[Full-disclosure] dev mem injection
Oh Anthony, Why do you rip off other peoples work and claim it as your own? ... http://rafb.net/p/ZbqJKb55.html Do you think we live under a rock and don't know this technique has been around for a long time? See the comments on http://www.darkreading.com/security/vulnerabilities/showArticle.jhtml?articleID=216500687for a better idea... You are a joke and a cancer on this industry. You steal others work, try and claim it as your own in order to drive sales to your company. Fuck you and die, you motherless cunt. ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] Apple Safari ... DoS Vulnerability
This was 2 years well spent... NOT! Seriously what is with all these people popping up releasing advisories that are absolute SHIT? Is it to try and get jobs or what? On Tue, Mar 3, 2009 at :55 AM, ISecAuditors Security Advisories advisories at isecauditors.com wrote: = INTERNET SECURITY AUDITORS ALERT 2007-003 - Original release date: August 1st, 2007 - Last revised: January 11th, 2009 - Discovered by: Vicente Aguilera Diaz - Severity: 3/5 = I. VULNERABILITY - CSRF vulnerability in GMail service II. BACKGROUND - Gmail is Google's free webmail service. It comes with built-in Google search technology and over 2,600 megabytes of storage (and growing every day). You can keep all your important messages, files and pictures forever, use search to quickly and easily find anything you're looking for, and make sense of it all with a new way of viewing messages as part of conversations. III. DESCRIPTION - Cross-Site Request Forgery, also known as one click attack or session riding and abbreviated as CSRF (Sea-Surf) or XSRF, is a kind of malicious exploit of websites. Although this type of attack has similarities to cross-site scripting (XSS), cross-site scripting requires the attacker to inject unauthorized code into a website, while cross-site request forgery merely transmits unauthorized commands from a user the website trusts. GMail is vulnerable to CSRF attacks in the Change Password functionality. The only token for authenticate the user is a session cookie, and this cookie is sent automatically by the browser in every request. An attacker can create a page that includes requests to the Change password functionality of GMail and modify the passwords of the users who, being authenticated, visit the page of the attacker. The attack is facilitated since the Change Password request can be realized across the HTTP GET method instead of the POST method that is realized habitually across the Change Password form. IV. PROOF OF CONCEPT - 1. An attacker create a web page csrf-attack.html that realize many HTTP GET requests to the Change Password functionality. For example, a password cracking of 3 attempts (see OldPasswd parameter): ... img src= https://www.google.com/accounts/UpdatePasswd?service=mailhl=engroup1=OldPasswdOldPasswd=PASSWORD1Passwd=abc123PasswdAgain=abc123p=save=Save img src= https://www.google.com/accounts/UpdatePasswd?service=mailhl=engroup1=OldPasswdOldPasswd=PASSWORD2Passwd=abc123PasswdAgain=abc123p=save=Save img src= https://www.google.com/accounts/UpdatePasswd?service=mailhl=engroup1=OldPasswdOldPasswd=PASSWORD3Passwd=abc123PasswdAgain=abc123p=save=Save ... or with hidden frames: ... iframe src= https://www.google.com/accounts/UpdatePasswd?service=mailhl=engroup1=OldPasswdOldPasswd=PASSWORD1Passwd=abc123PasswdAgain=abc123p=save=Save iframe src= https://www.google.com/accounts/UpdatePasswd?service=mailhl=engroup1=OldPasswdOldPasswd=PASSWORD1Passwd=abc123PasswdAgain=abc123p=save=Save iframe src= https://www.google.com/accounts/UpdatePasswd?service=mailhl=engroup1=OldPasswdOldPasswd=PASSWORD1Passwd=abc123PasswdAgain=abc123p=save=Save ... The attacker can use deliberately a weak new password (see Passwd and PasswdAgain parameters), this way he can know if the analysed password is correct without need to modify the password of the victim user. Using weak passwords the Change Password response is: - The password you gave is incorrect. , if the analysed password is not correct. - We're sorry, but you've selected an insecure password. In order to protect the security of your account, please click Password Strength to get tips on choosing to safer password. , if the analysed password is correct and the victim password is not modified. If the attacker want to modify the password of the victim user, the waited response message is: Your new password has been saved - OK . In any case, the attacker evades the restrictions imposed by the captcha of the authentication form. 2. A user authenticated in GMail visit the csrf-attack.html page controlled by the attacker. For example, the attacker sends a mail to the victim (a GMail account) and provokes that the victim visits his page (social engineering). So, the attacker insures himself that the victim is authenticated. 3. The password cracking is executed transparently to the victim. V. BUSINESS IMPACT - - Selective DoS on users of the GMail service (changing user password). - Possible access to the mail of other GMail users. VI. SYSTEMS AFFECTED - Gmail service. VII. SOLUTION - No solution provided by vendor. VIII. REFERENCES - http://www.gmail.com
Re: [Full-disclosure] Apple Safari 4 Beta feeds: URI NULL Pointer Dereference Denial of, Service Vulnerability
I don't think you understand what a NULL pointer dereference is. It is referencing NULL. NULL as in 0x00. Not 0x00+some_reg, that would now be something greater than 0 and hence IT IS NOT DEREFERENCING NULL.. AKA NOT A NULL DEREFERENCE. His point remains valid, how is a free(NULL) exploitable for code execution from userland? How does it constitute a security vulnerability? -- snip -- * I'm didn't even comment on Mark's paper, it is definitely a great piece of ** research, there is no doubt. It's just that some people have read this paper ** and thought, wow, all those NULL bugs are now exploitable. It's important to ** separate these bug classes. * sorry to interrupt your self-aggrandizing tirade, however you're the only one who took the implication that *all* null ptr related bugs are exploitable-- i never implied or said that, just said in some instances they can be. Furthermore, I think you're taking the word 'dereference' a little too serious and you should perhaps take up a hobby such as baseball cards or miniature collectibles to quench you're apparent need to sub-categorize into nothing. If you want to insist that null+x/etc bugs be in an entirely separate category than dereferences, that's cool, just don't go all ape-shit on people who dont share your same narrow view at some feeble attempt at elitism via syntactic pedantry. ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] Administrivia: Spring Cleaning
yea he is watching - hes been emailing me direct to respond to my criticism. welcome to my trash folder. if nothing else this will make his pathetic existence on this list more difficult. you never know he might actually get the point and fuck off for good... but im not holding my breath on that one On Wed, Feb 4, 2009 at :47 AM, Ureleet urel...@gmail.com wrote: i m willing to bet he is still on the list tho. who knows how many aliases he has. no--i m not 1, even tho he accuses me of being 1. i guarantee hes watching right now. ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] Administrivia: Spring Cleaning
n3td3v being moderated is fantastic. his banning is not a strike against the spirit of fd, its someone standing up and saying I have had enough of this fruitcake. full disclosure is great when its dropping 0day, discussing security in general, coming off as a righteous plan9 ninja, insulting people who disagree with your opinion and all the rest that goes along with it. it isnt great when you have a serial pest constantly baiting people and flooding the list with junk... junk that has no technical or even comedic value. its just rambling. he isnt some passing troll.. 3 years this guy has been spouting his nonsense and i am sure this isnt a decision that John takes lightly but something needed to be done before everyone left. ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] n3td3v profile...
