Waf ? Security !!!!!

frog-man
Noobie

Posts: 3

hum

Waf ? Security !!!!!

« on: February 19, 2004, 03:22:36 PM »

I don't understand ! I've posted 2 messages (on "Feedback" and on the "French" category) about a serious security hole.
I've received a message by mail :

"
A reply has been posted to a topic you are watching.

View it at
http://www.yabbse.org/community/index.php?board=167;action=display;threadid=27587;start=new

More replies may be posted, but you won't receive more email notifications until
you read the replies

Regards,
The YaBB SE Community team.

"

But this url tell me that I'm not allowed to visit it !!!
And my two posts have been deleted !!!!!
What have I to do ?


« Last Edit: February 19, 2004, 03:23:43 PM by frog-man »	Logged

Peter Duggan
Llama Chameleon
Global Moderator
YaBB God

Posts: 1793

You come and go...

Re:Waf ? Security !!!!!

« Reply #1 on: February 19, 2004, 06:28:39 PM »

Quote from: frog-man on February 19, 2004, 03:22:36 PM
I don't understand ! I've posted 2 messages (on "Feedback" and on the "French" category) about a serious security hole.

Sorry, but I moved them because the public boards aren't the best place for this kind of thing!

QuoteI've received a message by mail

That'll be because I added an explanatory note to them.

QuoteBut this url tell me that I'm not allowed to visit it !!!

And that'll be because they're now in an admin area.

QuoteAnd my two posts have been deleted !!!!!

No, just moved to a better place.

QuoteWhat have I to do ?

Please contact the team direct rather than posting to the forum if you believe there to be security holes in the product.


	Logged

[Unknown]
Global Moderator
YaBB God

Posts: 7830

Re:Waf ? Security !!!!!

« Reply #2 on: February 19, 2004, 08:15:34 PM »

If you would like to know why the team didn't patch this vulnerability earlier, please see the following discussion:

http://www.yabbse.org/community/index.php?thread=27139

If no one knows about it, it's detrimental to release a fix.

It is always detrimental for this website to describe, even in a post, how to hack an older version of YaBB SE. Continue posting exploits for any holes in any versions of any software, and I will ban you.

-[Unknown]


	Logged

frog-man
Noobie

Posts: 3

hum

Re:Waf ? Security !!!!!

« Reply #3 on: February 20, 2004, 03:29:56 PM »

Peter Duggan :

Ok thanks for all

About contacting team... that's what I've tried to do before posting here, but like I said, I didn't see any link "contact" or anything like that.
Thanks again for your answer

[Unknown] :

??

QuoteIf you would like to know why the team didn't patch this vulnerability earlier

About what vulnerability do you speak when you say "THIS vulnerability" ?

Quoteplease see the following discussion:

http://www.yabbse.org/community/index.php?thread=27139

If no one knows about it, it's detrimental to release a fix.

I've see the discussion I don't disagree with everything.
But if "it's detrimental to release a fix", do you imagine if you never release any fix ?? Would it be better ?

QuoteIt is always detrimental for this website to describe, even in a post, how to hack an older version of YaBB SE.

I didn't post any vulnerability on this board, I've said that I would like to contact the team to speak about a vulnerability that I've just discovered.

QuoteContinue posting exploits for any holes in any versions of any software, and I will ban you.

I'm here to help you and you want to ban me ?
You know I don't care : this hole is YOUR problem (and the problem of your "customers"), if you don't want my help, you don't need to ban me, I can go out of this board alone.
Are you really open source ?

Sorry for my poor english.
bye
frog


« Last Edit: February 20, 2004, 03:33:24 PM by frog-man »	Logged

Pages: [1]

YaBB SE Community \| General Category \| Feedback \| Waf ? Security !!!!!	« previous - next »

	Welcome, Guest. Please Login or Register. November 23, 2024, 03:12:52 PM

News: If you are still using YaBB SE, please consider upgrading to SMF as soon as possible.