Re: [Full-disclosure] Andrew Auerenheimer aka weev gets tree'd
You sound like a person who walked into the wrong room. David Kernell? I think you meant to get off at the 4chan floor. Zewbiechan. Very professional. Original Message From: zewb zewbiec...@gmail.com Apparently from: full-disclosure-boun...@lists.grok.org.uk To: BMF badmotherfs...@gmail.com, full-disclosure@lists.grok.org.uk Subject: Re: [Full-disclosure] Andrew Auerenheimer aka weev gets tree'd Date: Thu, 17 Sep 2009 00:06:02 -0500 Same here. I wanted to learn about security flaws and instead it's just all these dumb fags pretending they've doxed some big important person. What the fuck is this, 4chan or something? It's full disclosure of security holes, not full disclosure of the full names of people because they trolled the ux designer you have a crush on or something. Stop trying to impress everyone by saying you found some guy's dox. Even if you really did find them, I still don't really care. Apparently you think this weev guy is some kind of celebrity or something, but I've never heard of him and I don't care about the little grudge you have against him, so stop filling my inbox with you're dumb autistic retardery. Seriously, just get a fucking blogspot account or something and post all the shit there so I can go to my fucking inbox and not have to sift through all this shit. - Original Message - From:BMF To: full-disclosure@lists.grok.org.uk Sent: Wednesday, September 16, 2009 11:27PM Subject: Re: [Full-disclosure] AndrewAuerenheimer aka weev gets tree'd WTF is up with this mailing list? Isigned up a few weeks ago expecting full disclosure of security exploits orat least good security discussion. Instead what I got was full disclosure ofhow idiotic skr1p7 k1dd13z can be. BMF ___ Full-Disclosure - Webelieve in it. Charter:http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsoredby Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] Andrew Aurenheimer aka weev gets tree'd
what Original Message From: T Biehn tbi...@gmail.com To: zewbiec...@gmail.com zewbiec...@gmail.com Cc: GOBBLES gobbles1...@safe-mail.net, full-disclosure@lists.grok.org.uk Subject: Re: [Full-disclosure] Andrew Aurenheimer aka weev gets tree'd Date: Thu, 17 Sep 2009 12:19:09 -0400 Mapping weev-IRL has no real impact, as he has either an entirely different identity or a DBA, if this was a fictional account on weev's part it would be certainly easy, effective, and feasible for him to change a single letter in his name. For the next part, you might want to grab some calming tea or something... If you've achieved anything it's angering his online persona, these typically only become a bit more malicious and difficult to catch. You've succeeded only in creating an even larger 'weev.' Try posting a home address next time. For bonus points engineer some sort of scheme where the hive becomes enraged and R4L's him. It's been done before, and will be done again by those with real 'talent.' Given that weev has demonstrated competency in all the above I think it prudent that you not associate this disclosure to any of your other online identities. (Brag on IRC already? Who did you work with? You seem to be somewhat close to weev, enough to have a personal vendetta against him, do you know that everyone you've talked with actually hates the guy enough not to drop your pseudonym?) -Travis On Wed, Sep 16, 2009 at 8:52 PM, zewbiec...@gmail.com zewbiec...@gmail.com wrote: what does google earth have to do with any of this? On 9/16/09, GOBBLES gobbles1...@safe-mail.net wrote: What do you mean Sherrod *was* a fed? Obviously the point wasn't to ruin. The point was to salt the earth by filling google with your real name. I can now officially say the (Google) Earth has been salted for you. You'll never be able to live a real life again. You'll always be hiding in the shadows for the rest of your life now. In may not hit you now, but eventually you'll feeling suffering and despair. I'm the one who helped in the process of clipping your wings to keep your grounded. To leave you in the world where mediocrity will never come. You are a monster for what you did to Kathy... She's a great UX designer and a beautiful woman... Sincerely, Tim O'Reilly Btw all dogs go to heaven was awesome you fucking faggot Original Message From: Andrew A glutt...