Use RegMon for real-time Reg watching and try this product for Snapshot
compares. I haven't used it but it looks to be fun and there is a
write-up in PCWorld about it.
---
Readme file of Regshot 1.61 2002/03/30
I have to agree with James,
If you are using Hushmail's free e-mail service and expecting that to
hide you from the government, then you are in trouble. Mine as well keep
e-mailing from your yahoo address anyways. You must assume all things
log your IP address, even anon proxies. Which most
I agree, renamed the Admin account and create a fake Admin account, put
very good logging on it. Because any attempts on this account would be
attacks.
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf
Of Steve Tornio
Sent: Tuesday, January 25, 2005
And the money payoff begins..
-Original Message-
From: jaynine [mailto:[EMAIL PROTECTED]
Sent: Tuesday, January 11, 2005 6:48 AM
To: Patch Management Mailing List
Subject: MS Antispyware makes deal to leave Weatherbug alone
I read this rather disturbing article on another tech
No IE patch, it would seem.
-Original Message-
From: Eric Schultze [mailto:[EMAIL PROTECTED]
Sent: Tuesday, January 11, 2005 12:09 PM
To: Patch Management Mailing List
Subject: New Security Patches from Microsoft
Three new security bulletins have been released
MS05-001
Agreed, I spoke a bit too fast. Peter Kruse e-mail me directly and
stated the same. Thanks for pointing that out.
-Original Message-
From: Larry Seltzer [mailto:[EMAIL PROTECTED]
Sent: Tuesday, January 11, 2005 2:04 PM
To: Todd Towles; 'Mailing List - Full-Disclosure'
Subject: RE
Sounds like you need AV and a bit of network security. If you are
scared of IRC trojans and detectable viruses..then your time would be better
spent putting those systems into place. Don't you think?
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Elle
to change your words right
in the middle of the sentence, I really don't care.
By
attacking me on a personal level, you have proven to me..to be unprofessional at
best.
From: Michael Evanchik
[mailto:[EMAIL PROTECTED] Sent: Wednesday, December 29,
2004 5:03 PMTo: Todd Towles
Well,
if you have Norton, it couldn't wreak havoc...now could it? Most of the AV
compaines are now detecting the exploit. This detection response is much faster
than most of the other exploits which are wreaking havoc on your network, so it
would sound.
Nice
work to Norton.
From:
GuidoZ is correct. I have seen companies ship new PCs out to customers
because of very bad infections and spyware...but of course they don't
patch them with anything. (Not even the LSASS holes)...so in two weeks
you have the same mess.
I look at it and see Sasser, SD-Bot and I know want you have
The NSA has bigger fish to worry about than Finland. =) Sorry
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf
Of Markus Jansson
Sent: Sunday, December 26, 2004 10:17 AM
To: James Tucker
Cc: full-disclosure@lists.netsys.com
Subject: Re:
Title: Message
Well,
there are some several still with FD - As Len stated last week, things aren't
100% yet ..don' t be too hard on him...lol
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Leeuwen,
Allan vanSent: Friday, December 24, 2004 2:01 AMTo:
Very funny, nice work.
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf
Of [EMAIL PROTECTED]
Sent: Wednesday, December 22, 2004 10:21 AM
To: bugtraq@securityfocus.com; [EMAIL PROTECTED];
full-disclosure@lists.netsys.com
Subject: [Full-Disclosure]
I would believe Security through obscurity is bad but Obscurity in
Security is good. As long as it is a step in your layered defense
stand, obscurity is ok, but don't relay on it for everything. Which is
good advice for everything anyways. Hide your port but take active steps
to secure SSH deeper,
So now, I just need to trick a user into running a malicious source file
that I assembed and sent him, this makes it much harder.
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf
Of Martin Pitt
Sent: Wednesday, December 22, 2004 4:53 AM
To: [EMAIL
You could setup a tunnel using Stunnel if you didn't want to use
SCP/SSH..but all are good ways of passing the file. Don't forget about
scripting GPG as well.
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf
Of Ron DuFresne
Sent: Wednesday, December
There were several serious holes just released in 4.3.9 of PHP. That is
a possible attack vector from what you are saying. Get 4.3.10 of PHP for
sure. As far as what this does or what all it would do, someone needs to
get a good catch of it.
Anyone ready to setup a box? =)
-Original
Or you could go buy some of these and link them together to reach over a
distance.
