vb.org Archive
Page 15 of 16 « First 51314 15 16
Show 40 post(s) from this thread on one page

vb.org Archive (https://vborg.vbsupport.ru/index.php)
-   vBulletin.org Site Feedback (https://vborg.vbsupport.ru/forumdisplay.php?f=7)
-   -   Sending of Hacks to the Graveyard (https://vborg.vbsupport.ru/showthread.php?t=153206)

MaryTheG(r)eek 07-27-2007 10:36 AM
Quote:
Originally Posted by Zachery (Post 1302909)
How do you figure someone who reviewed your code from our site is breaking copyright laws? :confused:
First of all someone who reviewed my code (or revied anything, not only code) is not only breaking copyright laws. He is breaking the law about reviews, which is saying that to perform a review (in anything) and to post somewhere the results of this review is prohibited without the written permission of the author (in case for code) or the owner (in case of a product).

Make a simple google search for "reporting vulnerabilities" and you'll find it as many other useful information. Among the others (there are real examples there) the Reporter (who can never been anonymus) must give details like:
  • Why he decided to make the review
  • Why he choosen especially this software (if its about code)
  • To prove that he founds only this vulnerability and that he hasn't hide in the past vulnerabilities that he found and didn't reported.

Dismounted 07-27-2007 10:40 AM
Quote:
Originally Posted by AScherff (Post 1302869)
as a Member or User:

i wish to be informed of a vulnerabilty... please

and also i wish a little more information about the vulnerabilty:

will it destroy the Server ?
will it destroy the database ?
will it destroy then vBulletin ?
will it destroy the mod ?
will it ..... ?


or ist there only a theoretical chance that some one can inject or whatever

without showing the real vulnerability.


So i have a better chance to deside to deactivate, deinstall, or close my whole system

thanks

Alfred
We will NEVER send out details of any vulnerability as this can cause people to abuse that information and exploit it.

MaryTheG(r)eek 07-27-2007 10:44 AM
Just a random article as an example:
http://www.cerias.purdue.edu/weblogs...s-law/post-38/

Paul M 07-27-2007 11:36 AM
Quote:
Originally Posted by MicroHellas (Post 1302963)
First of all someone who reviewed my code (or revied anything, not only code) is not only breaking copyright laws. He is breaking the law about reviews, which is saying that to perform a review (in anything) and to post somewhere the results of this review is prohibited without the written permission of the author (in case for code) or the owner (in case of a product).
You released the modification here (to the public) for anyone to download. Therefore anyone can look at it and find any exploits it may have. No laws are broken doing this. Copyright laws are about stopping people from copying code and releasing it as their own (hence their name).

As for reviews - please show us this "review" law you refer to, becasue there is no such thing I know of (apart from which no review has been published anyway).

MaryTheG(r)eek 07-27-2007 11:42 AM
Quote:
Originally Posted by Paul M (Post 1302985)
You released the modification here (to the public) for anyone to download.
to download for use.. For nothing more....

Quote:
Originally Posted by Paul M (Post 1302985)
As for reviews - please show us this "review" law you refer to, becasue there is no such thing I know of (apart from which no review has been published anyway).
I wrote it above. Actually is the perfect example for this topic. Also don't forget to follow the links in article's body. There are much more interesting facts to read there.

AScherff 07-27-2007 12:01 PM
Quote:
Originally Posted by Dismounted (Post 1302965)
We will NEVER send out details of any vulnerability as this can cause people to abuse that information and exploit it.
Thanks, and the affected is standing in the rain.

So, if a vulnerability of an mod is reported and i receive a e-mail to deinstall the mod,
my decision must be, to deinstall the whole vBulletin itself ! Because i do not know and can not decide if the vulnerability of the mod also breaks (or has broken) a leak in vBulletin itself :eek:

So, if you are not willing to give any (also low) detail to vulnerability of a modification - so as a part of informing the customers i appreciate to hear a loud and clear opinion that after deinstalling the mod (or what ever is to do) it has no harm to vBulletin and the system itself.

Thats only a point of view from a customer...

hambil 07-27-2007 12:04 PM
Quote:
Originally Posted by MicroHellas (Post 1302990)
to download for use.. For nothing more....



I wrote it above. Actually is the perfect example for this topic. Also don't forget to follow the links in article's body. There are much more interesting facts to read there.
That's someone's blog, not a law.

MaryTheG(r)eek 07-27-2007 12:15 PM
Quote:
Originally Posted by hambil (Post 1303007)
That's someone's blog, not a law.
Finally it became a word's game. I wrote to follow the links. Especially one links to a newspaper. Read the article from the news.

hambil 07-27-2007 12:18 PM
Quote:
Originally Posted by MicroHellas (Post 1303013)
Finally it became a word's game. I wrote to follow the links. Especially one links to a newspaper. Read the article from the news.
I'm not trying to play word games. That would be especially pointless since English isn't your first language, and we'd only end up misunderstanding each other even worse. I'm just trying to understand where you are coming from, and what you want to accomplish here. You're angry, I get that (I'm obviously occasionally hot headed myself). But we seemed to have moved past anger into other more confusing things.

Paul M 07-27-2007 03:00 PM
Quote:
Originally Posted by MicroHellas (Post 1302990)
to download for use.. For nothing more....
If you allow it to be downloaded, and it's visible source, then people can read it. This is not against copyright law (or any other law).


All times are GMT. The time now is 06:47 PM.
Page 15 of 16 « First 51314 15 16
Show 40 post(s) from this thread on one page

Powered by vBulletin® Version 3.8.12 by vBS
Copyright ©2000 - 2025, vBulletin Solutions Inc.

X vBulletin 3.8.12 by vBS Debug Information
  • Page Generation 0.01471 seconds
  • Memory Usage 1,750KB
  • Queries Executed 10 (?)
More Information
Template Usage:
  • (1)ad_footer_end
  • (1)ad_footer_start
  • (1)ad_header_end
  • (1)ad_header_logo
  • (1)ad_navbar_below
  • (10)bbcode_quote_printable
  • (1)footer
  • (1)gobutton
  • (1)header
  • (1)headinclude
  • (6)option
  • (1)pagenav
  • (1)pagenav_curpage
  • (3)pagenav_pagelink
  • (1)pagenav_pagelinkrel
  • (1)post_thanks_navbar_search
  • (1)printthread
  • (10)printthreadbit
  • (1)spacer_close
  • (1)spacer_open 
Phrase Groups Available:
  • global
  • postbit
  • showthread
Included Files:
  • ./printthread.php
  • ./global.php
  • ./includes/init.php
  • ./includes/class_core.php
  • ./includes/config.php
  • ./includes/functions.php
  • ./includes/class_hook.php
  • ./includes/modsystem_functions.php
  • ./includes/class_bbcode_alt.php
  • ./includes/class_bbcode.php
  • ./includes/functions_bigthree.php 
Hooks Called:
  • init_startup
  • init_startup_session_setup_start
  • init_startup_session_setup_complete
  • cache_permissions
  • fetch_threadinfo_query
  • fetch_threadinfo
  • fetch_foruminfo
  • style_fetch
  • cache_templates
  • global_start
  • parse_templates
  • global_setup_complete
  • printthread_start
  • pagenav_page
  • pagenav_complete
  • bbcode_fetch_tags
  • bbcode_create
  • bbcode_parse_start
  • bbcode_parse_complete_precache
  • bbcode_parse_complete
  • printthread_post
  • printthread_complete