Dann Corbit wrote:
> > -----Original Message-----
> > From: Neil Conway [mailto:neilc@samurai.com]
> > Sent: Tuesday, August 20, 2002 1:44 PM
> > To: Vince Vielhaber
> > Cc: pgsql-hackers@postgreSQL.org
> > Subject: Re: [HACKERS] @(#)Mordred Labs advisory 0x0003:
> > Buffer overflow in PostgreSQL (fwd)
> >
> >
> > Vince Vielhaber <vev@michvhf.com> writes:
> > > Here's yet another.
> >
> > Should someone from the core team perhaps get in contact with
> > this guy and ask if he could get in contact with the
> > development team before publicizing any further security
> > holes? AFAIK that is standard operating procedure in most cases...
>
> As long as we continue to find out about them, I would just let him work
> away.
> He is clearly an excellent tester, and if you had to hire him it would
> be very expensive.
>
> As long as he is producing results of such great value, I think it is
> wonderful.
Yea, someone please contact him and tell him to keep going.
-- Bruce Momjian | http://candle.pha.pa.us pgman@candle.pha.pa.us | (610)
359-1001+ If your life is a hard drive, | 13 Roberts Road + Christ can be your backup. | Newtown Square,
Pennsylvania19073
