[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-Disclosure] Re: Anyone know IBM's security address?

To: full-disclosure@xxxxxxxxxxxxxxxx
Subject: Re: [Full-Disclosure] Re: Anyone know IBM's security address?
From: Thomas Loch <thomas8142@xxxxxxxxxx>
Date: Fri, 6 Aug 2004 23:49:27 +0200

Post all unhead reports PUBLICALLY (e.g here)! When everyone has head 
everything, someone will do something ....

On Friday 06 August 2004 23:42, Jedi/Sector One wrote:
> On Fri, Aug 06, 2004 at 05:11:19PM -0400, Michael Scheidell wrote:
> > Have a vulnerability in an IBM product.
> > sent alert to security@xxxxxxx secure@xxxxxxx and cert@xxxxxxx, all three
> > bounced. Can anyone tell me the official address or procedure to notify
> > IBM?
>
>   For AIX-releated flaws, the contact is security-alert@xxxxxxxxxxxxxx
>
>   For other products... good luck. I also have a vulnerability in an IBM
> product but I wasn't able to get in touch with anyone.
>
>   Online forms told me to call a number that is unreachable outside USA.
>
>   The AIX security officer told me he would find the right contact but I
> never got anything else since.

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Follow-Ups:
- Re: [Full-Disclosure] Re: Anyone know IBM's security address?
  - From: Jean-Marie Monnier

References:
- [Full-Disclosure] Anyone know IBM's security address?
  - From: Michael Scheidell
- [Full-Disclosure] Re: Anyone know IBM's security address?
  - From: Jedi/Sector One

Prev by Date: Re: [Full-Disclosure] waa waa (was Finally the truth slips out)
Next by Date: Re: [Full-Disclosure] Re: MS04-025 - Ignorance is truly bliss....
Previous by thread: [Full-Disclosure] Re: Anyone know IBM's security address?
Next by thread: Re: [Full-Disclosure] Re: Anyone know IBM's security address?
Index(es):
- Date
- Thread