asp email

If you've been to ToorCon or read The Register lately, you probably learned that Microsoft publicly announced not to prosecute flaw finders, or hackers that find flaws in Microsoft's network. They've been doing this since 2007, but now it's official. I think that is the right step, and a clear sign that it's important to thank hackers for their finds. basically it's a win-win situation, everyone benefits from it. While this made public I reveal a serious flaw I found on the Microsoft domain about a month ago. I took the effort to contact Microsoft, because it's wasn't some trivial XSS hole.  read more »