[Full-disclosure] How a teenager helpfully reported a government security flaw – and could be charged in return
In Australia, individuals who report critical security flaws face potential legal action, while corporations who fail to report data breaches to paying customers go unpunished http://www.theguardian.com/commentisfree/2014/jan/24/how-a-teenager-helpfully-reported-a-government-security-flaw-and-could-be-charged-in-return ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] WordPress User Account Information Leak / Secunia Advisory SA23621
Can't you open a new bt about this issue? Regards, Em 04/07/2013 10:16, Sven Kieske svenkie...@gmail.com escreveu: Hi, the mentioned User account Enumeration Weakness stated in Advisory https://secunia.com/advisories/23621/ still exists in the actual version 3.5.2 . The corresponding trac entry for wordpress is closed as wontfix: https://core.trac.wordpress.org/ticket/1129 Why? Maybe, because the trac bug mentions just version 1.5 as affected? I can easily reproduce this in version 3.5.2 . Please fix this, this bug is 8 years old! Kind Regards Sven Kieske ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] Why PRISM kills the cloud | Computerworld Blogs
Thw commercial espionage angle is another interesting aspect of this http://www.techdirt.com/articles/20130611/10014923405/is-us-using-prism-to-engage-commercial-espionage-against-germany-others.shtml On 13/06/2013 3:08 AM, Michael Hallgren m.hallg...@free.fr wrote: http://www.internetsociety.org/news/internet-society-statement-importance-open-global-dialogue-regarding-online-privacy mh Le 12/06/2013 16:05, William Reyor a écrit : * are protected -- fixed that for ya. - William Reyor On Jun 12, 2013, at 10:01 AM, laurent gaffie laurent.gaf...@gmail.com wrote: is protected ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] Why PRISM kills the cloud | Computerworld Blogs
Maybe all is forgiven if they discount enough http://www.networkworld.com/news/2013/061113-google-amazon-cloud-270730.html?hpg1=bn A Canadian and what appears to be a British subject discussing the not so finer points of American legislation. I'm sure at some point the irony will become apparent. On Tue, Jun 11, 2013 at 6:58 PM, Philip Whitehouse phi...@whiuk.com wrote: Seems like some people spend way to much time focusing on the second amendment rather than the first one... Well this relates mainly to the fourth amendment, not the first. The first tends to get decent coverage. Publication of the leak by journalists is the only under the realm of the first. Philip Whitehouse ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
[Full-disclosure] Why PRISM kills the cloud | Computerworld Blogs
http://m.blogs.computerworld.com/cloud-storage/22305/why-prism-kills-cloud ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] Why PRISM kills the cloud | Computerworld Blogs
A number of cloud provider business plans will need tweaking now On 11/06/2013 11:30 AM, Jeffrey Walton noloa...@gmail.com wrote: On Mon, Jun 10, 2013 at 9:15 PM, laurent gaffie laurent.gaf...@gmail.com wrote: Why is the Prims program such a big deal today? Most of us knew about echelon and the patriot act didn't we? This program was unconstitutional at the first place and should have raised indignation when it was approved at that time... +1. Below is my standard verbiage on clouds and backups to clouds. Jeff clouds and drop boxes. If you don’t want your data analyzed, inspected, shared, or mishandled, then don’t provide it in the first place. Data migration includes backups, so ensure you are using the proper attributes on your files. For Apple systems, the file should have kCFURLIsExcludedFromBackupKey file property or com.apple.MobileBackup extended attribute (see Technical QA QA1719 for details). Android applications should add android:allowBackup on the application tag and set it to false in AndroidManifest.xml. Windows’ integrated cloud backup is new, and there’s currently no way for an application to back up to the cloud (and hence, no way to stop it). A layman’s analysis of License Agreements and Terms and Conditions will reveal how little security is afforded to your documents in cloud storage. For those who don’t read them, one popular platform has 142 separate documents covering Terms of Conditions for its cloud alone.[18] The documents discuss your rights if the company (1) gives away your data, (2) shares you data with partners, (3) looses your data, (4) provides your data to authorities (sometimes without an order or warrant), (5) does not provide reasonable skill or care, (6) commits willful misconduct or fraud, and (7) acts with negligence or gross negligence. “Your rights” is misleading since it is consent, and the document effectively states you indemnify the company: “You agree to defend, indemnify and hold [company], its affiliates, subsidiaries, directors, officers, employees, agents, partners, contractors, and licensors harmless from any claim or demand, including reasonable attorneys’ fees, made by a third party.”[19] [18] iCloud Terms and Conditions, https://www.apple.com/legal/internet-services/icloud/ww/ [19] iCLOUD TERMS AND CONDITIONS, https://www.apple.com/legal/internet-services/icloud/en/terms.html Le 2013-06-10 19:46, Ivan .Heca ivan...@gmail.com a écrit : http://m.blogs.computerworld.com/cloud-storage/22305/why-prism-kills-cloud ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] cloudsafe365 for wordpress: file disclosure
