FYI, in case anyone hadn't worked it out yet, the
provided demo works against Konqueror 3.2.1 on KDE
3.2.1 on Suse Linux too.
Pasting the given URL into vi doesn't show the
problem, but view page source (which brings up the
page in KWrite) and od -xc do expose the attack.
Cheers,
Simon
I forget that some people don't have a sense of humor. Also thought
the ? in the subject made a statement about how fun it was.
On Wed, 1 Dec 2004 10:42:29 +0530, Aditya Deshmukh
[EMAIL PROTECTED] wrote:
ALD http://picserv.on.zoy.org/IM39571.jpg
ALD
ALD Make sure your speakers are
ok, who has to go and be a jackass?
___
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
http://picserv.on.zoy.org/IM39571.jpg
Make sure your speakers are turned down if yo are at work.
___
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
to refused to pay or hold up the end of a bargain or agreement, and
is faxing a document (no hard copies sent via post) accepted as a legal
document in a court of law.
I appreciate any help you can give.
Regards
Simon Lorentsen
---
Outgoing mail is certified Virus Free.
Checked by AVG
You're right, in all that Dune of Sand, there really are some pearls, hard to
find but they are there.
Simon
Barry Fitzgerald wrote:
Berend-Jan Wever wrote:
If you can't stand the heat, get out of the kitchen!
And btw: if you're not cooking, get the fuck out too!
Yeah - how hard
anyone familiar with this group (media-motor.net/Roings.com) ? they
seem to be sending downloader.trojan files to unsuspecting people
using everyone.net webmail accounts.
http://mmm.media-motor.net/soft/default.exe
the webmail i discovered it on was from sunguru.com
tries to download that file
, since it is something that is likely to happen and
definitely needs to be pushed into the right direction.
Simon
--
GPG Fingerprint: 040E B5F7 84F1 4FBC CEAD ADC6 18A0 CC8D 5706 A4B4
signature.asc
Description: Digital signature
There are some internet relay chat daemons that allow this, but doing a
simple ping to the channel shows them, like unreal and ultimate, or a simple
whois if you know the opers will show them in the channel when they are +I
that you are part of.
It dosent require much skills or programing as a
place.
Unless you go on fed run irc networks (imho I know of none run and
maintained by a government agency)
Regards.
-Original Message-
From: Alex Schultz [mailto:[EMAIL PROTECTED]
Sent: 14 October 2004 23:51
To: Simon Lorentsen
Subject: RE: [Full-Disclosure] IRC spying to increase
I stand corrected
There is a lovely little link at the bottom of the page. Heh...
http://www.citibank.com/domain/redirect/footer/abuse.htm
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Pablo
Sent: 08 October 2004 11:31
To: [EMAIL PROTECTED]
This and other similar ones have been flooding it's way across the internet
for a while now, that one I have received in most of my email accounts
(personal business) over the last 2 weeks.
Unfortunately while people are stupid enough to believe the email, who will
click on the link and supply
ActiveX, to remove
that product from the market, that would certainly solve A LOT of troubles!
That was my 2c.
Simon
On Wed, 6 Oct 2004 23:18:12 -0400, Bankim J. Tejani wrote
While good in principle, this legislation is hopelessly
unenforceable and is almost certainly just election year politics
as a Lite Windows
audit software, that would check if there is a firewall, if it is configured
well, check if there is an anti-virus, anti-malwarez and so... this would
facilitate my job greatly! ;)
Simon
On Thu, 7 Oct 2004 10:58:04 -0400, Bankim J. Tejani wrote
Isn't that kind of like Jiffy
On Thu, 7 Oct 2004 17:29:26 +0100, Randal, Phil wrote
Simon says:
Of course, if they are able to browse the internet for a bit, I (the
tech guy) can help them so they can download an anti-malwarez such as
ad-aware. But sometimes, they have browser hi-jackers and can't browse
at all, all
that they don't need to get the browser, just the anti-adwarez and use their
IE again right after. That would simplify things and help clients and us as
well very much.
So, I'm forwarding your post to my job email and thanks a lot for the
suggestion!
Simon
1: you ping ftp.mozilla.org and note the IP
of replacing your data is extremely intangible.
And what about Mass conversion? A single hard drive may not constitute
enough for any legal measures, but a thousand may be enough?
Still the problem really is at proving who or what is the cause of the
conversion.
Simon
Hi,
Any recommendations on site hosting services / Portal framewroks / site
builders...
I've heard PHPNuke is pretty solid.
Simon
--
GPG Fingerprint: 040E B5F7 84F1 4FBC CEAD ADC6 18A0 CC8D 5706 A4B4
___
Full-Disclosure - We believe
two days to get the image of our drunken sysadmins
hacking on innocent Goblins out of my mind (can't people at least
interpunctuate correctly?).
