> Yeah, the general FD list policy is to reject requests for vendor contacts > unless they also include full disclosure of the bug details: > > http://ift.tt/250RD8T > > It's not that there is anything wrong with the more limited disclosure and > vendor pre-disclosure approaches, but those aren't full disclosure and so > probably belong on a different list. Maybe FunSec (http://ift.tt/1S0RRpe) would be a better place to ask for hep finding the contact: Funsec -- Fun and Misc security discussion for OT posts. Jeff
Source: Gmail -> IFTTT-> Blogger
No comments:
Post a Comment