I suppose that's fixed, or they just disabled the plugin itselfon his wp Ivan Carlos CISO, Consultant +55 (11) 98112-0666 www.icarlos.net -Original Message- From: full-disclosure-boun...@lists.grok.org.uk [mailto:full-disclosure-boun...@lists.grok.org.uk] On Behalf Of Henri Salo Sent: terça-feira, 28 de agosto de 2012 07:47 To: Christian Sciberras Cc: full-disclosure@lists.grok.org.uk Subject: Re: [Full-disclosure] cloudsafe365 for wordpress: file disclosure On Tue, Aug 28, 2012 at 11:00:25AM +0200, Christian Sciberras wrote: So this plugin supposedly helps securing a website? I do not know anything about this plugin but at least we can coordinate the fixes or get the plugin disabled so that more people don't start using it. - Henri Salo ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
[Full-disclosure] Tech journalists: Stop hyping unproven security tools
*Cui bono * http://paranoia.dubfire.net/2012/07/tech-journalists-stop-hyping-unproven.html?utm_source=Contextlyutm_medium=RelatedLinksutm_campaign=AroundWeb ouch http://blog.alexanderhiggins.com/2012/08/10/experts-idiots-war-security-165251/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
[Full-disclosure] hacking FB Ads
interesting bit of research “A couple months ago, when we were preparing to launch the new Limited Run, we started to experiment with Facebook ads. Unfortunately, while testing their ad system, we noticed some very strange things. Facebook was charging us for clicks, yet we could only verify about 20% of them actually showing up on our site. At first, we thought it was our analytics service. We tried signing up for a handful of other big name companies, and still, we couldn’t verify more than 15-20% of clicks. So we did what any good developers would do. We built our own analytic software. Here’s what we found: on about 80% of the clicks Facebook was charging us for, JavaScript wasn’t on. And if the person clicking the ad doesn’t have JavaScript, it’s very difficult for an analytics service to verify the click. What’s important here is that in all of our years of experience, only about 1-2% of people coming to us have JavaScript disabled, not 80% like these clicks coming from Facebook. So we did what any good developers would do. We built a page logger. Any time a page was loaded, we’d keep track of it. You know what we found? The 80% of clicks we were paying for were from bots. That’s correct. Bots were loading pages and driving up our advertising costs.” http://techcrunch.com/2012/07/30/startup-claims-80-of-its-facebook-ad-clicks-are-coming-from-bots/ http://blog.alexanderhiggins.com/2012/07/31/latest-facebook-scandal-widespread-advertising-fraud-156521/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
[Full-disclosure] Congress Capitulates To TSA; Refuses To Let Bruce Schneier Testify
http://yro.slashdot.org/story/12/03/26/2221246/congress-capitulates-to-tsa-refuses-to-let-bruce-schneier-testify ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
[Full-disclosure] Stakeout: how the FBI tracked and busted a Chicago Anon
*Yesterday, we learned that one of the top members of LulzSec (Sabu) had been an FBI informant for almost 6 monthshttp://tech.slashdot.org/story/12/03/06/1437241/lulzsec-leader-sabu-unmasked-arrested-and-caught-collaborating, and that this confidant of the LulzSec leader 'anarchaos' had given the feds what they needed to take him down. More details have come out nowhttp://arstechnica.com/tech-policy/news/2012/03/stakeout-how-the-fbi-tracked-and-busted-a-chicago-anon.ars, completing a picture of how the sting took place from start to finish. It turns out that even the server space given from Sabu to anarchaos storing the details of 30,000 credit cards (from the Stratfor hack) had been funded by the FBI. * http://arstechnica.com/tech-policy/news/2012/03/stakeout-how-the-fbi-tracked-and-busted-a-chicago-anon.ars ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] Full disclosure is arrest of Sabu
http://gizmodo.com/5890825/lulzsec-leader-betrays-all-of-anonymous On Wed, Mar 7, 2012 at 10:43 AM, Sanguinarious Rose sanguiner...@occultusterra.com wrote: lol, as far as I know she didn't accuse nenolod of a botnet, you did and said he built the botnet for her from what it looks like to me. Then you went on an epic lulz spree comparable to that of a retarded child trying to bit his ear calling it winning. Sorry, forgot to add FD in the to field On Tue, Mar 6, 2012 at 4:35 PM, Laurelai laure...@oneechan.org wrote: On 3/6/2012 5:32 PM, Sanguinarious Rose wrote: I raise you this: http://pastebin.com/R3AL0im6 On Tue, Mar 6, 2012 at 3:51 PM, Laurelai laure...@oneechan.org wrote: On 3/6/2012 2:24 PM, Ferenc Kovacs wrote: 2011/7/25 Laurelai Storm laure...