Since that day, occasionally users ask why the MOTD reads: This system
has NOT been hacked by the Goblin-Hacking group. :-)
Simon
(Lessions learned
Hi all!
Where can i find the Cisco's stolen code?
regards,
B$H
m-sec
I recommend you try here :
http://tinyurl.com/2fmxs
Contact any of the people listed there,
they will definately help you to obtain
Cisco's stolen code!
___
Full-Disclosure
)USC INFORMATION SCIENCES INST
INTERNET ASS'NED NOS.AUTHORITY
4676 ADMIRALTY WAY
MARINA DEL REY CA 90292-6695
Best Regards,
Simon Hailstone
___
Full
recovery on Black Diamond switches is described
here :
http://www.tancom.com/resources/extreme_switch_password.asp
Best Regards
Simon Hailstone
Orthogon Systems
___
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure
and then loosen the
firewall settings after that?
Granted, you won't be able to install AntiSpy or sth. like that from
the 'net, then, but the $1 for a CD-R shouldn't really matter if you
have just bought Windows.
Simon
--
GPG Fingerprint: 040E B5F7 84F1 4FBC CEAD ADC6 18A0 CC8D 5706 A4B4
in unswitched networks, which are rather seldom
nowadays.
Simon
--
GPG Fingerprint: 040E B5F7 84F1 4FBC CEAD ADC6 18A0 CC8D 5706 A4B4
___
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
, code signing, web services, ...) and
whether that key could sign certificates. OpenPGP simply authenticates
an entity and makes no assumption or statement about the purpose of the
key.
So, it's once again a conspiracy backed by evil large corporations that
want us all to use S/MIME. :-)
Simon
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Greetings,
I've recently been told that 13 NASA servers were compromised by some
group in Brazil? Can anyone point me to any articles on this incident?
- --
Regards,
-simon-
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.2.1 (GNU/Linux
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Thanks for the input guys.
You'll notice that I asked this in the early AM before there were many
articles on the subject, now they are many. ;)
Shaolin Tiger wrote:
On Fri, 19 Dec 2003 10:12:45 -0500, Simon Smith wrote:
-BEGIN PGP SIGNED
more about this? I already have a very
detailed understanding of the evasion theories, but I want to put some
of them to the test on my own product(s). Pointers, advice?
- --
Regards,
-simon-
When a shepherd goes to kill a wolf, and takes his dog along to see the
sport, he should
0x0804a20a sc+106:int$0x80
0x0804a20c sc+108:xor%ebx,%ebx
0x0804a20e sc+110:xor%eax,%eax
0x0804a210 sc+112:inc%eax
0x0804a211 sc+113:int$0x80
0x0804a213 sc+115:add%al,(%eax)
End of assembler dump.
Demangles rm -rf / and execs it?
Simon
?). This prevents AV (email, content scanners and desktop)
from intercepting the file and removing it.
Simon
smime.p7s
Description: S/MIME cryptographic signature
. Sometimes the risk is worth it.
If you really must put a limit, prevent attachments greater in size than
say 200K, anything else should use a link to a website/ftp server for
distribution.
Just my two euro cents worth . :-)
Rgds,
Simon
smime.p7s
Description: S/MIME cryptographic signature
always cost less than a compromise.
- -simon
John Sec wrote:
and if blaster actually *did* have something to do with the
blackout, what are the chances that the company officials will give
the real reason? i mean, they would be lucky that a relatively benign
worm got to their systems
-BEGIN PGP MESSAGE-
Version: GnuPG v1.2.1 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
hQEOAw3ENNOYE9GtEAP/WqcYTf8wH867hPDRwjNd9d76MzUUEMvpg858Wpes6rth
W3+PDEr+hz4cmBVI9y7Ii+X2gHxpAfrO5H4FJjy6zX3uSKEBv4NZQu6cJSCFTnDj
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Gml,
You might want to re-consider that statment. There are many obvious
critical things connected to the internet that affect our lives. The
lack of realization of that is why security is such a big issue. Ohh
that won't affect me... where'd
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
What OS would you say that they use?
[EMAIL PROTECTED] wrote:
At least on the west coast they do not, I think the requirements of the
systems are way out of Microsoft's range. Lot's and Lot's of Unix
-Original Message-
From: Michael Scheidell
://www.microsoft.com/technet/treeview/default.asp?url=/technet/security/bulletin/MS03-026.asp
Thanks
Simon Glassman
On Tuesday 12 August 2003 11:53 am, Jasper Blackwell wrote:
Hi All,
Does anyone know if this MSblast worm affects Win NT machines, or is it
just infecting 2000 and XP.
