[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Full-disclosure] Plain Text Password Disclosure vulnerability in rediff mail
- To: full-disclosure@xxxxxxxxxxxxxxxxx
- Subject: Re: [Full-disclosure] Plain Text Password Disclosure vulnerability in rediff mail
- From: Rohit Patnaik <quanticle@xxxxxxxxx>
- Date: Fri, 11 Sep 2009 17:55:13 -0500
full-censorship@xxxxxxxxxxxx wrote:
> On Fri, 11 Sep 2009 22:27:41 +0100 Valdis.Kletnieks@xxxxxx wrote:
>
>> On Fri, 11 Sep 2009 21:49:00 BST, you said:
>>
>>
>>> would one not rather hire someone *not* well-known and *doesn't*
>>>
>>> get owned?
>>>
>> Feel free to hire that guy flipping burgers at McD's to do your
>> security
>> assessment.
>>
>
> the burger flipper would be the obvious choice, young and eager to
> learn.
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/
>
The choice is obvious only as long as you ignore the fact that eager to
learn also means eager to make mistakes. After all, isn't trying (and
failing) the most effective method of learning?
--Rohit Patnaik
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/