.. and given that the only Jesus that isn't a fictional character is the latino guy who cuts my lawn and cleans my gutters, you are out of luck because he doesn't have a psych degree. On Mon, Jan 12, 2009 at :35 PM, Ed Carp e...@pobox.com wrote: Y'all need Jesus in your life - there's no one else that can fix your emotional issues, I'm afraid... ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] n3td3v profile...
I don't need to turn people against you.. you do that better than I could ever hope to. I merely express my own hate for you and sure, I could ignore you but that would be passive encouragement. If I don't say something it says to others that I think you are OK... when you are far from OK. You claim to be a researcher, yet you research nothing and only ever theorize about things (and often your theories are impractical and/or just plain crazy). Researching requires a practical effort to understand things and move them forward. Do you really believe you are a researcher? Do you actually believe your own hype? You classing yourself as a researcher belittles the effort of all the REAL researches out there. This is just one of my many issues with you. Also, it is interesting that despite lots of people saying YOU are the problem, you seem to consistently blame others for your current predicament. Call me whatever you like, it doesn't detract from the fact you are a delusional fruitcake. Seriously.. seek professional help or at the very least get the fuck off this list. On Mon, Jan 12, 2009 at :58 PM, n3td3v xploita...@gmail.com wrote: I don't think anyone on full-disclosure is a troll apart from urel...@gmail.com, the rest of us are pretty serious about security and what we talk about. I know i'm serious about what I say and i'm strong in my convictions about what I say, even if you don't always agree with my points of view. There is no need to go around abusing me and say you hate me and turning a list against me, just because you don't agree with my opinion, how fucked up is that? Look at your own conduct if you want to talk about mental illness. The amount of bullshit that is made up about me just because you don't agree with my opinions on security is amazing. Have you nothing better to do than do what you do with serious researchers like me? If you don't agree with my opinion about a security industry software license, just ignore. If you don't agree on anything I say, just ignore. Don't send out a hate campaign and rally people against me, thats the real fuck up. On Mon, Jan 12, 2009 at :35 AM, Biz Marqee biz.mar...@gmail.com wrote: Informative, interesting and more to the point - its spot on. His self medicating with illegal drugs also falls right in line with this.. and even assuming that this profile is all incorrect and this IS some troll winding us all up, he invariably has some mental illness. no one sane - whether a joke or not - rants on and on and on to a bunch of people who detest him.. maybe for a while but not for years on end. n3td3v, get help or exit life. ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] I'm not the troll i've been trolled
Hahahaha this post is the work of a CRAZY PERSON trying to keep up the charade which is slowly crumbling around them.. could that profile fit you any better. you are joking with this shit right? - Intelligence agency intrigue innuendo is a classic i'll be applying for mi5 real soon i'll hope one day to collaborate with mi5 to share intelligence on people, hackers and the threats - They usually refuse medications to control themselves, because it dulls the essence of what they're trying to portray: someone mysterious, withholding critical information, being the sole-source of knowledge that might somehow change the world. they want people to hate me because they don't understand me because lots of what's going on cannot be talked about publicly this is a secret underworld you've had some insight to and the way we think, you will not understand us, you will never understand unless you are part of it - Also notice he hasn't written anything technical -- it's mostly outlandish hypothesis with pointers to..not infosec.. I research open source intelligence such as mailing lists and websites, television and radio. as well as monitoring folks in social situations online and offline building up profile of folks. I could go on and virtually connect the dots on everything in that profile with things you have said in the last week alone, but its not worth any more of my time. ps: you are a nobody and we all know it, but at least now we know what the fuck is up with you. go see a doctor or go back to hospital - that week without you was nice. On Tue, Jan 13, 2009 at :01 AM, n3td3v xploita...@gmail.com wrote: I've been the victim of trolls they see me as a good target to pick on because I run the n3td3v intelligence group and i'm going to apply for mi5. your everyday people can't run security because their ideas are too ordinary and they come up with nothing new. don't call me a troll i've been a victim of trolling. groundzero security and ureleet are trolls, they seen someone with an indepth underworld life that i can talk about that others don't believe because the secret world of spooks is often unbelievable to ordinary folks and thats where people think i must be trolling. the fact is i've never trolled the n3td3v group is real and i'll be applying for mi5 real soon. there is no mental illness or anything else, thats just something thought up by trolls to get me to reply even more. they want people to hate me because they don't understand me because lots of what's going on cannot be talked about publicly, so they say why do you think you're a researcher, you don't research anything. trust me i'n reseraching a lot all the time. I research open source intelligence such as mailing lists and websites, television and radio. as well as monitoring folks in social situations online and offline building up profile of folks. you choose to troll me because you don't understand me and you probably never will, but make it be clear i'm the victim of trolling i haven't trolled. it's easy to spin me up because you know i will reply to defend myself and my replies you enjoy because they are different from joe the public replies, and once you've managed to spin me up enough, you can say n3td3v is the core problem on the list and everyone hates you and look at your replies talking about intelligence and mi5, maybe thats because i run an intelligence group thats why i'm interested in it and i'll hope one day to collaborate with mi5 to share intelligence on people, hackers and the threats. this is a secret underworld you've had some insight to and the way we think, you will not understand us, you will never understand unless you are part of it. have a good time on your mailing list that you and you alone partially destroyed by trolling someone who is not afraid of defending myself publicly and tell people what i do on my real name or under the group name. ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] I'm not the troll i've been trolled
