lol...
This uh.. aluigi or what ever hes called sounds wierd... kind of scares me.Quote:
3 years ago when I found the so called haloloop and haloboom bugs I exchanged AT LEAST (so this is the minimal amount) 20 mails with my contact there and the conclusion was that after one or two months that the bug was reported and I really annoyed them with my mails about updates I released the advisory before the releasing of the 1.07 patch which luckily happened later (without receiving thanx in the changelog or from the community).
But it's useless to talk about these things since the end-users are the only which can change something, I can do something with my advisories (the classification and pubblication of the bugs as security vulnerabilities is a big step) but naturally it's up to the users contacting the developers and saying "come on, patch it!"
When the publisher sees hundreds of paid consumers angry for the lack of support of their products be sure that something usually changes.
He discloses information about vulnerabilities because people refuse to fix them.
If it ain't broke, don't fix it, and certainly don't show people how to break it XD
At the same time my "bullshit" sensors are kind of going off, mostly because of his terrible grammar and word usage, he might be foreign though. Sounds like crazy talk.
I can understand doing that research to better something, but to actually release information on how to break something simply because you want someone to do something about it is just plain retarded. Let them patch it when the problem actually occurs, don't cause problems just so they can be fixed you moron.
Idgi... to me it sounds like bull though, or a cover-up.
E: Yea.. I hate this guy... just checked his main page... he calls his little experiments "proof-of-concepts" basically small applications that can take advantage of bugs and vulnerabilities in applications... he has quite a few XD and there probably riddled with god knows what and malicious software...
All I see is a page with downloads for bug-hacks and malicious software... bunch of bull what he said about research imo tbh.
