Full-disclosure – Administrivia: The End

by Morgawr on 3/19/2014, 11:17 AM with 131 comments
  • by znowi on 3/19/2014, 2:44 PM

    Instrumental in this message for me was this part:

    There is no honour amongst hackers any more.

    10-20 years back a term hacker had a close relation to a certain moral conduct emphasizing freedom of knowledge. Today with a mass market of startups, that was largely popularized by Hacker News, this perception has changed. A hacker now is a founder. He must be good at raising money, monetizing a product and the greatest feat of all - exit. There's no more moral obligations of the past. Launch at all cost - the rest is an afterthought.

    There's a discrepancy between the two cultures. I think this divide is the source of the mailing-list problem and problems with freedom of information and privacy at large we have today.

  • by majke on 3/19/2014, 4:51 PM
  • by NathanOsullivan on 3/19/2014, 11:39 AM

    It seems ironic for the end to arrive without full disclosure of why.

  • by aidos on 3/19/2014, 11:51 AM

    Can someone from the security community explain exactly what the list is? Is it a mailing list where researchers disclose exploits that have been found (after doing their best to responsibly notify the developers of the effected systems)?

  • by ef47d35620c1 on 3/19/2014, 12:50 PM

    Sites that allow anonymous postings through tor (e.g. reddit) are the last remaining voice of freedom on the Internet.

    It is unfortunate that HN is not numbered among those sites.

    Edit: I was incorrect about HN. See the comment below. I am happy to learn that I was wrong.

  • by brianmwaters_hn on 3/19/2014, 1:09 PM

    What a shame; I just recently started taking on an interest in computer security and signed up for the list. In just the few weeks I was on there, I learned about a vulnerability in a device I had recently bought. I am cherishing the opportunity (which I haven't found time for yet) to walk through my first exploit!

    As a newcomer I'm not really sure what John's referring to, though. Too bad...

  • by lazyjones on 3/19/2014, 12:07 PM

    He doesn't disclose much information, but it looks a bit like he (sourly) blames the industry and community for something that is very common elsewhere too: to run a public forum or mailing list, you now need not only the users' support and goodwill, but also legal counsel, a thick skin and willingness to challenge legal threats, as well as all sorts of technical means to fend of malicious activities (DoS/spam protection etc.).

    What's stopping such communities from going "underground", i.e. to some darknet where anonymity and protection from some of these hassles still exists?

  • by galapago on 3/19/2014, 12:36 PM

    "He who foresees calamities, suffers them twice over"

  • by Bjoern on 3/19/2014, 12:12 PM

    Wow, this is sad. Hope we can get more info on what was going on.

    Besides Bugtraq what mailing lists security wise do you follow?

    EDIT: Or what other general means by Twitter, Websites, Databases, Blogs etc. do you recommend?

  • by binaryatrocity on 3/19/2014, 2:20 PM

    First thing I saw in my inbox when I got to work this morning. Sad really, the list has certainly had it's moments.

    Can't help but be a little optimistic, at least the "Google Vulnerability with PoC" youtube-upload trollfest chain of emails is done flooding my inbox this month :D

  • by on 3/19/2014, 8:17 PM

    undefined

  • by gwu78 on 3/19/2014, 1:44 PM

    "... an industry that never should have become an industry."

  • by kang on 3/19/2014, 2:37 PM

    What are some other similar lists to follow?

  • by nixgeek on 3/19/2014, 12:08 PM

    Today is a sad day. I wonder what will replace full-disclosure as the de-facto vehicle to announce vulnerabilities.

  • by jruthers on 3/19/2014, 12:40 PM

    Would anyone mind explaining to me as a noob what kind of legal challenges public lists need to defend against these days?

    Spam, trolls and politics are not new, but legal threats and DoS attacks I didn't expect to be problems.

  • by teebsd on 3/19/2014, 9:14 PM
  • by rdl on 3/19/2014, 6:22 PM

    Sad :( This was my favorite mailing list for the past decade or so, although it's been in decline for years.

  • by scmurcott on 3/19/2014, 9:12 PM

    Really was a great list, one of my favorite. I will miss it, sincerely.

  • by DangerousPie on 3/19/2014, 11:55 AM

    He didn't really explain the full problem so maybe I am not fully appreciating the situation here, but this seems like a pretty big overreaction for a stupid request from some a single user.

  • by chris_wot on 3/19/2014, 1:43 PM

    What exactly happened?

  • by NathanOsullivan on 3/19/2014, 11:39 AM

    It seems ironic for the end to arrive without full disclosure of why.