@oneechan.org Oh and im not a part of lulzsec, FYI sabu tweeted 2 minutes ago wtf are you on about sir? maybe we could resurrect this thread. :) Sure lets. http://gizmodo.com/5890825/lulzsec-leader-betrays-all-of-anonymous Im going to paste my favorite part of this article. 6:12:32 PM virus: I don't have proof of him being a snitch, and he doesn't have proof of me being a snitch. it's my word against his. 6:15:39 PM virus: he disappeared for a week, I don't recall what day 6:15:52 PM virus: but when he returned he said his grand mother died and that's why he was MIA 6:16:01 PM virus: after that he started offering me money to own people 6:16:14 PM Sam Biddle: anyone important? 6:16:55 PM virus: backtrace security and laurelai 6:17:22 PM virus: he gave me IPs, asked me to access their accounts with their IP and asked me to access their emails 6:17:25 PM virus: told me he would pay me 6:17:42 PM Sam Biddle: did you? 6:17:53 PM virus: no, I found that to be suspicious and declined Sabu tried to pay someone to hack me and it didn't work, sabu also got caught because he connected to IRC one time with his real IP, so this proves what i said already, sabu hated me and i didn't know anything that the feds didn't already. For a supposed ring leader of a group of master cyber terrorists as the feds like to paint them they couldn't take down one loud mouthed trans woman on the internet. Hell even their ddos against my imageboard failed and i didn't even have cloudflare. And speaking of backtrace security here is Jen giving away government secrets to win internet points on reddit http://imgur.com/a/0g9VG Looks like Jen can't be trusted by anon or the feds. ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ Sorry sanguine i had too, i do feel bad about lying to you. I figured she would hear about it and she would go full retard on nenolod , and she did today. She can't help herself . This of course was great timing with the screenshots so im pretty sure her days as a fed contractor are over since her dumb ass accused the creator of dronebl of having a botnet. ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] Carrier IQ for your phone
http://www.gizmodo.com.au/2011/12/carrier-iq-explains-what-it-does-with-your-data/ On Wed, Dec 14, 2011 at 9:06 AM, coderman coder...@gmail.com wrote: On Sat, Dec 3, 2011 at 4:14 AM, Alan J. Wylie shyyqvfpybf...@wylie.me.uk wrote: ... Interesting response from Carrier IQ in a long article on The Register: http://www.theregister.co.uk/2011/12/02/carrier_iq_interview/ interesting response from FBI in regards to Carrier IQ http://www.muckrock.com/news/archives/2011/dec/12/fbi-carrier-iq-files-used-law-enforcement-purposes/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] Carrier IQ for your phone
another nice one http://www.techdirt.com/blog/wireless/articles/20111213/00271717060/fbi-admits-that-it-uses-carrier-iq-law-enforcement-purposes-wont-say-how.shtml On Wed, Dec 14, 2011 at 10:19 AM, coderman coder...@gmail.com wrote: On Tue, Dec 13, 2011 at 2:50 PM, Ivan .Heca ivan...@gmail.com wrote: http://www.gizmodo.com.au/2011/12/carrier-iq-explains-what-it-does-with-your-data/ These logs [full debug, keylogging, etc.] are generated on phones sold with the Carrier IQ program preloaded but the company says it’s working with manufacturers and networks to adjust the certification process and turn off debugging messages when the phone is activated. what a convenient little bit to flip. debug mode on! anyone else found a way to toggle this remotely? :) also fun: https://collector.iota.spcsdns.net:10003/collector/ anyone got a list of other iq collector URLs? ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
[Full-disclosure] Researchers Uncover 'Massive Security Flaws' In Amazon Cloud
http://www.crn.com/news/cloud/231901911/researchers-uncover-massive-security-flaws-in-amazon-cloud.htm;jsessionid=kT0u8aBKblF5Y14-kIidtA**.ecappj03 ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] [OT] Obama said: American people understand that not everybody's been following the rules
15 Mind-Blowing Facts About Wealth And Inequality In America http://www.businessinsider.com/facts-about-inequality-in-america-2011-11?op=1 On Sat, Oct 15, 2011 at 12:58 PM, Laurelai laure...@oneechan.org wrote: On 10/14/2011 8:21 PM, Christian Sciberras wrote: You think I'm biting that? Skinny and under-age is just about everything you could come up with. Congrats for creativity. Just because two of you decided you found common grounds for insult doesn't mean you're god-almighty-indisputably-right in every piece of shit you come up with. Did I mention it's shit? With that, I give you one, you have a point, I should have stopped responding ever since some guy decided to equate a couple dozen of people into America's 1%. Strange, thought security guys would have been better with numbers... On Sat, Oct 15, 2011 at 2:32 AM, Laurelai laure...