@gmail.com To: GOBBLES gobbles1...@safe-mail.net Cc: full-disclosure@lists.grok.org.uk Subject: Re: [Full-disclosure] Andrew Aurenheimer aka weev gets tree'd Date: Tue, 15 Sep 2009 23:52:42 -0500 Okay. You've been in contact with Hep? She's handed over her logs? Oh man, the FBI now has hundreds of megs of me scrolling ansi on IRC, telling her she's a sickly withered ghoul, calling her fat, and making fun of her Springeresque living situation of having 3 different kids by 3 different dads (seriously hep is basically the hip web2.0 version of used up trailer trash whore). Oclet's handed over his logs? Wow, the FBI now has records of all the times I've told him to stop doing cocaine and drinking and clean up his act. Sherrod DeGrippo was indeed a fed. If she's turned against me, the FBI now has all the records of me posting the information of people with autism to Encyclopedia Dramatica! I'm goin' down! Tehdely, the gay San Francisco Jew who works for blogging house Six Apart will be able to tell a jury that I, in the haze of a 5-balloon dose of nitrous oxide, did a sieg heil salute and shouted heil hitler while giggling hysterically. I, clearly, will be screwed by this revelation of SECRET KNOWLEDGE in the grand jury proceedings. And actually, you can make your living off of advertising and selling t-shirts. I made high sfigs off of direct marketing alone for several years. You antis are pathetic. You think you got one up on me by pasting some fuckin info I put in my fuckin LIVEJOURNAL? Is this what hackin is these days? Are you gonna start syndicating emo rants from 14 year old girls into f-d posts with ascii banners at the top, acting like you owned people? See, for a doxdrop to be proper, you have to do info that is not already public, and you have to tie it together in a way that reveals something about their lives that they did not want people to know. For example, when some clever soul revealed that Rob Levin of freenode didn't actually live in a trailer, had all sorts of welfare and was still using people's donations to supplement his income, that was a pretty sweet doxdrop: http://antisec.wordpress.com/2006/06/27/eyeballing-rob-levin/ Or when somebody pieced together Kathy Sierra's sordid history of dick sucking, that was pretty fuckin' awesome: http://www.derkeiler.com/Mailing-Lists/Full-Disclosure/2007-03/msg00507.html You, sir, are a fucking amateur. You
[Full-disclosure] [SECURITY] [DSA 1890-1] New wxwidgets packages fix arbitrary code execution
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - Debian Security Advisory DSA-1890-1 secur...@debian.org http://www.debian.org/security/ Giuseppe Iuculano September 19, 2009http://www.debian.org/security/faq - Packages : wxwindows2.4 wxwidgets2.6 wxwidgets2.8 Vulnerability : integer overflow Problem type : remote Debian-specific: no CVE Id : CVE-2009-2369 Tielei Wang has discovered an integer overflow in wxWidgets, the wxWidgets Cross-platform C++ GUI toolkit, which allows the execution of arbitrary code via a crafted JPEG file. For the oldstable distribution (etch), this problem has been fixed in version 2.4.5.1.1+etch1 for wxwindows2.4 and version 2.6.3.2.1.5+etch1 for wxwidgets2.6. For the stable distribution (lenny), this problem has been fixed in version 2.6.3.2.2-3+lenny1 for wxwidgets2.6 and version 2.8.7.1-1.1+lenny1 for wxwidgets2.8. For the testing distribution (squeeze), this problem will be fixed soon. For the unstable distribution (sid), this problem has been fixed in version 2.8.7.1-2 for wxwidgets2.8 and will be fixed soon for wxwidgets2.6. We recommend that you upgrade your wxwidgets packages. Upgrade instructions - wget url will fetch the file for you dpkg -i file.deb will install the referenced file. If you are using the apt-get package manager, use the line for sources.list as given below: apt-get update will update the internal database apt-get upgrade will install corrected packages You may use an automated update by adding the resources from the footer to the proper configuration. Debian GNU/Linux 4.0 alias etch - --- Debian (oldstable) - -- Oldstable updates are available for alpha, amd64, arm, hppa, i386, ia64, mips, mipsel, powerpc, s390 