Any information regarding the behavior modification of n3td3v will be well received, so please share any insight! On Tue, Jan 13, 2009 at :59 AM, - o z - o...@hotmail.com wrote: I will point out the faults in n3td3v's premises, read my last profile statement: On Jan 12, 2009, at :01 AM, n3td3v wrote: I've been the victim of trolls they see me as a good target to pick on because I run the n3td3v intelligence group and i'm going to apply for mi5. Victim, martyr fantasies, with the 'intel group' being a self-serve mailing lis that ANYONE can join (as I have under a different alias). It doesn't exist per se, it's all in his head. It's about as useful as tits on a boy. your everyday people can't run security because their ideas are too ordinary and they come up with nothing new. Typical -- exclusivity, it's all one big secret that a normal person cannot understand. they seen someone with an indepth underworld life that i can talk about that others don't believe because the secret world of spooks is often unbelievable to ordinary folks and thats where people think i must be trolling. Secret world of spooks reference, the whole intel agency thing, Mystery! the fact is i've never trolled the n3td3v group is real and i'll be applying for mi5 real soon. Real soon, yep, where have we heard this? there is no mental illness or anything else, thats just something thought up by trolls to get me to reply even more. DENIAL, of course there hasn't been mental illness, nope, not at all...OK, maybe a little... I research open source intelligence such as mailing lists and websites, television and radio. as well as monitoring folks in social situations online and offline building up profile of folks. Notice the subtle threat of 'researching and profiling other folks'? Usually when threats occur, this is the attempt to 'one-up' their last drama, just like I wrote about. We're getting to him, so the monkey has to perform a new and better trick. maybe thats because i run an intelligence group thats why i'm interested in it and i'll hope one day to collaborate with mi5 to share intelligence on people, hackers and the threats. MI5 fixation, again! this is a secret underworld you've had some insight to and the way we think, you will not understand us, you will never understand unless you are part of it. He has the secret key of the universe that mere mortals cannot understand. OK, now watch what happens, it will be right out of the handbook. Some kind of event will be precipitated. If this is worked right, we can alter the behavior to our liking. -oz ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
[Full-disclosure] mr wallace must be stopped and i know how
OK - so in the interest of attempting to rid this list of the person we all hate I will now cease posting any replies to the n3t d3viate. Since I am now pretty sure he is a just mentally unstable person only seeking attention for his childlike behavior, I will deal with him in the same fashion as a child - ignoring him completely. I have tried to reason with him in private, as well outright public abuse. Nothing works because he does not process rational thought. I implore each of you who reply to his fishing expeditions (yes I am guilty!) to consider this as an alternate way to express your hate for him. He WILL eventually go away if not a single person replies to him. Please, in the interest of this list which was once GREAT, don't feed andrew wallace's fragmented ego. Just dont hit that reply button. It will only work if everyone does it, but will fail if one person does not. If people do it, it will happen. Not over night but it will. Anyway I will no longer be baited by this maniac, so I bid you farewell FD! I hope the list can partially recover from the irreparable damage caused by this one person, and I hope everyone follows suit and lets this guy drown in his own thoughts. ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] They don't realise I might work for MI5
you fucking idiot, who do you think you are fooling? if you worked for ANY intelligence agency you wouldn't allude to that fact in such a public forum... On Sat, Jan 10, 2009 at :40 PM, andrew. wallace andrew.wall...@rocketmail.com wrote: ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] Why are you against n3td3v?
Direct quote from n3td3v: I've been watching too many movies and using illegal substances. Time for me to go now. - http://lists.grok.org.uk/pipermail/full-disclosure/2005-August/036365.html So you want to be mi5, but your a drug addict? Sorry they don't employ people with your state of mind. Also, they would never employ you because you are an evil blackhat hacker masquerading behind this legitimate alias. You are known as the biggest yahoo and google blackhat hacker going around. You deliberate cause harm to servers world wide. I URGE ALL INTELLIGENCE AGENCIES TO BE WEARY OF THE ROUGE HACKER n3td3v! On Mon, Jan 12, 2009 at :56 AM, andrew. wallace andrew.wall...@rocketmail.com wrote: On Sun, Jan 11, 2009 at :41 PM, valdis.kletni...@vt.edu wrote: On Sun, 11 Jan 2009 :14:36 GMT, you said: I'm not clueless on this list everything I say is pretty accurate. Go back and re-read every post you've written lately that contains the strings 'MI5' or 'Mossad', and ponder how the rest of us see it. Trolls target people they know they can get a reaction out of thats why they target me, you're turning increasingly into one Valdis. ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] They don't realise I might work for MI5
s/allude to/brag about/ On Mon, Jan 12, 2009 at :23 AM, valdis.kletni...@vt.edu wrote: On Mon, 12 Jan 2009 :00:31 +00, Biz Marqee said: you fucking idiot, who do you think you are fooling? if you worked for ANY intelligence agency you wouldn't allude to that fact in such a public forum... Actually, if you go look at the SELinux security extensions, the NSA guys are pretty up-front about being NSA guys, right down to posting with @ nsa.gov addresses. The only time you don't allude to the fact you work for an intelligence agency is if you are doing so *covertly*. Of course, what you actually *do* there may be classified, but even then you can usually say I'm an analyst for the CIA or similar. ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] n3td3v profile...