@oneechan.org wrote: On 10/14/2011 6:32 PM, xD 0x41 wrote: Cristiano , per favor' mi dai dieci minuti scusa mi ma, e' essentiale .. You really dont realise how much, you attack others when they post, NOMATTER what the topic... yet you are still wondering why somany people seem to despise your skinny little nerdy ass... well, nerdy isnt bad, but, your a downright lookalike for mr.Bean aka rowan atkinson. You could maybe do his stunts, to ? Your the one who is usually abusing others, before the finality wich is simply adults not reesponding, to the baby whos crying out for more aarguements. You should stfu, and learn more, you assume to know all, in every post, your the brain, yet you are lame, i looked everything up abiout you, and yes, go ahead, and setup a nice wordpress secure setting, php wise to, then yes, id maybe hink your atleast a halfwit ;) Anyhow, your basically a tr0ll, and, you seem to keep goading, even AFTER the others, have completely stopped responding to you, simply because, Laurelai was right, why would anyone want to keep up a thread wich has now turned malign, as i forsaw a week ago, but, i did not think it would even make a week, People like you, keep inspiring the flame to burn brighter.. wich to me, is nastier than any *abuse* names, wich, you clearly have not counted howmany times you have actually called others, some form of rude name/word/personal attack. Maybe when you GROW UP, and behave as an adult, then I would assume the list will start to hear you, even through the bs. Anyhow, i applaud you, for *coming out* as to say, I mean, putting your pic up, like that, mate, you could be a pornstar! what you doin online :P~~~bahahaha go back to grade.2 then repeate it, then move on... then, if you work out how to call 911, call someone who gives a shit. Idiotic kid, grow the hell up. xd-- // IND SEC CONSILTANT FOR Yep yep Security (simply coz it sounds good) YEP YEP for all your Hat attire needs! On 15 October 2011 08:57, Christian Sciberras uuf6...@gmail.com wrote: Yeah, let's just all ignore low insults. The world would be a much better place without them and whoever said them in the first place... On Fri, Oct 14, 2011 at 11:02 PM, Laurelai laure...@oneechan.orgwrote: On 10/14/2011 2:25 PM, Christian Sciberras wrote: Resorting to personal attacks? Nice. Technical skills in what? Running a wordpress blog? Defacing a website? Growing pot? I rarely publicise any materials, most of the time I just tell whoever is responsible to do a fix. I'm not really running after publicity, unlike you guys. Also note that I never said I'm a seasoned hacker... in fact, my occupation is quite on the opposite side of the spectrum... You also seem to know more than I do what the Ubuntu VM I have contains. But that must make all the difference! I mean, people that don't know qubits from bits shouldn't be allowed in such discussions (of course there's wikipedia...) On Fri, Oct 14, 2011 at 6:38 PM, Georgi Guninski gunin...@guninski.com wrote: Christian Sciberras, I have trouble judging your technical skills - all I have seen is bad smalltalk. Do you have any technical publications you can share so I can judge? btw, the best i found was you could could reproduce a bug in a CMS and in addition you can't tell root from user password on vanilla ubuntu. -- joro On Fri, Oct 14, 2011 at 02:11:13AM +0200, Christian Sciberras wrote: So if they cause damage for profit that makes it ok? No. But it's certainly better than doing damage without profit. Making profit means that at the end of the day, the money's going to go somewhere further in the chain. Flattening a tower, for instance, or attacking the local bank that refused to give you a loan because of the time you spent in a cell, isn't as productive. Neither is it making a company loose clients/profit just because they decided they don't want you to use their services (as if you did have a right in the first place...). And yes I acknowledge the American public has a
[Full-disclosure] Meet the Guy Who Snitched on Occupy Wall Street to the FBI and NYPD
http://gawker.com/5850054/meet-the-guy-who-snitched-on-occupy-wall-street-to-the-fbi-and-nypd ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
[Full-disclosure] Two Remote Code Execution Vulnerabilities in Internet Explorer
### Vulnerability 1: Internet Explorer Select Element Remote Code Execution ### Original advisory: http://ifsec.blogspot.com/2011/10/internet-explorer-select-element-remote.html I. OVERVIEW There is a vulnerability in Internet Explorer which enables execution of arbitrary code if the user visits a web page controlled by the attacker. The vulnerability is caused by incorrectly validating integer parameter passed to the 'add' method of the Select HTML element. This vulnerability has been observed in Internet Explorer 8. The vulnerability has been patched by Microsoft on October 11, 2011. II. THE BUG The bug is caused by incorrectly validating integer parameter passed to the 'add' method of the Select HTML element under certain conditions. The 'add' method of the Select HTML element is used to add an Option to the Select element. It accepts two parameters: 1. An Option object to be added 2. An integer, specifying the index of the new Option element Under certain conditions, the second parameter is not properly validated, which can lead to corrupting memory at arbitrary address and, in turn, code execution. III. IMPACT The vulnerability can be used to