and sparc. Source archives: http://security.debian.org/pool/updates/main/w/wxwidgets2.6/wxwidgets2.6_2.6.3.2.1.5+etch1.dsc Size/MD5 checksum: 1070 122f76e514a09e27a2efeb83972508bf http://security.debian.org/pool/updates/main/w/wxwindows2.4/wxwindows2.4_2.4.5.1.1+etch1.tar.gz Size/MD5 checksum: 11008448 56e09f548341a24faab4e2494ccf3c2e http://security.debian.org/pool/updates/main/w/wxwindows2.4/wxwindows2.4_2.4.5.1.1+etch1.dsc Size/MD5 checksum: 1088 956079f1b2e0639fdd5edab2112c528a http://security.debian.org/pool/updates/main/w/wxwidgets2.6/wxwidgets2.6_2.6.3.2.1.5+etch1.tar.gz Size/MD5 checksum: 15785194 de6ed02cb129ce6393d132452999cd17 Architecture independent packages: http://security.debian.org/pool/updates/main/w/wxwidgets2.6/wx2.6-i18n_2.6.3.2.1.5+etch1_all.deb Size/MD5 checksum: 664476 ab249de067119db66091ecc4a4412d35 http://security.debian.org/pool/updates/main/w/wxwidgets2.6/python-wxtools_2.6.3.2.1.5+etch1_all.deb Size/MD5 checksum:17782 f176eaeafccacf0b965c68d3b61a0253 http://security.debian.org/pool/updates/main/w/wxwidgets2.6/wx2.6-examples_2.6.3.2.1.5+etch1_all.deb Size/MD5 checksum: 3633304 e2b5d8c1c0edcd2287a35a327576ebdd http://security.debian.org/pool/updates/main/w/wxwidgets2.6/wx2.6-doc_2.6.3.2.1.5+etch1_all.deb Size/MD5 checksum: 1252698 cb859a2500031b5cd6d4397f7bfd5eb3 http://security.debian.org/pool/updates/main/w/wxwindows2.4/wx2.4-i18n_2.4.5.1.1+etch1_all.deb Size/MD5 checksum: 372546 988d0727d645d9c75f4ae8509abd719b http://security.debian.org/pool/updates/main/w/wxwidgets2.6/python-wxversion_2.6.3.2.1.5+etch1_all.deb Size/MD5 checksum:21782 a704638d51c4ef98ec5a2f9473ae68a7 http://security.debian.org/pool/updates/main/w/wxwindows2.4/wx2.4-doc_2.4.5.1.1+etch1_all.deb Size/MD5 checksum: 1076678 e6271674af7b940be14ebfb52e23b92d http://security.debian.org/pool/updates/main/w/wxwindows2.4/wx2.4-examples_2.4.5.1.1+etch1_all.deb Size/MD5 checksum: 2709008 c7028e976a32f5244ebb27693db064c6 alpha architecture (DEC Alpha) http://security.debian.org/pool/updates/main/w/wxwindows2.4/python-wxgtk2.4_2.4.5.1.1+etch1_alpha.deb Size/MD5 checksum: 2713910 ba15f692945dbefedb47bae998f013c3 http://security.debian.org/pool/updates/main/w/wxwindows2.4/libwxbase2.4-dev_2.4.5.1.1+etch1_alpha.deb Size/MD5 checksum:25074 21e8730a7006310d0a84c407e4f2ae0e http://security.debian.org/pool/updates/main/w/wxwindows2.4/wx2.4-headers_2.4.5.1.1+etch1_alpha.deb Size/MD5 checksum: 564238 2370397d7591b72fc7609ce02f7f4f84 http://security.debian.org/pool/updates/main/w/wxwidgets2.6/libwxgtk2.6-dbg_2.6.3.2.1.5+etch1_alpha.deb Size/MD5 checksum: 19992954 db418cf6e2847b9907ef6a538f70adcc http://security.debian.org/pool/updates/main/w/wxwidgets2.6/wx-common_2.6.3.2.1.5+etch1_alpha.deb Size/MD5 checksum:50328 be45b6149b0c116e803fdd38e5572cef
[Full-disclosure] n3td3v's Twitter account hacked
Someone evidently hacked into n3td3v's Twiiter account and is spewing nonsense. http://twitter.com/n3td3v Maybe it's some sort of botnet CC account now, I dunno. ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] n3td3v's Twitter account hacked
Just saw that. Thot were new trolls by n3td3v pouring all the way to twitter. On 9/19/09, The Security Community thesecuritycommun...@gmail.com wrote: Someone evidently hacked into n3td3v's Twiiter account and is spewing nonsense. http://twitter.com/n3td3v Maybe it's some sort of botnet CC account now, I dunno. ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ -- -- Gichuki John Ndirangu, C.E.H , C.P.T.P, O.S.C.P I.T Security Analyst and Penetration Tester infosig...@inbox.com {FORUM}http://lists.my.co.ke/pipermail/security/ http://nspkenya.blogspot.com/ http://chuksjonia.blogspot.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
[Full-disclosure] No subject
how do we know you're not part of the n3td3v secret society? http://en.wikipedia.org/wiki/Secret_society Gichuki John Chuksjonia chuksjo...@gmail.com wrote: Just saw that. Thot were new trolls by n3td3v pouring all the way to twitter. The Security Community thesecuritycommun...@gmail.com wrote: Someone evidently hacked into n3td3v's Twiiter account and is spewing nonsense. http://twitter.com/n3td3v Maybe it's some sort of botnet CC account now, I dunno. ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/