sexyazngrl69/n3td3v, it was only you who mentioned krawetz...but you ARE right about him. On Mon, Jan 12, 2009 at :35 PM, sexyazngr...@mac.hush.com wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Mr. Krawetz's PhD is in computer science, not psychology. And he is a fucktard. ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] Full-Disclosure wouldn't let me post this message
n3td3v fits into this profile perfectly. no one takes n3td3v seriously.. not even n3td3v. I guess you have to give credit where its due... n3td3v is the master troll... and even though I know hes a troll, he still gets me! btw, that wasnt a compliment. fuck you and die. On Fri, Jan 9, 2009 at :23 AM, n3td3v xploita...@gmail.com wrote: This is the average user response from full-disclosure, no capacity to have a serious conversation. ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] Full-Disclosure wouldn't let me post this message
LOL. Do you now feel like a big man for calling people kids and alluding to the fact you know people? Feel like an internet scholar because you use the phrase nuke? You bitch that people dont take their wars offline, but you contribute to the noise list with this post.. so what is your beef, tough guy? Next time you might try shutting the fuck up rather than show off how inept you are at doing menial tasks without help.. like deciding who to filter. On Fri, Jan 9, 2009 at :40 AM, Steve Clement st...@localhost.lu wrote: Can please eveyone reply to this thread so I know who hates who (it's for my Social profile of this list) But more importantly so I know (or rather all know) who to filter out because they lack the respect to take their wars offline (cmon' nuke each other already it's easy and I know people that know people to provide the pure stuff) anyways kids, Cheers. Steve Clement ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] The war in Palestine
THIS IS A COMPUTER SECURITY MAILING LIST. no one cares about your opinion on this horseshit... atleast n3td3v stays vaguely on topic (no matter how skewed his thoughts may be) ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] Full-Disclosure wouldn't let me post this message
Nor does it have pretentious cunt filter, so I guess were both out of luck. On Tue, Jan 6, 2009 at :46 PM, Ed Carp e...@pobox.com wrote: I wrote: address. I get the idea that the list has no COPPA filtering (no one 13 or younger allowed), nor does it have any sort of maturity level filtering. On Mon, Jan 5, 2009 at :51 PM, Biz Marqee biz.mar...@gmail.com wrote: Stop being a cry baby and go choke yourself to death on your fathers cock you drug fucked faggot. Make that definitely has no sort of maturity level filtering. ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] Full-Disclosure wouldn't let me post this message
Just keeping on par with you, lover boy. On Wed, Jan 7, 2009 at :58 AM, n3td3v xploita...@gmail.com wrote: I didn't think either three of you could come up with an intellectual reply thats on-topic with the thread, that would be asking too much from the usual clowns who follow me around. On Tue, Jan 6, 2009 at :10 AM, Ureleet urel...@gmail.com wrote: is this really what ur wasting ur life, and ours with? 1 fucking word? get a fucking job. On Mon, Jan 5, 2009 at :51 PM, Biz Marqee biz.mar...@gmail.com wrote: Stop being a cry baby and go choke yourself to death on your fathers cock you drug fucked faggot. On Mon, Jan 5, 2009 at :33 PM, j-f sentier j.sent...@gmail.com wrote: They shouldn't let you post at all. ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] Full-Disclosure wouldn't let me post this message
Good. I think almost everyone would agree that YOU need to be moderated. Stop being a cry baby and go choke yourself to death on your fathers cock you drug fucked faggot. ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] This list has run its course
Good job faggot, its only been 3 years coming. I believe it was Immortal Technique who said it best, Just kill yourself! On Tue, Dec 23, 2008 at 9:53 AM, n3td3v xploita...@gmail.com wrote: Real researchers who should be taken seriously aren't taken seriously anymore. I'm leaving full-disclosure because of the abuse. It's just turned into flames to spin people up, I don't get a chance to talk about security or my skill set. It's abuse after abuse after abuse. Sorry, I can't take it anymore. Got to go, bye. ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] This list has run its course
you're obviously a lying cunt or you would have ceased posting to this list already. On Tue, Dec 23, 2008 at 4:15 PM, n3td3v xploita...@gmail.com wrote: n3td3v continues on the internet elsewhere just not HERE. On Tue, Dec 23, 2008 at 4:37 AM, Biz Marqee biz.mar...@gmail.com wrote: Good job faggot, its only been 3 years coming. I believe it was Immortal Technique who said it best, Just kill yourself! On Tue, Dec 23, 2008 at 9:53 AM, n3td3v xploita...@gmail.com wrote: Real researchers who should be taken seriously aren't taken seriously anymore. I'm leaving full-disclosure because of the abuse. It's just turned into flames to spin people up, I don't get a chance to talk about security or my skill set. It's abuse after abuse after abuse. Sorry, I can't take it anymore. Got to go, bye. ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] n3td3v warns sans is being brought into disrepute by pauldotcom
Dont worry about n3td3v, hes probably been up all night abusing drugs and cant find his return key... that or hes typing one handed trying to fend off his fathers sex attacks. On Sun, Nov 9, 2008 at 10:26 AM, nnp [EMAIL PROTECTED] wrote: Idiot says something about group I haven't heard of. Learn to use line breaks arsehole! On Sat, Nov 8, 2008 at 6:47 PM, n3td3v [EMAIL PROTECTED] wrote: pauldotcom are gangsters masquerading as security professionals, this is the opinion of n3td3v. they have a bad name not only because of n3td3v but its widely thought by others that pauldotcom are questionable entities, this is why n3td3v believes that its a bad thing that sans are associated with them, and in time could start to bring down the respected name of the sans institute. there are already misdemeanors who have managed to get into sans through the internet storm center door who are in support of pauldotcom enterprises. n3td3v predicts the longer sans are associated with pauldotcom the greater they eat away at the credibility and respect that sans built up before pauldotcom came onto the scene. there are good people at sans and this is why n3td3v is concerned that the good people at sans are being bought into disrepute because of pauldotcom and entities who have crept into sans through the sans handlers gateway. n3td3v suggests both sides consider their positions before moving forward and having future association with one another. there have been multiple reports on the full-disclosure list that pauldotcom hasn't been upto scratch, its time for sans to start to take feedback seriously that is being presented to them and consider dropping pauldotcom as a partner of the sans brand. ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ -- http://www.unprotectedhex.com http://www.smashthestack.org ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] Two bulletins from Microsoft on Patch Tuesday
