|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: [Full-disclosure] Help with reporting
From: Andy Lindeman (alindeman
gmail.com)
Date: Wed Nov 30 2005 - 10:22:49 CST
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
It would probably be the most socially responsible to report the bug
to securityphp.net first and allow them to assist in fixing it and
putting out an advisory (they would almost certainly be amenable to
crediting you with finding it, if this is important to you)
As a quote from http://bugs.php.net/report.php:
"If you feel this bug concerns a security issue, eg a buffer overflow,
weak encryption, etc, then email securityphp.net who will assess the
situation."
--A
On 11/30/05, Dr HenDre <drhendregmail.com> wrote:
> Hi list,
>
> I've been following this list for quite a while now and finally i can
> contribute something.
> I think (i'm pretty sure) I've found a security bug in php, though I
> not at all familiar with reporting bugs to the vendor and to the list.
> So I'm looking for someone who can lead me the way.
>
> Thanks,
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/
>
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]