vb.org Archive
Page 3 of 4 12 3 4
Show 40 post(s) from this thread on one page

vb.org Archive (https://vborg.vbsupport.ru/index.php)
-   News and Announcements (https://vborg.vbsupport.ru/forumdisplay.php?f=2)
-   -   vBulletin 3.7.2 PL1 and 3.6.10 PL3 Released (https://vborg.vbsupport.ru/showthread.php?t=184623)

Shazz 07-09-2008 07:46 PM
v/Jessica to jelsoft

gamerfu 07-10-2008 06:51 AM
Quote:
Originally Posted by Jase2 (Post 1571326)
She seems a really nice person. Afterall, the exploit fixed would of never been found if it wasn't for her. There's an interesting debate going on in the vBulletin 3.7.2 Release Discussion - Jessica Hope is actually participating in that. :) Some people seem to think it is wrong for her to give a demo link exploit... well I don't think it is. She reported it in private to Jelsoft first, but they just said it isn't an exploit and dismissed it. So, she reported it publicly. Check it out: http://securitytracker.com/alerts/2008/Jun/1020322.html
Intresting how Jelsoft does not always take concerns seriously.

Marco van Herwaarden 07-10-2008 07:20 AM
Quote:
She reported it in private to Jelsoft first, but they just said it isn't an exploit and dismissed it.
I wonder where you got that impression.

KURTZ 07-10-2008 09:58 AM
Quote:
Originally Posted by gamerfu (Post 1571729)
Intresting how Jelsoft does not always take concerns seriously.
exactly ... :down:

Quote:
Originally Posted by Marco van Herwaarden (Post 1571742)
I wonder where you got that impression.
maybe Jason has some private channels ... :p

Marco van Herwaarden 07-10-2008 11:29 AM
Where was it posted that Jelsoft does not take security concerns serious? If we would not take it serious, then why are we releasing a patch immediate after the discovery of a new possible exploit?

PS I doubt Jason has private channels that give him any more information then i have, on the contrary.

Jase2 07-10-2008 02:43 PM
Quote:
She told vBulletin about it first. Jelsoft downplayed it, putting their users at risk. So what about blaming them instead of Jessica? They are the ones who didn't take responsibility. But in the end, you have nobody to blame but yourself. It is attitudes like these that are the reason that Storm and others continue to thrive.
I'm reading the discussion thread over @ vbulletin.com and Jessica is posting in that thread.

Marco, are you employed by Jelsoft?

King Kovifor 07-10-2008 03:24 PM
Quote:
Originally Posted by Jase2 (Post 1571971)
I'm reading the discussion thread over @ vbulletin.com and Jessica is posting in that thread.

Marco, are you employed by Jelsoft?
Yes. Marco is the only Paid Staff member at vBulletin.org as he is employed by Jelsoft. He is here to coordinate between vB.com and vB.org.

Shazz 07-10-2008 03:39 PM
Quote:
Originally Posted by Jase2 (Post 1571971)
I'm reading the discussion thread over @ vbulletin.com and Jessica is posting in that thread.

Marco, are you employed by Jelsoft?
http://www.vbulletin.com/forum/member.php?u=60067

Marco van Herwaarden 07-11-2008 06:26 AM
Quote:
Originally Posted by Jase2 (Post 1571971)
I'm reading the discussion thread over @ vbulletin.com and Jessica is posting in that thread.
If you would read it good you will find that the discussion is only about the wording in the release announcement.

We did take our responsibility, we did not deny or let go the report, a patch was constructed and released immediate. The discussion is only if we should have classified the real life risk of this vulnerability as Low/Medium/High in the announcement. I can hardly see this as not taking responsibility.
Quote:
Originally Posted by Jase2 (Post 1571971)
Marco, are you employed by Jelsoft?
Yes i am employed by Jelsoft.

nexialys 07-11-2008 02:30 PM
Quote:
Originally Posted by Marco van Herwaarden (Post 1572588)
Yes i am employed by Jelsoft.
no, no, i thought you were sooo devoted to your task that you refused to be paid....

gosh, we're all managed by a monstruous conglomerate.... AAARRGGHHHHH http://nexialys.net/vb/images/smilie..._tzuki/r28.gif

in some countries, employed mean slaved... i suppose that's what some guys here are reading now... http://nexialys.net/vb/images/smilie...t_tzuki/r3.gif


All times are GMT. The time now is 07:44 AM.
Page 3 of 4 12 3 4
Show 40 post(s) from this thread on one page

Powered by vBulletin® Version 3.8.12 by vBS
Copyright ©2000 - 2025, vBulletin Solutions Inc.

X vBulletin 3.8.12 by vBS Debug Information
  • Page Generation 0.01225 seconds
  • Memory Usage 1,743KB
  • Queries Executed 10 (?)
More Information
Template Usage:
  • (1)ad_footer_end
  • (1)ad_footer_start
  • (1)ad_header_end
  • (1)ad_header_logo
  • (1)ad_navbar_below
  • (10)bbcode_quote_printable
  • (1)footer
  • (1)gobutton
  • (1)header
  • (1)headinclude
  • (6)option
  • (1)pagenav
  • (1)pagenav_curpage
  • (3)pagenav_pagelink
  • (1)post_thanks_navbar_search
  • (1)printthread
  • (10)printthreadbit
  • (1)spacer_close
  • (1)spacer_open 
Phrase Groups Available:
  • global
  • postbit
  • showthread
Included Files:
  • ./printthread.php
  • ./global.php
  • ./includes/init.php
  • ./includes/class_core.php
  • ./includes/config.php
  • ./includes/functions.php
  • ./includes/class_hook.php
  • ./includes/modsystem_functions.php
  • ./includes/class_bbcode_alt.php
  • ./includes/class_bbcode.php
  • ./includes/functions_bigthree.php 
Hooks Called:
  • init_startup
  • init_startup_session_setup_start
  • init_startup_session_setup_complete
  • cache_permissions
  • fetch_threadinfo_query
  • fetch_threadinfo
  • fetch_foruminfo
  • style_fetch
  • cache_templates
  • global_start
  • parse_templates
  • global_setup_complete
  • printthread_start
  • pagenav_page
  • pagenav_complete
  • bbcode_fetch_tags
  • bbcode_create
  • bbcode_parse_start
  • bbcode_parse_complete_precache
  • bbcode_parse_complete
  • printthread_post
  • printthread_complete