The First Commercial Quantum Cryptography solution - encryption per
photon =)
http://www.magiqtech.com/index.php
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf
Of
Not exactly true..it is called freedom...drinking is bad for you when
you take too much..but so are some vitamins are bad for you when you
take too much...let the government tax cigs, if you don't want to buy
the tax, don't buy them. Again we are way OT.
Never go to excess, but let moderation be
As stated in the FAQ of the patch page. It would appear the new baseline
for all future patches will be SP1 unless they decided to change it.
I am still using Windows XP, but extended security update support ended
on September 30th, 2004. What should I do?
Of
Nick FitzGerald
Sent: Thursday, December 02, 2004 2:18 PM
To: [EMAIL PROTECTED]; [EMAIL PROTECTED]
Subject: RE: [Full-Disclosure] Official IFRAME patch - make
sure it installs correctly
Todd Towles wrote:
As stated in the FAQ of the patch page. It would appear the new
baseline for all
Hacked by realloc() - Check out the Zone-H.org link.
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of
Cedric Blancher
Sent: Monday, November 29, 2004 7:52 AM
To: Rossen Naydenov
Cc: Full Disclosure
Subject: Re: [Full-Disclosure] Is www.sco.com
Well thanks for trying to pull it off the list...lol
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of bkfsec
Sent: Monday, November 29, 2004 2:49 PM
To: Thomas Sutpen
Cc: [EMAIL PROTECTED]
Subject: Re: Fwd: [Full-Disclosure] University Researchers
.15 is dramatic? I mean Microsoft went up .17 today..
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of
Jason Coombs
Sent: Monday, November 29, 2004 11:04 AM
To: Cedric Blancher
Cc: Rossen Naydenov; Full Disclosure
Subject: Re: [Full-Disclosure]
Yeah the last time I can remember that someone tried that on FD, was
that some called exploit that had a IRC trojan in it...it was discovered
after about 5 secs..lol
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Ron
Sent: Friday, November 26, 2004
Well, you know...most normal users don't know what a exploit is, they
would never know what FD is..lol
But you are right..I was going easy on the n00bs. ;)
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]
Sent: Friday, November 26, 2004 2:14 PM
To: Todd Towles
I haven't seen a patch that makes John capable of this, but I guess it
wouldn't be impossible.
You can look at ForceSQL v2.0 and Hydra. Hydra is put out by THC and
should be able to do what you want John to do for you.
-Todd
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL
Could you please not forward your spam to the list. This is a 411
scam...if you don't know what that is..then please contact this person
and talk to him.
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of
john morris
Sent: Thursday, November 25, 2004
:[EMAIL PROTECTED] On Behalf Of
Steve Wray
Sent: Wednesday, November 24, 2004 10:09 PM
To: [EMAIL PROTECTED]
Subject: Re: [Full-Disclosure] University Researchers
Challenge Bush Win In Florida
Todd Towles wrote:
Did the charter say something about political
messages?..please take
Correct me if I am wrong, but a LAN that is plagued by worms, DOS
attacks, people sniffing passwords and privacy issues..is called the
Internet. It is a untrusted network and you should protect your network
from it...defense in layers..firewalls..proxies..you know.
-Original Message-
Well logically, a person that owns a Cisco device could get help from
Cisco or at the very least their website. But he instead posted on a
grey security list, interesting...you know what they say, smells like a
kiddie, looks like a kiddie..you know the rest.
-Original Message-
From:
Do you seriously think there is a easy way to get the enable password
remotely? If you have the config, you can get it from there..if you have
the box you can do a password recovery by booting in rommon...otherwise
the box isn't yours..and you won't find a clear exact answer because
there isn't
Nope, that is what this is for... Only a few employees remain to prop
up the once-ubiquitous digital audio player with minor updates, but no
further improvements to Winamp are expected.
Therefore no big changes but they can fix small things. They tried with
5.0.6 but they will have to try again.
.
Should you use the web interface to connect your routers? Well no..there
are problem with it...learn the command line and therefore the problem
doesn't exist.
-Original Message-
From: Gary E. Miller [mailto:[EMAIL PROTECTED]
Sent: Wednesday, November 24, 2004 1:20 PM
To: Todd Towles
Cc
Did the charter say something about political messages?..please take it
off the list guys if possible...