execute arbitrary code in the context of the currently logged in user if the user visits a specially crafted web page. JavaScript needs to be enabled in order for the attacker to be able to exploit the vulnerability (it is enabled by default in all versions of Internet Explorer). IV. PoC A PoC exploit that demonstrates reliable code execution on Internet Explorer 8 on Windows 7 SP1 has been developed. The release of the exploit code is planned on a later date, once everyone has had plenty of time to patch. However, the description of the method that was used to bypass ASLR and otherwise enable reliable code execution can be found here: http://ifsec.blogspot.com/2011/06/memory-disclosure-technique-for.html V. REFERENCES http://ifsec.blogspot.com/2011/10/internet-explorer-select-element-remote.html http://technet.microsoft.com/en-us/security/bulletin/ms11-081 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1999 http://www.zerodayinitiative.com/advisories/published/ ### Vulnerability 2: Internet Explorer Option Element Remote Code Execution ### Original advisory: http://ifsec.blogspot.com/2011/10/internet-explorer-option-element-remote.html I. OVERVIEW There is a vulnerability in Internet Explorer which enables execution of arbitrary code if the user visits a web page controlled by the attacker. The vulnerability is caused by an use-after-free bug triggered by accessing a previously deleted Option element. This vulnerability has been observed in Internet Explorer versions 6, 7 and 8. The vulnerability has been patched by Microsoft on October 11, 2011. II. THE BUG In Internet Explorer, the implementation of Select HTML element contains an array of pointers to the Option elements the Select element contains. This array is called the Option cache. Normally, whenever an Option element inside a Select element is accessed via JavaScript, Option cache is rebuilt, thus ensuring its consistency. However, there are some JavaScript methods that can be used to delete and modify the Option elements contained inside the Select element without rebuilding the Option cache. In combination, these methods enable modifying a previously deleted Option element. III. IMPACT The vulnerability can be used to execute arbitrary code in the context of the currently logged in user if the user visits a specially crafted web page. JavaScript needs to be enabled in order for the attacker to be able to exploit the vulnerability (it is enabled by default in all versions of Internet Explorer). IV. PoC A PoC exploit that demonstrates code execution has been developed. However, due to the severity of the vulnerability, release of the exploit code is not planned at this time. V. REFERENCES http://ifsec.blogspot.com/2011/10/internet-explorer-option-element-remote.html http://technet.microsoft.com/en-us/security/bulletin/ms11-081 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1996 http://www.zerodayinitiative.com/advisories/published/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] Possible German Governmental Backdoor found (R2D2)
interesting *DigiTask Remote Forensic Spyware * http://cryptome.org/0005/michaelthomas.pdf On Fri, Oct 14, 2011 at 11:38 AM, valdis.kletni...@vt.edu wrote: On Thu, 13 Oct 2011 14:44:32 PDT, Andrew Wallace said: No, they started moderating the list January 2009. --- Andrew Wallace Independent consultant www.n3td3v.org.uk From: Byron Sonne byron.so...@gmail.com To: full-disclosure@lists.grok.org.uk Sent: Thursday, October 13, 2011 10:33 PM Subject: Re: [Full-disclosure] Possible German Governmental Backdoor found (R2D2) I thought this was an unmoderated list? It appears my submission has been held back. To clarify: the list itself is (to the best of my knowledge), in fact *not* moderated, which involves somebody actually looking at all postings and doing a yes/ no check on the enclosed content. That is *different* from *certain user addresses* being set to permanent moderation status. There's unfortunately some people that are still fuzzy on the difference, and some that insist on conflating the two. https://www.gnu.org/s/mailman/mailman-admin/node22.html tl;dr: No, the list isn't moderated, Andrew is (and other individuals may or may not be at any given time). Byron: Having said that, I have no idea what delayed your original posting to the list. Your follow-up appears to have cleared the list in about 6 seconds from arrival to queued for delivery, so was almost certainly unmoderated. ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] [OT] Obama said: American people understand that not everybody's been following the rules
