Openwall Project   /home  Owl  JtR  Pro  crypt  pam_passwdqc  tcb  phpass  scanlogd  popa3d  msulogin  /  Linux  BIND  /  advisories  presentations  /  services  donations  /  wordlists  passwords  /  news  community  lists  wiki  CVSweb  mirrors  signatures
bringing security into open environments
 
Password Recovery Resources on the Net
[<prev] [next>] [<thread-prev] [thread-next>] [month] [year] [list] 
Date: Mon, 02 Jun 2008 14:41:48 -0800
From: Jonathan Smith <smithj@...ethemallocs.com>
To: oss-security@...ts.openwall.com
Subject: Re: ARP handler Inspection tool released

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Nico Golde wrote:
| I don't think that the nth
| cross-post of software announces belong to this list.

I wholeheartedly agree. Announcements of this kind belong on bugtraq/FD
or per-software announce lists like nmap-announce. I think this list is,
or should be, for discussion only. If the post isn't designed to spark
discussion (other than "does this belong here" discussion :-) it should
be somewhere else.

Announcements are intended either for existing end-users or as a PR
ploy. Existing users are probably subscribed to the project-specific
list (or don't care) and this isn't the place for PR.

So, was this message, and "SQL_injection detection tool released" held
for moderation? If so, why were they approved? Presumably whoever did so
has some reason not-yet-mentioned, since the SQL_injection one didn't
contain a query about testing and code review.

If they were not held for moderation, why not? I thought everything not
coming from a limited whitelist of people was held...

	smithj

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.9 (GNU/Linux)

iEYEAREIAAYFAkhEdywACgkQCG91qXPaRemWWgCgjm8qsvqt4kHcx1OFtMTiBv1F
wOcAoIspEKXl/+yHBcC9CO9onL5UjtUr
=GjEo
-----END PGP SIGNATURE-----

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Hosted by DataForce ISP - Powered by Openwall GNU/*/Linux