Re: [Full-disclosure] security industry software license

[n3td3v <xploitable@xxxxxxxxxxx>]

I've realized that I don't really understand what Metasploit is or does and 
generally have a weak grasp on the security industry as a whole.  So, please 
disregard any of my previous, ignorant comments.


> Date: Thu, 16 Oct 2008 21:41:02 +0100
> From: xploitable@xxxxxxxxx
> To: full-disclosure@xxxxxxxxxxxxxxxxx
> Subject: Re: [Full-disclosure] security industry software license
> 
> the double edged sword of metasploit continues. while we acknowledge
> its a double edged sword, does that mean we don't need to monitor the
> bad edge of that sword? that is the point n3td3v has been making.
> 
> 
> and in a news report today by cnet news, they acknowledge:
> 
> 
> On Thursday, new code was put on the Internet that could exploit a
> flaw in unpatched Host Integration Servers.
> 
> The exploit is part of Metasploit, a toolkit used by penetration
> testers and criminal hackers alike.
> 
> 
> ... that criminal hackers use metasploit as well.
> 
> 
> so shouldn't metasploit and the govt be working together to share data?
> 
> im in full support of metasploit sharing data with the govt, but the
> thing you must do is have a privacy policy in place as well.
> 
> 
> http://news.cnet.com/8301-1009_3-10068161-83.html
> 
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/

_________________________________________________________________
Stay organized with simple drag and drop from Windows Live Hotmail.
http://windowslive.com/Explore/hotmail?ocid=TXT_TAGLM_WL_hotmail_102008

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/