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of
Paul Schmehl
Sent: Wednesday, November 24, 2004 11:22 AM
To: Jason Coombs; Gregory Gilliss;
Of devis
Sent: Sunday, November 21, 2004 12:11 AM
Cc: [EMAIL PROTECTED]
Subject: Re: [in] Re: [Full-Disclosure] IE is just as safe as FireFox
Todd Towles wrote:
Windows doesn't tell you about the Admin account and makes
the default
user a Admin. That isn't best method as you know
If you are on the box, having changed the name of the Admin is useless.
Naming doesn't safe you from a lot...a simple registry pull in Windows
will get you all the hashed passwords.
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of
Jeremy Davis
Dell gives the full OS cd and then a separate drivers CD, at least on
the business side. Not sure about the home side.
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Mike Hoye
Sent: Saturday, November 20, 2004 7:19 AM
To: [EMAIL PROTECTED]
Ohh don't worry I am not knocking it. The 6.4 version will play some of
those AVI files that the version 9 and 10 won't play because of codec
stuff, kinda of funny. =)
-Original Message-
From: GuidoZ [mailto:[EMAIL PROTECTED]
Sent: Saturday, November 20, 2004 1:15 AM
To: Todd Towles
To: Todd Towles
Cc: [EMAIL PROTECTED]
Subject: Re: [in] Re: [Full-Disclosure] IE is just as safe as FireFox
This is true. It will also play many other types of files
(with something like ffdshow) that WMP 9/10 can, although it
will do so with about have the memory footprint and start
Windows doesn't tell you about the Admin account and makes the default
user a Admin. That isn't best method as you know.
RunAs is great..but that is only good once you create a normal user -
and then delete your new default user. Or you log in in Administrator
and take away the full control of
It arrives at .doc, .txt and .word?
Where are you seeing that?
It can't be very dangerous as a TEXT file. As far as I know it uses the
normal double extensions tricks. Any good email filter should pick
this up and you should be fine. Anyone that just clicks on random
attachments in their
Microsoft integration: You remove the application that plays
MPEG movies from a system that has never needed to play MPEG
movies, and never will need to - and your system won't boot anymore.
Example - Anyone with XP, do a search for mplayer2.exe? What is this
you ask? It is media player 6.4
It shouldn't take a wireless expert to tell you that...he should try it.
I pick up all types of weird stuff all the time in Kismet..and it looks
like something..but I know it isn't..the SSID is A^B^C^B^D^S^G, or in
other words, trash.
-Original Message-
From: [EMAIL PROTECTED]
That
is like asking...why docops pick up the phone atthe homeof a
drug dealer? What do you think? They are getting the word out that if you were a
part of this site..that you have not been forgotten.
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of
[EMAIL
Here is the English version via babelfish and tinyurl.
In other words, the employee of Microsoft author of these sound files
would have used a pirated version of the software SoundForge.
http://tinyurl.com/5849c
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]
But they do own them..lol Seriously..
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of n3td3v
Sent: Thursday, November 18, 2004 10:03 AM
To: [EMAIL PROTECTED]
Subject: Re: [Full-Disclosure] Re: controversial shadowcrew
site hacked by secret
I sent this to n3td3v yesterday. Why look into the news..just go to the
DOJ website...st8r to the fish's mouth.
Indictment for hundreds of credit cards, UK passports, state licenses,
school IDs, bank accounts...etc..
-Original Message-
From: Todd Towles
Sent: Tuesday, November 16
Nicely done Skylined.
Hey Jason,
If you don't like FD... Might want to get on BugTraq..for your
super-clean delayed news.
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of
Berend-Jan Wever
Sent: Wednesday, November 17, 2004 8:59 AM
To: [EMAIL
If you want to do Kismet, get a Sharp Zaurus handheld and install
OpenZaurus. Been running Dsniff, Kismet and Nmap on my handheld.
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Dave King
Sent: Wednesday, November 17, 2004 10:52 AM
To: [EMAIL
I would have to agree with GuidoZ. The changing MAC would point to
something being up. AP using different channels is pretty common in some
models but the MAC changing and being different vendors points to fake
AP.
I bet you 10 bucks the WEP key changes on all but one of them each time
too..lol
OPENSTEP's Mach/BSD amalgam is the basis for Apple's Mac OS X
operating system.
Is that BSD in there? Ummm...
Apple took over OPENSTEP, no wonder they selected NextStep.