Thanks
Jasp
-BEGIN PGP MESSAGE-
Version: GnuPG v1.2.1 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
hQEOAw3ENNOYE9GtEAP9E1l32mQgF8K6W/YSJE/asmF4NYfuRVwnFORbszeiKqt/
fEiqGnlvrx+opeqPOXkidOpsHuU3UJVnvtFLVmXrpPljSdQUOMUjHPiUFV5WNVVQ
Worked here - UK Version
Version 6.0.2800.1106.xpsp2.030422-1633
System is fully updated with all patches.
Caused MSIE to hang, only the window I tried it in, all other msie
windows worked fine.
Sincerely yours,
Simon Lorentsen
-Original Message-
From: [EMAIL PROTECTED]
[mailto
Thomas Sjögren wrote:
Steve Wray wrote:
Interesting topic though, is it possible to
*destroy* computers remotely at all?
delurk
Old, but interesting stuff:
http://www.tfd.chalmers.se/~valeri/EMP.html
[T]he bomb was stored in a briefcase and emitted short, high-energy pulses
reaching 10
Quote [Which poor english ISP was it that was recently DDOSed into
non-existance?]
I belive it was called 'Cloud Nine'
--
Box Smart Network
Intelligent Solutions.
http://www.box-smart.net
smime.p7s
Description: S/MIME cryptographic signature
Quote [Which poor english ISP was it that was recently DDOSed into
non-existance?]
I belive it was called 'Cloud Nine'
--
Box Smart Network
Intelligent Solutions.
http://www.box-smart.net
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Ron
DuFresne
been infected) plus a not-really-predictable component
(system time, IIRC) plus some sort of counter because the system clock
is so slow.
So what we have witnessed is the structured approach. The question
remains whether the worm author is a maths wizard or just plain lucky.
Simon
--
GPG
On Sat, Feb 01, 2003 at 01:54:36PM +0100, Simon Richter wrote:
Hi,
According to the analysis posted to NANOG by a number of
researchers (http://www.caida.org/analysis/security/sapphire/),
It infected the majority of hosts within the first 10 minutes.
[...]
This seems important
, but this comes seldom from someone who
you already trust through what he/she said before. Of course, this
system is subject to social engineering, but I couldn't think of a
better system.
Simon
--
GPG Fingerprint: 040E B5F7 84F1 4FBC CEAD ADC6 18A0 CC8D 5706 A4B4
msg02182/pgp0.pgp
.
Simon
--
GPG Fingerprint: 040E B5F7 84F1 4FBC CEAD ADC6 18A0 CC8D 5706 A4B4
msg02003/pgp0.pgp
Description: PGP signature
Heorgi,
On Sun, Dec 22, 2002 at 02:29:26PM +0200, Georgi Guninski wrote:
Simon Richter wrote:
[...] and I'm asking now whether you would like
those features on your home box as well, even if you had to give up DVD
copying or get special illegal hardware for it.
Illegal hardware???
Special
if you take
care that no unencrypted data leaves the sandbox (which makes the
hardware pretty unusable).
Simon
--
GPG Fingerprint: 040E B5F7 84F1 4FBC CEAD ADC6 18A0 CC8D 5706 A4B4
msg01664/pgp0.pgp
Description: PGP signature
a lot.
[Macro viruses]
Well, we can't do much about that, I think. There are always stupid
people running stupid programs.
Simon
--
GPG Fingerprint: 040E B5F7 84F1 4FBC CEAD ADC6 18A0 CC8D 5706 A4B4
msg01670/pgp0.pgp
Description: PGP signature
buy/use it if you had the choice? I mean, there are a lot of
advantages... :-)
Simon
--
GPG Fingerprint: 040E B5F7 84F1 4FBC CEAD ADC6 18A0 CC8D 5706 A4B4
msg01653/pgp0.pgp
Description: PGP signature
of liberalism, so I think it has a good chance of becoming law.
:-)
Simon
--
GPG Fingerprint: 040E B5F7 84F1 4FBC CEAD ADC6 18A0 CC8D 5706 A4B4
msg01640/pgp0.pgp
Description: PGP signature
Can we not move the debate forward from Open Source is better
or worse in terms of security issues.
Many factors influence how many flaws software has; developer
know-how, developer commitment, development methodology, design
quality, language choice and quality assurance procedures.
Many of
8.3.3-REL: c,e,f,h
That might explain why there isn't a whole new version, although it is
interesting that none are running BIND 9, not even the f name server which
is hosted by ISC itself.
F is now running 9.2.2rc1 (at least from here, looks like we
will be getting a proliferation of F's
52 matches
Mail list logo