Do you even understand why people dont like you? It is because you have all these crackpot ideas but no experience to back it up. All your ideas only make sense from a theoretical standpoint, but in practicality most will fail. Do you understand that or are you much of an ignorant person to even realise that you are a joke to us. I will say that again just incase you missed it YOU ARE A JOKE. And people dont think I just make up that hes a drugfuck, he even admitted his use of illegal substances way back in 2005. So, Mr n3td3v, my question to you is how can you be in such support of the governments security posture on one hand, but ignore their views on drugs on the other? Do you think you are above the governments laws and as such only need to follow what you dictate to be applicable to you? On Fri, Nov 7, 2008 at 11:31 AM, n3td3v [EMAIL PROTECTED] wrote: blackhats like you will always hate on me, so i just ignore the negative responses i get. ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] Two bulletins from Microsoft on Patch Tuesday
I have watched movies for 10 years, does this make me an experienced director? No, because watching isn't doing and as such it is not experience. Now please address the issue of your illegal drug use, which demonstrates complete disregard for your governments laws. On Fri, Nov 7, 2008 at 12:06 PM, n3td3v [EMAIL PROTECTED] wrote: i've been monitoring the scene since 1999 so what do you mean no experience? i make that about 10 years experience if my math is correct. On Fri, Nov 7, 2008 at 12:48 AM, Biz Marqee [EMAIL PROTECTED] wrote: Do you even understand why people dont like you? It is because you have all these crackpot ideas but no experience to back it up. All your ideas only make sense from a theoretical standpoint, but in practicality most will fail. On Fri, Nov 7, 2008 at 11:31 AM, n3td3v [EMAIL PROTECTED] wrote: blackhats like you will always hate on me, so i just ignore the negative responses i get. ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] Two bulletins from Microsoft on Patch Tuesday
Acting like the child that he is, n3td3v continues to ignore questions posed to him. How can he be such an avid debater over the legality of things like metasploit, 0day auctions and similarly themed bullshit threads when he completely disregards drug laws? How do you intend to lobby people to listen to you when you are not a law abiding citizen yourself? You have no credibility in the eyes of the law, so don't psuedo threaten people trying to appear like you have some government backing. You have proven beyond doubt that you dont, because the government doesnt listen to drug taking internet heroes, such as yourself. So enough with the bullshit.. FUCK OFF AND DIE. On Fri, Nov 7, 2008 at 1:02 PM, n3td3v [EMAIL PROTECTED] wrote: i'm sorry that you don't agree with my heads up theory, i stand by what i said however. i'm sure microsoft don't read full-disclosure anyway, so you're right i'm not going to change anything. by the way, i've noticed you haven't stopped stalking me yet, im a bit concerned about your health. cheers. On Fri, Nov 7, 2008 at 1:44 AM, Ureleet [EMAIL PROTECTED] wrote: first off, u arent going to get any1 2 change anything. so, lets get that out of the way right there. second of all, in order for u 2 prove ur point, id like 4 u to go to some research of how many exploits have come out during the 5 day period between vague-ass disclosure and patch publish. then compare and contrast that against how many exploits have come out in the 24 hours following the patch publish after people have had a chance to do bindiffs (u know what that means right white-hat?) against the patches. then, take all that data, draw some charts and graphs, write a whitepaper, and present it somewhere. u know what thats called? research. real ppl do it. u dont. and that is why, u suck. ta ta. On Thu, Nov 6, 2008 at 8:34 PM, n3td3v [EMAIL PROTECTED] wrote: so you don't think its logical that these 5 day heads up could be helping the bad guys out? right. i think the world's biggest hackers could do a lot of research in 5 days. but then again n3td3v isn't logical so i must be wrong. damn those drugs eh? i just asked what the realistic possibility was for a 5 day turn around from the day of the heads up until a patch is released. i just thought it was bad that we were giving the bad guys a 5 day head start, but never mind n3td3v isn't logical so i must be wrong. scraping the 5 day head start isn't a good idea because n3td3v isn't logical? right, i threw away 10 years of my life to not be logical... On Fri, Nov 7, 2008 at 1:20 AM, waveroad waveroad [EMAIL PROTECTED] wrote: You can be monitoring the scene since 20 years if you want to, it's not for that your point will be valuable. And actually it is not, also this is about logic. See you're wrong again. Get the fuck out of here. 2008/11/6, n3td3v [EMAIL PROTECTED]: i've been monitoring the scene since 1999 so what do you mean no experience? i make that about 10 years experience if my math is correct. On Fri, Nov 7, 2008 at 12:48 AM, Biz Marqee [EMAIL PROTECTED] wrote: Do you even understand why people dont like you? It is because you have all these crackpot ideas but no experience to back it up. All your ideas only make sense from a theoretical standpoint, but in practicality most will fail. On Fri, Nov 7, 2008 at 11:31 AM, n3td3v [EMAIL PROTECTED] wrote: blackhats like you will always hate on me, so i just ignore the negative responses i get. ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] Two bulletins from Microsoft on Patch Tuesday
I could care less about metasploit, all it does is help the kiddies.. but that doesnt mean it should be illegal. Software is knowledge and knowledge should be free, but that is not the issue here. The issue is that you are a bullshitting drug abuser who's child like demeanor wont allow him to even acknowledge bad things written about him. You are performing the internet equivalent of sticking your fingers in your ears and yelling nana i cant hear you in an attempt to make the situation go away. So you unknowledgable, untalented, unemployed junkie.. do you have anything relevant to what I asked to contribute or are you going to just ignore it like the pussy that you are? Also, dont try and portray yourself like a free thinking martyr... your opinions are just rehashed idea sparked off cnet news comments and various other sources of security information. Anyone who knows even the slightest thing about information security knows you and your idealist views are a joke. On Fri, Nov 7, 2008 at 3:46 PM, n3td3v [EMAIL PROTECTED] wrote: you seem like an hd moore/metasploit fan boy pissed off that i don't respect him or like his metasploit software. n3td3v doesn't respect people like the sheep do, i think for myself, have opinions about other white hats that may not be in support of them. get used to it bozo. On Fri, Nov 7, 2008 at 4:34 AM, Biz Marqee [EMAIL PROTECTED] wrote: Acting like the child that he is, n3td3v continues to ignore questions posed to him. How can he be such an avid debater over the legality of things like metasploit, 0day auctions and similarly themed bullshit threads when he completely disregards drug laws? How do you intend to lobby people to listen to you when you are not a law abiding citizen yourself? You have no credibility in the eyes of the law, so don't psuedo threaten people trying to appear like you have some government backing. You have proven beyond doubt that you dont, because the government doesnt listen to drug taking internet heroes, such as yourself. So enough