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of
[EMAIL PROTECTED]
Sent:
, would rather move forward.
joe
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of
Todd Towles
Sent: Friday, November 12, 2004 10:10 AM
To: Rafel Ivgi, The-Insider;
[EMAIL PROTECTED]; [EMAIL PROTECTED]
Subject: RE: [Full-Disclosure] IE
Darwin and BSD...Darwin is the open source kernel that OS X uses...=)
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of JxT
Sent: Tuesday, November 16, 2004 7:45 AM
To: [EMAIL PROTECTED]
Cc: [EMAIL PROTECTED]
Subject: Re: [in] Re:
it was
OT..which is given.
-Original Message-
From: Danny [mailto:[EMAIL PROTECTED]
Sent: Tuesday, November 16, 2004 10:28 AM
To: Todd Towles
Cc: [EMAIL PROTECTED]
Subject: Re: [in] Re: [Full-Disclosure] IE is just as safe as FireFox
On Tue, 16 Nov 2004 09:07:56 -0600, Todd Towles
: Tuesday, November 16, 2004 1:09 PM
To: Todd Towles
Cc: [EMAIL PROTECTED]
Subject: RE: [Full-Disclosure] IE is just as safe as FireFox
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Yo Todd!
On Tue, 16 Nov 2004, Todd Towles wrote:
IE isn't part of the OS in Microsoft mind
What do you think?
http://www.usdoj.gov/opa/pr/2004/October/04_crm_726.htm
We all knew they were doing fake IDs and the such..it was only time.
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of n3td3v
Sent: Tuesday, November 16, 2004 10:59 AM
To:
Center (MCRC)Finjan Software LTDE-mail: [EMAIL PROTECTED]-Prevention
is the best cure!- Original Message - From: "Martin Mkrtchian"
[EMAIL PROTECTED]To: "Todd Towles" [EMAIL PROTECTED]Cc: "Mailing List -
Full-Disclosure"
problem going that extra mile when it comes to
patching against variants of a vulnerability (ADODB.stream,
shell: etc).
Mosl software has vulnerabilities at some stage, it's how you
deal with it.
-Original Message-
From: Todd Towles [EMAIL PROTECTED]
Date: Thu, 11 Nov 2004 15:59:20
, The-Insider
Security Consultant
Malicious Code Research Center (MCRC)
Finjan Software LTD
E-mail: [EMAIL PROTECTED]
-
Prevention is the best cure!
- Original Message -
From: Martin Mkrtchian [EMAIL PROTECTED]
To: Todd Towles [EMAIL PROTECTED]
Cc
Expect POC exploits, active internet worms, e-mail trojans, bad words
and off topic messages...expect everything, trust nothing...Welcome to
FD, enjoy your stay =)
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of
Jeff Donahue
Sent: Friday, November
Malicious Code Research Center (MCRC)
Finjan Software LTD
E-mail: [EMAIL PROTECTED]
-
Prevention is the best cure!
- Original Message -
From: Martin Mkrtchian [EMAIL PROTECTED]
To: Todd Towles [EMAIL PROTECTED]
Cc: Mailing List - Full-Disclosure
[EMAIL
vulnerability. 0 day exploit is in the wild and no fix for
it, yet they claim its secure enough.
If the programmers are as smart as the company press
releasers, I can
see why I.E. still sux.
Martin
On Thu, 11 Nov 2004 15:59:20 -0600, Todd Towles
[EMAIL PROTECTED] wrote
Subseven had a backdoor in it for years
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of
Michal Zalewski
Sent: Thursday, November 11, 2004 9:15 AM
To: TK-421
Cc: [EMAIL PROTECTED]
Subject: Re: [Full-Disclosure] Moox firefox/thunderbird
But please continue your finger pointing and pointless fighting in
private.
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Exibar
Sent: Thursday, November 11, 2004 9:50 AM
To: mike lieman; [EMAIL PROTECTED]
Subject: Re: [Full-Disclosure] Re: U.S.
Microsoft's security and mangement product manager (Ben English) says...
At a security roundtable discussion in Sydney on Thursday, Ben English,
Microsoft's security and management product manager, told attendees that
IE undergoes rigorous code reviews and is no less secure than any
other
Who are you to question him about whom he can question? LOL Can't we all
just get along?
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of
David Maynor
Sent: Wednesday, November 03, 2004 2:36 PM
To: Cryptochrome
Cc: KF_lists; [EMAIL PROTECTED]
Yep, Dave pointed that out really fast...