don't feed the trolls http://whatreallyhappened.com/ On Fri, Oct 14, 2011 at 2:53 PM, Laurelai laure...@oneechan.org wrote: On 10/13/2011 7:11 PM, Christian Sciberras wrote: So if they cause damage for profit that makes it ok? No. But it's certainly better than doing damage without profit. Making profit means that at the end of the day, the money's going to go somewhere further in the chain. Flattening a tower, for instance, or attacking the local bank that refused to give you a loan because of the time you spent in a cell, isn't as productive. Neither is it making a company loose clients/profit just because they decided they don't want you to use their services (as if you did have a right in the first place...). So by your logic the civil disobedience that helped sparked the revolutionary war is worse than if someone had done the same acts just to drive up tea prices? Again I also remind you the trickle down theory doesn't work And yes I acknowledge the American public has a measure of responsibility in the situation too, human beings are by nature imperfect, but the largest share of responsibility lies with the names listed below. The largest share? I can see Ex-president Bush trying to sell you a bottle of beer for $10 dollars ($7 profit). Wait, I can't. But we did see him increase deregulation and allow this to happen, we also saw him provoke a war with another country based on a known lie for the sole purpose of gaining resources and more control in the middle east. We saw him legalize torture and saw him strip away a good chunk of our civil liberties so the anti terror industry could make a buck. But like you said its ok since someone is making money off of it. Who needs civil liberties anyways right? That sort of thing has happened to me and I paid back every dime of it, most people are decent human beings and would do the same. Most people? I could have sworn 90% of the people in the NYC subway would thank $deity if you suddenly dropped dead so they could get things off you. Call me cynical, but I wouldn't trust anyone else in such cases, other than myself. Frankly 90% of people on this list would just thank $deity i suddenly dropped dead regardless of how much stuff i had :) Regarding that list of yours, great! Now we just need a little more effort. For each of those persons, please enlighten us as to what they did legally wrong. Of course, the people that landed in jail shouldn't be counted. The 99% protest is a modern one committed to change, it just can't right wrongs by pointing at jailed people. http://www.time.com/time/specials/packages/article/0,28804,1877351_1877350_1877339,00.html On Thu, Oct 13, 2011 at 11:35 PM, Laurelai laure...@oneechan.org wrote: On 10/13/2011 9:18 AM, Christian Sciberras wrote: I simply acknowledge the fact that some people work hard to get obscenely rich, but I just can't stand people that cause damage for the fun of it. So if they cause damage for profit that makes it ok? Yes, I stick for everyone that minds his business, instead of ruining others' for the fun of it. What bothers me is the fact that those hypocrites (protesters) are crying out loud against some people they're highly envious of with the excuse of the depression. Well, here's the news; the famous depression has been brought about by these same people! And yes I acknowledge the American public has a measure of responsibility in the situation too, human beings are by nature imperfect, but the largest share of responsibility lies with the names listed below. If someone above is collecting free money because of incentives for people to spend money (and which seem to work well), I can't blame him. Yes because trickle down theory worked *so* well How many times in your life have you paid back something you received by mistake and which wasn't yours? While I would foremost applaud anyone that would right such a wrong, I just can't ignore the fact that those people out there representing the 99% are big-time hypocrites. That sort of thing has happened to me and I paid back every dime of it, most people are decent human beings and would do the same. On a different argument, since you seem to know well enough how some of the 1% are doing immoral things, why don't you start by handing out names instead of talking air just as the 99% crowd has been doing up till now? *Alan Greenspan, chairman of US Federal Reserve 1987- 2006 **Mervyn King, governor of the Bank of England **Bill Clinton, former US president* *Gordon Brown, prime minister* *George W Bush, former US president* *Senator Phil Gramm **Abby Cohen, Goldman Sachs chief US strategist **Kathleen Corbet, former CEO, Standard Poor's **Hank Greenberg, AIG insurance group **Andy Hornby, former HBOS boss **Steve Crawshaw, former BB boss **Adam Applegarth, former Northern Rock boss **Dick Fuld, Lehman Brothers chief
Re: [Full-disclosure] [OT] the nigger said: American people understand that not everybody's been following the rules