with the bullshit.. FUCK OFF AND DIE. On Fri, Nov 7, 2008 at 1:02 PM, n3td3v [EMAIL PROTECTED] wrote: i'm sorry that you don't agree with my heads up theory, i stand by what i said however. i'm sure microsoft don't read full-disclosure anyway, so you're right i'm not going to change anything. by the way, i've noticed you haven't stopped stalking me yet, im a bit concerned about your health. cheers. On Fri, Nov 7, 2008 at 1:44 AM, Ureleet [EMAIL PROTECTED] wrote: first off, u arent going to get any1 2 change anything. so, lets get that out of the way right there. second of all, in order for u 2 prove ur point, id like 4 u to go to some research of how many exploits have come out during the 5 day period between vague-ass disclosure and patch publish. then compare and contrast that against how many exploits have come out in the 24 hours following the patch publish after people have had a chance to do bindiffs (u know what that means right white-hat?) against the patches. then, take all that data, draw some charts and graphs, write a whitepaper, and present it somewhere. u know what thats called? research. real ppl do it. u dont. and that is why, u suck. ta ta. On Thu, Nov 6, 2008 at 8:34 PM, n3td3v [EMAIL PROTECTED] wrote: so you don't think its logical that these 5 day heads up could be helping the bad guys out? right. i think the world's biggest hackers could do a lot of research in 5 days. but then again n3td3v isn't logical so i must be wrong. damn those drugs eh? i just asked what the realistic possibility was for a 5 day turn around from the day of the heads up until a patch is released. i just thought it was bad that we were giving the bad guys a 5 day head start, but never mind n3td3v isn't logical so i must be wrong. scraping the 5 day head start isn't a good idea because n3td3v isn't logical? right, i threw away 10 years of my life to not be logical... On Fri, Nov 7, 2008 at 1:20 AM, waveroad waveroad [EMAIL PROTECTED] wrote: You can be monitoring the scene since 20 years if you want to, it's not for that your point will be valuable. And actually it is not, also this is about logic. See you're wrong again. Get the fuck out of here. 2008/11/6, n3td3v [EMAIL PROTECTED]: i've been monitoring the scene since 1999 so what do you mean no experience? i make that about 10 years experience if my math is correct. On Fri, Nov 7, 2008 at 12:48 AM, Biz Marqee [EMAIL PROTECTED] wrote: Do you even understand why people dont like you? It is because you have all these crackpot ideas but no experience to back it up. All your ideas only make sense from a theoretical standpoint, but in practicality most will fail. On Fri, Nov 7, 2008 at 11:31 AM
Re: [Full-disclosure] Two bulletins from Microsoft on Patch Tuesday
Nobody on the list wants YOU so I don't see how you can justify what people want to see as your argument for not retaliating. Ill fuck you 'til you love me, faggot. On Fri, Nov 7, 2008 at 4:31 PM, n3td3v [EMAIL PROTECTED] wrote: why should i respond to your off-topic personal jabs? all it would do is start a flame war and im not into that. im performing self control and restraint by not responding to your personal jabs, nobody on the list wants a flame war based on personal jabs, so im not going to feed it. im reading everything you say, im not ignoring it. if you choose to be against me and not with me is your choice that you make, there is nothing else for me to add on the topic. On Fri, Nov 7, 2008 at 5:09 AM, Biz Marqee [EMAIL PROTECTED] wrote: I could care less about metasploit, all it does is help the kiddies.. but that doesnt mean it should be illegal. Software is knowledge and knowledge should be free, but that is not the issue here. The issue is that you are a bullshitting drug abuser who's child like demeanor wont allow him to even acknowledge bad things written about him. You are performing the internet equivalent of sticking your fingers in your ears and yelling nana i cant hear you in an attempt to make the situation go away. So you unknowledgable, untalented, unemployed junkie.. do you have anything relevant to what I asked to contribute or are you going to just ignore it like the pussy that you are? Also, dont try and portray yourself like a free thinking martyr... your opinions are just rehashed idea sparked off cnet news comments and various other sources of security information. Anyone who knows even the slightest thing about information security knows you and your idealist views are a joke. On Fri, Nov 7, 2008 at 3:46 PM, n3td3v [EMAIL PROTECTED] wrote: you seem like an hd moore/metasploit fan boy pissed off that i don't respect him or like his metasploit software. n3td3v doesn't respect people like the sheep do, i think for myself, have opinions about other white hats that may not be in support of them. get used to it bozo. On Fri, Nov 7, 2008 at 4:34 AM, Biz Marqee [EMAIL PROTECTED] wrote: Acting like the child that he is, n3td3v continues to ignore questions posed to him. How can he be such an avid debater over the legality of things like metasploit, 0day auctions and similarly themed bullshit threads when he completely disregards drug laws? How do you intend to lobby people to listen to you when you are not a law abiding citizen yourself? You have no credibility in the eyes of the law, so don't psuedo threaten people trying to appear like you have some government backing. You have proven beyond doubt that you dont, because the government doesnt listen to drug taking internet heroes, such as yourself. So enough with the bullshit.. FUCK OFF AND DIE. On Fri, Nov 7, 2008 at 1:02 PM, n3td3v [EMAIL PROTECTED] wrote: i'm sorry that you don't agree with my heads up theory, i stand by what i said however. i'm sure microsoft don't read full-disclosure anyway, so you're right i'm not going to change anything. by the way, i've noticed you haven't stopped stalking me yet, im a bit concerned about your health. cheers. On Fri, Nov 7, 2008 at 1:44 AM, Ureleet [EMAIL PROTECTED] wrote: first off, u arent going to get any1 2 change anything. so, lets get that out of the way right there. second of all, in order for u 2 prove ur point, id like 4 u to go to some research of how many exploits have come out during the 5 day period between vague-ass disclosure and patch publish. then compare and contrast that against how many exploits have come out in the 24 hours following the patch publish after people have had a chance to do bindiffs (u know what that means right white-hat?) against the patches. then, take all that data, draw some charts and graphs, write a whitepaper, and present it somewhere. u know what thats called? research. real ppl do it. u dont. and that is why, u suck. ta ta. On Thu, Nov 6, 2008 at 8:34 PM, n3td3v [EMAIL PROTECTED] wrote: so you don't think its logical that these 5 day heads up could be helping the bad guys out? right. i think the world's biggest hackers could do a lot of research in 5 days. but then again n3td3v isn't logical so i must be wrong. damn those drugs eh? i just asked what the realistic possibility was for a 5 day turn around from the day of the heads up until a patch is released. i just thought it was bad that we were giving the bad guys a 5 day head start, but never mind n3td3v isn't logical so i must be wrong. scraping the 5 day head start isn't a good idea because n3td3v isn't logical? right, i threw away 10 years of my life to not be logical... On Fri
Re: [Full-disclosure] Securing our computers?