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of
Barrie Dempster
Sent: Wednesday, November 03, 2004 3:19 PM
To: [EMAIL PROTECTED]
Subject: Re: [Full-Disclosure] New Remote Windows Exploit (MS04-029)
I read a article about how the site got hacked into...recently. Did
anyone else read this? If it was hacked then because this is a reaction
security measure and not a we want to keep all non-amercians from
seeing our stuff. I would guess it is a security measure has it is easy
to see mirrors of it
We have had this talk on FD before...just search for AV Naming in the
archivesfun stuff.
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of
Hugo van der Kooij
Sent: Friday, October 29, 2004 7:54 AM
To: [EMAIL PROTECTED]
Subject: Re: [SPAM] Fw:
Slashdot.org
"A security hole in GMail has
been found (an XSS vulnerability) which allows access to user accounts without
authentication. What makes the exploit worse is the fact that changing passwords
doesn't help. The full details of the exploit haven't been disclosed. The
vulnerability
Request like that will get you kicked out of other groups. Yet the
request was fill quickly, even without the requester pretending to be a
Security Professional
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of
Andrew Poodle
Sent: Thursday, October
Maybe because they are e-mail borne and if you haven't noticed, you post
on here via e-mail? This list is open, therefore as long as people don't
fix their computers, you will get viruses. Welcome to FD =)
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf
Sounds like a IRC trojan that is trying to spread via network shares
(maybe weak passwords). 6667 is the IRC port, so it looks like it needs
that for command and control.
Can you get a copy of it?
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of
]
Sent: Thursday, October 21, 2004 11:33 AM
To: Todd Towles; [EMAIL PROTECTED]
Subject: SV: [SPAM] RE: [Full-Disclosure] interesting trojan found
Hi Todd,
But if it is a rootkit, does it not hide from normal AV scanning?
Nope, you'll see it in the systemprocess, but since it's
active
You should post this to the security job mailing list at SecurityFocus.
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of
David Stein
Sent: Thursday, October 21, 2004 3:16 PM
To: [EMAIL PROTECTED]
Subject: [Full-Disclosure] OT: Opening for
I second that, do we hear a third?
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of KF_lists
Sent: Thursday, October 21, 2004 1:36 PM
To: [EMAIL PROTECTED] [EMAIL PROTECTED]
Subject: Re: [Full-Disclosure] Will a vote for John Kerry be
counted by
Changing it is a option, but that is true for any password cracking. But
of course changing the password makes your presence really known.
-Original Message-
From: Aviv Raff [mailto:[EMAIL PROTECTED]
Sent: Wednesday, October 20, 2004 1:16 AM
To: Todd Towles; 'Pavel Kankovsky
Yep PEBuilder will allow you to make a Windows XP/2003 live boot up CD.
I also believe Knoppix 3.4 will allow you to write on NTFS once you can
the permission on the mount to write and read. It mounts with Read-only
by default for security of course.
-Original Message-
From: [EMAIL
[mailto:[EMAIL PROTECTED]
Sent: Tuesday, October 19, 2004 1:24 AM
To: Todd Towles
Cc: [EMAIL PROTECTED]
Subject: Re: [Full-Disclosure] why o why did NASA do this.
how would this list help me spam?
Google your email address - then simply use a bot to gather
ALL the email addresses
point about the career job. Even if they aren't there, knowing a
time and a name can get you more information out of a person in another
dept, I think. I wouldn't try =)
-Todd
--
Peace. ~G
On Tue, 19 Oct 2004 07:59:36 -0500, Todd Towles
[EMAIL PROTECTED] wrote:
I meant this outdated
As
everyone knows, there is very little that is OT on FD...so if you don't have
anything nice to sayshhh! lol
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Richard
StevensSent: Tuesday, October 19, 2004 12:22 PMTo:
Bernardo Santos Wernesback;
[EMAIL
I was under the understand that passwords of over 14 characters were
stored with a more secure hash, therefore 14 characters passwords were
harder to crack, due to the more secure hash. Windows will create two
different hashes for passwords shorting than 14 characters, I do
believe.