fast and furious http://www.youtube.com/watch?v=IC2C2lIwNSA On Wed, Oct 12, 2011 at 5:51 PM, Christian Sciberras uuf6...@gmail.comwrote: Darren's and indeed many other people's lame excuse is that they're too humble to be greedy. As if! If anything, most people are greedier than that 1%. The only difference is that people are bad at it, unlike that 1%. Just consider the fact that Average Joe would be just too happy to evade tax. Richer Joe, instead, might be doing the same with his $1bn business. In both cases, they're breaking the law. The occupy wallstreet movement is simply hypocrisy. Did I happen to mention that I'm far from rich? In the coming years, I'll be struggling to get my own drop of land. The only unfair part I see is people complaining while buying iPads and iCrap over Facebook, Twitter etc.. On Tue, Oct 11, 2011 at 6:07 PM, Jeffrey Walton noloa...@gmail.comwrote: On Tue, Oct 11, 2011 at 9:25 AM, Darren Martyn d.martyn.fulldisclos...@gmail.com wrote: Chris - Empathy, guilt, and morals. Guilt being a major factor. The possibility was always there to make millions via evil means, but morals and knowing it would be hard to live with. The problem is not getting lots of money. That is the easy part. The issue is with living with yourself afterward. How about illegal? Check out the Hobbs Act [1]. I'm not making this crap up - the US has laws on the books for negatively affecting commerce (which the crash did), and using fear to peddle their warez (how financial institutions market their instruments). There's probably provisions in the PATRIOT Act, too. The last tine I checked (about a year ago), the SEC had opened fewer than 100 civil investigations. No criminal investigations, despite the fact that some of the financial institutions created spurious ratings companies just to rate their instruments 'good'. Jeff [1] http://www.justice.gov/usao/eousa/foia_reading_room/usam/title9/131mcrm.htm On Tue, Oct 11, 2011 at 12:43 AM, Bob Dobbs bobd10...@gmail.com wrote: On Mon, Oct 10, 2011 at 10:57 AM, Jeffrey Walton noloa...@gmail.com wrote: Who are the real threats to the US: terrorist who try to dream up ways to do the US harm, or Corporate and Congress which does the US harm? I hate to contribute to an off-topic thread but you've successfully trolled me here: Congress has done FAR more harm to the US than terrorists over the last 10 years by just about every measure. ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] [OT] Obama said: American people understand that not everybody's been following the rules
http://endoftheamericandream.com/archives/fast-and-furious-22-shocking-facts-about-the-scandal-that-could-bring-down-the-obama-administration On Thu, Oct 13, 2011 at 10:33 AM, David Alanis can...@dalan.us wrote: Quoting Paul Schmehl pschmehl_li...@tx.rr.com: The thing these stupid people don't seem to get is that millionaires and billionaires are the only ones that can afford to move elsewhere. You're an idiot. If you think that Obama is a Muslim, that Obama care will bring upon death panels, that Obama is a socialist, and that all millionaires and billionaires (including Thor), will move out just because they're called upon to pay more taxes and help America out of debt, you're an idiot. Please don't call me *stupid* just because you disagree with me politically. If you're not a millionaire or billionaire, how *would you know* that the 1% are packing getting ready to move? Did you pick this up from Fox News? (I won't respond to any of your response, I am done with this silly thread) Tax them enough and they'll simply move to another country. That's already what's happening with corporations and with some individuals. As their tax load increases, the incentive to simply move gets greater and greater until one day they do. Then their tax load goes to zero and the money is gone forever. We've already seen these within the US, where millionaires are leaving CA and NY for greener pastures. If they leave the US entirely, they won't be back. Then who will the government get the money from? --On October 12, 2011 8:31:34 PM + Thor (Hammer of God) t...@hammerofgod.com wrote: Well, you said nor do I care so I too am confused. However, since you did ask, there is an important aspect to your retort that you seem ok with dancing over, and that is the fact the taxing millionaires and billionaires would be *additional* taxes. Mine won't go down, and in fact, will probably go up. And I guarantee, without question and as definitely as the sun will rise tomorrow, when whatever x population is taxed more, and whatever resolution these people think will come from all of this noise, that they will CONTINUE to bitch and moan when other people have more than they do. The premise of I am the 99% or your use of average is specious. Average what? Income? No, that can't be it. Education? No, that's clearly not it. Average tax payer? Certainly not. Average person bitching about how they don't have what they want and think it should magically be given to them? Well, that's more like it, isn't it? The entire movement is a waste of time, and the let them eat cake-ers will find that out, as they always do, when they become the ones that have to start baking. The reason I posted the link is because it's freaking FUNNY to call out the ME-TOO'S! Now if you'll excuse me, I must get back to my job so that I can try to afford the taxes taken out. t -Original Message- From: full-disclosure-boun...@lists.grok.org.uk [mailto: full-disclosure- boun...@lists.grok.org.uk] On Behalf Of David Alanis Sent: Wednesday, October 12, 2011 12:19 PM To: full-disclosure@lists.grok.org.uk Subject: Re: [Full-disclosure] [OT] Obama said: American people understand that not everybody's been following the rules Quoting Thor (Hammer of God) t...