so i suggest you don't fuck with n3td3v --SNIP-- LOL. What can you do? You dumb cunt, I'll fuck with you all day long until you get the picture that no one gives a fuck what you say and everyone looks forward to the day you expire. Why are you so incapable of grasping the fact that no one cares about you at all and you are wasting your time? I guess somewhere in your medicated head this incessant ranting is your BEST attempt at bettering the world and, to be honest, you really fucking suck at it. The rest of us are laughing at you. Laughing at you like the scared pussy that you are. Scared of the real man. Look at the 7 days without you - no one was asking wheres n3td3v were they? No, everyone was enjoying the fact that you were in hospital having the guards do reruns of your drunk uncles night time visits your bedroom. That shit fucked you up for life didn't it, faggot? ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] Securing our computers?
tl;dr now i am going back to my real job, doing real things and you can go back to playing with lego and waiting for your mother to bring in some sandwiches cut into triangles. without the crust. faggot. ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] Time to patch Windows boxes with MS08-067
n3td3v [EMAIL PROTECTED] wrote: we (the community) shouldn't be playing into the hacker spirit of --SNIP-- You are not part of the the community. This proven by your lack of knowledge into the hacker psyche outside of some lod tech journals and some phrack papers from the 90's.. or whatever cnet news prints. It's not like that anymore -- which you would know if you were actually involved in security and not just a pretender. Which brings me to my next point... WHAT THE FUCK ARE YOU DOING HERE?? You dribble shit all day long and get nothing but pure venom in response to your nonsensical rantings but just keep coming back for more. You either have some thick skin to brush off all these insults or your lithium dose is that high you cant feel things anymore. Either way, go have a nice cold cup of bleach and go die under a bridge somewhere you waste of space/food/water/air. ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] security industry software license
Dude, do you ever just shut the fuck up? Even though the content of your emails is of null value, it must take time to write all this junk so I am thinking you must have some severe anxiety issues, agoraphobia or are just plain old demented to consistently write whatever bullshit comes into your mind a bunch of people who don't respect/listen to a single word that comes out of your mouth. Why did you pick a security mailing list to rant on? You have no real security skills and only post regurgitated information you read on a blog or news site somewhere. Anyway... I could really care less about your security skills but on a personal level you must be so weird and uncomfortable to deal with that no one in the real world wants to be friends or even deal with you... if they did you wouldn't spend so much on mailing lists trying to sound like you are somebody and know something we don't. I hope you choke on your anti-depressants and drown in your own vomit you fucking cunt. On Thu, Oct 16, 2008 at 12:11 PM, n3td3v [EMAIL PROTECTED] wrote: oh now i'm being accused of being a script kiddie, what ever next? oh yeah, apparently im a criminal and a terrorist, and don't forget, im mentally ill. ROFL. keep the smear campaign coming... On Thu, Oct 16, 2008 at 1:06 AM, Richard A Nelson [EMAIL PROTECTED] wrote: On Thu, 16 Oct 2008, n3td3v wrote: an *evil deeds* website and no privacy policy? c'mon, who are you trying to kid? oh yeah, the kiddies... And apparently, one of them has fallen prey - hook, line, and sinker You've been on about this for awhile now, please don't further flog the carcass -- Rick Nelson Life'll kill ya -- Warren Zevon Then you'll be dead -- Life'll kill ya ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] Disintegrate! Gust of wind! Can we get back to saving the world already?
no one on nanog liked your gay comic so as if were going to feel any different, you self absorbed lump of gristle On Wed, Sep 24, 2008 at 4:16 AM, Gadi Evron [EMAIL PROTECTED] wrote: I've recently been involved in an email thread which, partly by my doing, unfortunately degraded into a dirty flame war for a few hours. Whenever meta discussion takes over real discussion, frustration builds up inside me. This comic strip from today which a friend just sent me, seems to explain the concept much better than I can. FD trolls, take a look. Order of the Stick: http://www.giantitp.com/comics/oots0595.html Gadi. ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] McKinnon a 'scapegoat for Pentagon insecurity'
While I think the US/media is making too much out of this (he was just some sucker scanning for Adminstrator/NULL and installing pcanywhere) I dont see why we should care too much, he is a nobody - just some overaged kiddie with a scanner and some downloaded exez. He didnt use any skill and as best I can tell (from the media) he didnt access anything interesting except for an image of a UFO (of which, suprise suprise, he has no proof). Stop trying to turn him into the next mitnick, the community wont rally around some dumbfuck whos skill set it limited to some prebuilt programs he prob got from zoneh forums. Eat shit and die, b1zm4rq On Sun, Sep 7, 2008 at 3:43 AM, n3td3v [EMAIL PROTECTED] wrote: On Sat, Sep 6, 2008 at 1:22 AM, n3td3v [EMAIL PROTECTED] wrote: Here is the Marcus Sachs Youtube video, I forgot to add it http://www.youtube.com/watch?v=FSUPTZVlkyU Maybe the Gary Mckinnon lawyers could use it to prove the U.S mind set right now as a last ditch hope. We can't allow a man to goto jail for life, if the reason is only for Marcus Sachs to get cyber security funding and power, thats just sickening. http://freegary.org.uk/ All the best, n3td3v Hi Free Gary website, Consider adding the Marcus Sachs Youtube video onto the Free Gary blog as a case against sending Gary to the U.S. during the election season, which would only see Glasgow-born Gary paraded on CNN and Fox News during election coverage. :( I would like to see what your readers think about the video and Marcus Sachs's media agenda. http://www.youtube.com/watch?v=FSUPTZVlkyU From one Scot to another, I wish Gary luck and best wishes to his friends and family, you have my sympathy at this difficult time. After seeing the Youtube video, the timing and reason for fast tracking Gary is known more now than ever, and we have no doubt about Marcus Sachs and his intentions to use this fine Scottish born lad as a political baseball to score a home run. The Scots, we stick together in times of hardships, and this is one of those times that Gary needs friends and support from the security community more than ever. Please print these emails out for Gary to read, and download the Youtube video file onto a medium that he will be able to watch without his computer-use restriction order being breached. Here is a tool that will allow you to do it: http://www.download.com/YouTube-Downloader/3000-2071_4-10647340.html All the best, n3td3v ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] phish war game
