jetlib.sec » Full Disclosure » Re: posting xss notifications in sites vs software packages

Feeds

133098 items (0 unread) in 27 feeds

• 1337day (was: Inj3ct0r, 1337db)
• OSVDB Vulnerabilities
• Exploit-DB
• SecurityFocus Vulnerabilities
• Bugtraq
• Full Disclosure
• XSSed
• Packet Storm Security Headlines
• Packet Storm Security Advisories
• Packet Storm Security Exploits
• Packet Storm Security Recent Files
• Packet Storm Security Tools
• Packet Storm Security Misc. Files
• Sophos security news
• Sophos product advisories
• Penetration Testing
• SecuriTeam
• BackTrack Linux Forums
• Threatpost
• SecDocs
• carnal0wnage.attackresearch.com
• Carnal0wnage
• Kernel Fun
• Darknet
• The Exploitant
• Hack a Day
• Wirevolution

Full Disclosure

• February 10, 2012
• 

  Re: posting xss notifications in sites vs software packages

  Posted: February 10th, 2012, 2:53am PST

  Tags:   

  Posted by Info on Feb 10

  Well....in Germany...our law regarding security in general is very, very
  vague.
  
  It basically says that you have to go to prison if you produce or
  publish any information
  and/or tools (for so-called "hacking-purposes") in preparation for a
  criminal offense.
  And: if you get unauthorized access to data which is specially secured
  by evading the
  security mechanisms.
  
  But The European Expert Group for IT Security says that especially the...