moral dilemma

hokay… so lets say i theoretically found a vulnerability in a semi-popular site. Ive theoretically used the 'comments and suggestions' to alert the admin but they are just too ignorant to reply and have not fixed it 3 weeks after ive sent them the comment.

so now, theoretically should i:

1. exploit the vulnerability to replace their index.html with a warning and move their index.html to index2.html.

2. send an email to the guy who owns the site, but has nothing to do with the development (i would need a way to mask my ip when sending the email, someone have any help with that?)

3. do nothing, wait around for a malicious hacker to pwn the living shit out of it.

4. other ideas?

If you really believe in the quote that you've placed in your sig, then you will fuck that site up until there's no hope for it.

Force them to learn the hard way.

i dont really believe in meaningless destruction, i have nothing against the site infact i use it often. ive tried to warn them, mayb they think im just joshing around. mayb a little theoretical demonstration is in order :evil:

I think you should just do option 1. Its the best way to do it. Either that or mail the damn webmaster xD

k i tried to contact them one more time. if they dont reply again im going with option 1 :happy:

DigitalFire wrote: k i tried to contact them one more time. if they dont reply again im going with option 1

Good choice.