Openwall Project   /home  Owl  JtR  Pro  crypt  pam_passwdqc  tcb  phpass  scanlogd  popa3d  msulogin  /  Linux  BIND  /  advisories  presentations  /  services  donations  /  wordlists  passwords  /  NEWS  community  lists  Wiki  CVSweb  mirrors  signatures
bringing security into open environments
 
Password Recovery Resources on the Net
[<prev] [next>] [<thread-prev] [month] [year] [list] 
Date: Wed, 4 Jun 2008 12:51:45 +0100
From: "Michael Simpson" <mikie.simpson@...il.com>
To: oss-security@...ts.openwall.com
Subject: Re: tool announcements (was: ARP handler Inspection tool released)

> On Mon, Jun 02, 2008 at 02:41:48PM -0800, Jonathan Smith wrote:
> > I wholeheartedly agree.
>
> Thank you for commenting on this.  Your opinion is appreciated and may
> affect our moderation policy.  At this point, I am not sure if it is the
> prevailing opinion of this group, though.
>
> > Announcements of this kind belong on bugtraq/FD
>
> Maybe.  However, many topics are valid on Bugtraq - not only Open Source
> ones.  I imagine that someone could be interested in security tool
> announcements relevant to Open Source software only.  Also, Bugtraq is
> so large that few of us would dare to bother its readers with
> announcements of new versions of a tool, even fairly major ones.
>
> As to full-disclosure, we all know that there's a lot of noise on that
> list.  I'd rather not join it, although I like to receive occasional
> announcements of security tools.

I agree
FD's signal to noise ratio has plummeted in the last few years and is
only really useful as entertainment.

There was a secfocus mailing list for beta-announces
<betaannounce@...urityfocus.com>
which seems to have died a death

Having just gone into production with an OSS webapp i would really
appreciate an oss-sectools list.

best wishes

mike

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Powered by Openwall GNU/*/Linux - Powered by OpenVZ