Just use a
Posts
On Sun, 17 Oct 2004 12:34:33 -0500, Todd Towles
[EMAIL PROTECTED] wrote:
I agree with your idea, but I am one of those uni graduate/20
something professionals. I am very passion about my work and the
security of the company I work for. I work in a rural state and the
money isn't
Exactly as I stated eariler...this is just information leakage...old as
it might be, it helps...the people on the list are just doing their
jobs...getting paid and giving information to a employee that knows
their name (and is higher in the company) seems harmless. Spam isn't the
issue with this
I agree with your idea, but I am one of those uni graduate/20 something
professionals. I am very passion about my work and the security of the
company I work for. I work in a rural state and the money isn't as high
as some other places. I took a pay cut to work in the IT field when I
finished
Oh yeah..I am sure if you called and pretended to be someone, they would
ask for your ID number? If you believe that any company (including NASA)
has all their employees in a security mind frame then you haven't tried.
You could start to piece together all types of information. This is
information
TrendMicro sees it as a MS04-028 exploit
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of
Andrey Bayora
Sent: Thursday, October 14, 2004 2:46 AM
To: [EMAIL PROTECTED]
Cc: [EMAIL PROTECTED]
Subject: [Full-Disclosure] Bypass of Antivirus software
Yep, sorry about that. Sophos isn't on VirusTotals list...anyone running
it?
-Original Message-
From: Cassidy Macfarlane [mailto:[EMAIL PROTECTED]
Sent: Thursday, October 14, 2004 10:42 AM
To: Todd Towles; Andrey Bayora; [EMAIL PROTECTED]
Cc: [EMAIL PROTECTED]
Subject: RE: [Full
Are you talking about the BITS change? Where it does BITS over HTTP?
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of
Daniel H. Renner
Sent: Wednesday, October 13, 2004 10:37 AM
To: [EMAIL PROTECTED]
Subject: Re: [Full-Disclosure] Possibly a
That is a widely used tool that is dropped by various malware programs. I think even
one of the JPEG exploits was dropping radmin.exe
It be better to assume you have a infection and prove yourself wrong than the other
way around. Look into it pretty deep, I would suggest.
-Original
. But if you are e-mailing a list asking about it
and what it is. You most likely didn't install it.
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of
Peter Kruse
Sent: Tuesday, October 12, 2004 10:41 AM
To: Todd Towles; Sowhat .; [EMAIL PROTECTED
Why make more computer laws...when the current computer laws can not be
enforced correctl? We all know that the CAN-SPAM Act really cut the spam
out of our e-mails *sigh* Then the INDUCE act will make half the stuff
in a normal person's house illegal.
Making laws is just playing around...paper
Well, the e-mail did say this... You are receiving this email because
you have communicated with the Microsoft Security Response Center using
PGP in the past. Therefore it would make sense that they tell you about
their new PGP key..as long as the sender is real...but that is another
story.
I suggest you search in the patchmanagment mailing list on
patchmanagement.org
Sorry to tell you, but the OS isn't the only thing that needs patching.
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of
BillyBobKnob
Sent: Wednesday, October 06, 2004
To expand on this About Wrap. I have posted images to this site
beforebefore the site went downhill. Some of the authors would allow
the site to wrap their images with ads (therefore making money for the
site). It appears they are now wrapping images with installed ad-ware.
It appears the
Meant for the list I believe.
-Original Message-
From: GuidoZ [mailto:[EMAIL PROTECTED]
Sent: Wednesday, September 29, 2004 1:05 PM
To: Todd Towles
Subject: Re: [Full-Disclosure] Re: Full-Disclosure digest, Vol 1 #1933 -
20 msgs
That's also my understanding, and expereince, from
What if it copies itself to the wallpaper?
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Geo.
Sent: Tuesday, September 28, 2004 1:27 PM
To: [EMAIL PROTECTED]
Subject: RE: [Full-Disclosure] Re: Full-Disclosure digest, Vol 1 #1933 -
20
far-fetched.
that could be modified in a way that makes it
undetectable right now?
-Todd
-Original Message-
From: Barry Fitzgerald [mailto:[EMAIL PROTECTED]
Sent: Tuesday, September 28, 2004 1:55 PM
To: Todd Towles
Subject: Re: [Full-Disclosure] Re: Full-Disclosure digest, Vol 1 #1933 -
20 msgs
Todd
That would seem to be in the Char_Header function...
-Original Message-
From: Aaron Horst [mailto:[EMAIL PROTECTED]
Sent: Tuesday, September 28, 2004 3:08 PM
To: [EMAIL PROTECTED]
Cc: Todd Towles
Subject: RE: FW: [Full-Disclosure] JPEG AV Detection
Best I can tell, the Norton filter
1 - 100 of 218 matches
Mail list logo