Hi, I think you can find more references on Phoneboy's web site. Don't remember each list's name, but try www.phoneboy.com and search for mailing lists.
HTH Regards, Max > -----Original Message----- > From: William Brady [mailto:[EMAIL PROTECTED] > Sent: mercredi 26 novembre 2003 13:46 > To: Sandro Littke > Cc: Frederic Charpentier; [EMAIL PROTECTED] > Subject: Re: [Full-Disclosure] Nokia IPSO > > > > Greetings, > > You in fact can talk about the security of Nokia > appliances. They are running > a *nix based kernel and Check Point firewall. > > Recently a cross-site scripting or script injection > vulnerability was posted > to BugTraq and subsequently to SecuriTeam. FishNet Security > was cited for the > discovery : > http://www.fishnetsecurity.com/CSIRT/disclosure/Nokia/Nokia.Vo > yager.Threat.Detai > ls.pdf > > @Stake also released a vulnerability in the Nokia Appliances > back in June. > http://www.atstake.com/research/advisories/2003/a060903-1.txt > > It seems as though the vulnerabilities are far and few > between, currently. > Bear in mind that posts that don't explicitly say Nokia could > still be relevant > due to the underlying operating system and other software. I > actually forget if > the OS is a rip of linux or bsd, but either way there would > still be "other > issues". > > Also, if you are talking about jsut security practices, > there are a handful of > lists off SecurityFocus you could subscribe to. > > > Flames off-list, please. > > -William > > > > Quoting Sandro Littke <[EMAIL PROTECTED]>: > > > On Wed, 2003-11-26 at 10:35, Frederic Charpentier wrote: > > > hi, does anyone know a mailing list (or web site) about > Nokia IPSO > > > security ? > > > > > > Fred > > > > > > _______________________________________________ > > > Full-Disclosure - We believe in it. > > ^^^^^^^^^^^^^^^^ > > > > Hi, you cant talk about security of a thing that is a black > box actually > > :-( > > > > Sandro. > > -- > > Sandro Littke <[EMAIL PROTECTED]> > > > > _______________________________________________ > > Full-Disclosure - We believe in it. > > Charter: http://lists.netsys.com/full-disclosure-charter.html > > > > -------------------------------- > Saharu Communications, Inc. > Network Security Business Unit > http://www.saharu.com > -------------------------------- > > _______________________________________________ > Full-Disclosure - We believe in it. > Charter: http://lists.netsys.com/full-disclosure-charter.html >
Visit our website! http://www.nbb.be "DISCLAIMER: The content of this e-mail message should not be construed as binding on the part of the National Bank of Belgium (NBB) unless otherwise and previously stated. The opinions expressed in this message are solely those of the author and do not necessarily reflect NBB viewpoints, particularly when the content of this message, or part thereof, is private by nature or does not fall within the professional scope of its author."