Dude give it up... No . One. Cares. At all. Accept that your ideas suck.. oh and you're an attention seeking douche bag -- or maybe a bad troll. I guess pegasusmail_html.cpp will answer my questions... On Tue, Aug 5, 2008 at 11:03 AM, lsi [EMAIL PROTECTED] wrote: BLUE TEAM: anti-phishing blacklist RED TEAM: phish GREEN TEAM: end-users starting degree of obfuscation: 0% (none) starting number of blocked domains: 0 -- round 1: action: RED sends billions of phish consequence: 5% of GREEN members are suckered and lose some cash action: BLUE blocks the top 20 phished domains using the FROM field consequence: 80% of RED members are forced to make new sites and find new victims current degree of obfuscation: 0% current number of blocked domains: 20 round 2: action: RED obfuscates their FROM fields by 20% and resends billions of phish consequence: 4% of GREEN members are suckered and lose some cash action: BLUE blocks the next top 20 phished domains using the FROM field consequence: 80% of RED members are forced to make new sites and find new victims current degree of obfuscation: 20% current number of blocked domains: 40 round 3: action: RED obfuscates their FROM fields by 20% and resends billions of phish consequence: 3% of GREEN members are suckered and lose some cash action: BLUE blocks the next top 20 phished domains using the FROM field consequence: 80% of RED members are forced to make new sites and find new victims current degree of obfuscation: 24% current number of blocked domains: 60 round 4: action: RED obfuscates their FROM fields by 20% and resends billions of phish consequence: 2% of GREEN members are suckered and lose some cash action: BLUE blocks the next top 20 phished domains using the FROM field consequence: 80% of RED members are forced to make new sites and find new victims current degree of obfuscation: 28.8% current number of blocked domains: 80 round 5: action: RED obfuscates their FROM fields by 20% and resends billions of phish consequence: 1% of GREEN members are suckered and lose some cash action: BLUE blocks the next top 20 phished domains using the FROM field consequence: 80% of RED members are forced to make new sites and find new victims current degree of obfuscation: 34.56% current number of blocked domains: 100 round 6: action: RED obfuscates their FROM fields by 20% and resends billions of phish consequence: 0% of GREEN members are suckered and lose some cash -- GAME OVER: RED loses at round 6, as 0% of GREEN members are suckered, due to over-obfuscation. final degree of obfuscation: 41.47% final number of blocked domains: 100 -- observations: 1. The model is over-simplified, in reality it's unlikely that BLUE would consistently achieve 80%. However in reality it's also unlikely that RED would enjoy a linear relationship between obfuscation and success, specifically, the more RED obfuscates the less success it has. Both teams might suffer diminishing returns from their efforts. (for the purposes of the above model, these effects have been allowed to cancel each other out) 2. The model has a constant 1% reduction in the victim rate, this is debatable, however it will never go upwards, eg., there is nothing RED can do to push that number back towards 100%. Conversely, everything BLUE does pushes that number towards 0%. In addition, other anti-phishing technologies will also be pushing the number towards 0%. GREEN itself might even push the number down. 3. The model does not allow RED to increase the number of phish they send. In reality, they way well do so. However they will blocked faster in this case, not only by BLUE but also by other technologies, such as spam filters. (for the purposes of the above model, these effects have been allowed to cancel each other out) 4. The model does not allow the game to be terminated voluntarily. In reality, RED will terminate the game voluntarily when phish revenue per hour falls below revenues per hour available from other sources. This will be some time before 0% of GREEN members are suckered, perhaps as early as round 3. 5. The blacklist contains 100 items at the time RED loses. It may contain as little as 60 at the time RED terminates voluntarily. -- links: (...) http://en.wikipedia.org/wiki/Business_War_Games (this is a sales brochure, however it describes a war game a bit nicer than wiki, it's got diagrams, for a start) http://www.coleago.co.uk/uploads/Training/War%20Gaming.pdf (this isn't relevant to a war game, it might be something like what's happening when the top 20 phished domains are used to select the items to blacklist, OTOH, it might not, I don't know, I'm not a statistician. I'd love to know the name of the technique, I use something similar to optimise my spam rules...) http://en.wikipedia.org/wiki/Monte_Carlo_method (this was
Re: [Full-disclosure] simple phishing fix
Post my mail filter strings? LOL. That just proves how insignificant you and your ideas are. I do real security research work like write exploits and patches. Do you know how to mmap @ 0x on current kernels? Do you even know why that would be useful? How does this fix the problem? If it were that black and white ISP's would implement it at their MX's.. on top of that what about all the LEGITIMATE emails banks send out? Anyone who knows how to set up mail filters would have already done so without your message. Maybe you should stop posting trying to puff up your image on a mailing list and go back to your research. Who knows maybe one day you can graduate to XSS... lmao. Leave security work to the experts you untalented, fame seeking, peice of shit... On Mon, Jul 28, 2008 at 5:52 PM, lsi [EMAIL PROTECTED] wrote: Please post the list of strings you use in your phishing filter. Or don't you have one? Seriously dude, if phishing was so simple to fix then why is it on the rise according to recent news articles? I mean, if all the admins out there in the world are blocking them, when why are they still being sent out by scammers? Either the admins don't know how to block them, or the scammers don't know they are being blocked. My message can solve both problems. I seem to recall a time when email-borne viruses were a problem, once it was pointed out they were simple to block, they rapidly dropped out of fashion. I would indeed like to repeat that success and save the associated electricity, bandwidth and CPU time for something more important, such as replying to bone-headed posts in fd, for a start. Stu On 28 Jul 2008 at 10:57, Biz Marqee wrote: Date sent: Mon, 28 Jul 2008 10:57:06 +1000 From: Biz Marqee [EMAIL PROTECTED] To: full-disclosure@lists.grok.org.uk Subject:RE: [Full-disclosure] simple phishing fix Copies to: [EMAIL PROTECTED] Wow, you our are savior.. no, no our e-Hero! Forget patches for software bugs.. This guy can teach us how to set up a mail filter!! Seriously dude.. do you think we care about, or are too inept to set up mail filter rules? Go find another list to contribute to, you are a joke. --- Stuart Udall stuart [EMAIL PROTECTED] net - http://www.cyberdelix.net/ --- * Origin: lsi: revolution through evolution (192:168/0.2) ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] simple phishing fix
Wow, you our are savior.. no, no our e-Hero! Forget patches for software bugs.. This guy can teach us how to set up a mail filter!! Seriously dude.. do you think we care about, or are too inept to set up mail filter rules? Go find another list to contribute to, you are a joke. ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
