[OWASP-Bangalore] [Owasp-Mumbai] Why full/public disclosure of WebAppSec hack/vulnerability !

Akash akashmahajan at gmail.com
Tue Jun 30 11:51:11 EDT 2009


2009/6/30 Bishan Singh <c70n3r at gmail.com>:
> Anyone with experience reporting to CERT-IN? They have a special
> mention on their website for vulnerability reporting
> http://www.cert-in.org.in/vul-reporting.htm
>
> It says you could fill a form and email them.

Never heard back from them after reporting. Once I found a major bug
in a govt. website so I called one of the phone numbers given on the
CERT-IN website. The person on the other end cut the phone as soon as
heard me say vulnerability.


-- 
warm regards,
Akash Mahajan
----------------------------------------------------------
Security Consultant, (Web / Networks /
Servers / IT/ Virtualization)
Founder Headstart Network Foundation
----------------------------------------------------------
http://www.linkedin.com/in/akashm
http://network.headstart.in
----------------------------------------------------------


More information about the OWASP-Bangalore mailing list