dragos.com/</a> kyxpgp<br>><br><br>_______________________________________________<br>Full-Disclosure - We believe in it.<br>Charter: <a href="http://lists.grok.org.uk/full-disclosure-charter.html">http://lists.grok.org.uk/full-disclosure-charter.html
</a><br>Hosted and sponsored by Secunia - <a href="http://secunia.com/">http://secunia.com/</a><br></blockquote></div><br>