@hammerofgod.com: No, it goes to show you how much most of the people bitching about all of this are full of shit, as per the oldie but goodie Holiday in Cambodia by the Dead Kennedy's. The people who REALLY need help are not the ones sitting around all day posting shite on the internet. I don't know where you're getting at or what political stance you take nor do I care. If you don't think the people who are protesting against the greed of wall street are average Americans, then you need help. Tell us then, since you cared enough to post a link trying to discredit the anti- wall-street movement based on exifs. Who are the people who need the help? Corporations? Cause I've heard opposing arguments by *average* Americans that corporations are people. Last time I checked, Obama's Job Act gives even more tax breaks to companies and extends unemployment benefits to *Americans* with out jobs by taxing millionaires and billionaires. You have me confused. -Original Message- From: full-disclosure-boun...@lists.grok.org.uk [mailto:full-disclosure- boun...@lists.grok.org.uk] On Behalf Of David Alanis Sent: Wednesday, October 12, 2011 10:21 AM To: full-disclosure@lists.grok.org.uk Subject: Re: [Full-disclosure] [OT] Obama said: American people understand that not everybody's been following the rules Quoting Thor (Hammer of God) t...@hammerofgod.com: I saw this on FB and thought I would pass it along: http://99percentexif.tumblr.com/ It's the exif data from the photos the 99%'ers are
Re: [Full-disclosure] [OT] Obama said: American people understand that not everybody's been following the rules
http://www.businessinsider.com/what-wall-street-protesters-are-so-angry-about-2011-10?op=1 On Thu, Oct 13, 2011 at 10:29 AM, Ivan . ivan...@gmail.com wrote: http://endoftheamericandream.com/archives/fast-and-furious-22-shocking-facts-about-the-scandal-that-could-bring-down-the-obama-administration On Thu, Oct 13, 2011 at 10:33 AM, David Alanis can...@dalan.us wrote: Quoting Paul Schmehl pschmehl_li...@tx.rr.com: The thing these stupid people don't seem to get is that millionaires and billionaires are the only ones that can afford to move elsewhere. You're an idiot. If you think that Obama is a Muslim, that Obama care will bring upon death panels, that Obama is a socialist, and that all millionaires and billionaires (including Thor), will move out just because they're called upon to pay more taxes and help America out of debt, you're an idiot. Please don't call me *stupid* just because you disagree with me politically. If you're not a millionaire or billionaire, how *would you know* that the 1% are packing getting ready to move? Did you pick this up from Fox News? (I won't respond to any of your response, I am done with this silly thread) Tax them enough and they'll simply move to another country. That's already what's happening with corporations and with some individuals. As their tax load increases, the incentive to simply move gets greater and greater until one day they do. Then their tax load goes to zero and the money is gone forever. We've already seen these within the US, where millionaires are leaving CA and NY for greener pastures. If they leave the US entirely, they won't be back. Then who will the government get the money from? --On October 12, 2011 8:31:34 PM + Thor (Hammer of God) t...@hammerofgod.com wrote: Well, you said nor do I care so I too am confused. However, since you did ask, there is an important aspect to your retort that you seem ok with dancing over, and that is the fact the taxing millionaires and billionaires would be *additional* taxes. Mine won't go down, and in fact, will probably go up. And I guarantee, without question and as definitely as the sun will rise tomorrow, when whatever x population is taxed more, and whatever resolution these people think will come from all of this noise, that they will CONTINUE to bitch and moan when other people have more than they do. The premise of I am the 99% or your use of average is specious. Average what? Income? No, that can't be it. Education? No, that's clearly not it. Average tax payer? Certainly not. Average person bitching about how they don't have what they want and think it should magically be given to them? Well, that's more like it, isn't it? The entire movement is a waste of time, and the let them eat cake-ers will find that out, as they always do, when they become the ones that have to start baking. The reason I posted the link is because it's freaking FUNNY to call out the ME-TOO'S! Now if you'll excuse me, I must get back to my job so that I can try to afford the taxes taken out. t -Original Message- From: full-disclosure-boun...@lists.grok.org.uk [mailto: full-disclosure- boun...@lists.grok.org.uk] On Behalf Of David Alanis Sent: Wednesday, October 12, 2011 12:19 PM To: full-disclosure@lists.grok.org.uk Subject: Re: [Full-disclosure] [OT] Obama said: American people understand that not everybody's been following the rules Quoting Thor (Hammer of God) t...@hammerofgod.com: No, it goes to show you how much most of the people bitching about all of this are full of shit, as per the oldie but goodie Holiday in Cambodia by the Dead Kennedy's. The people who REALLY need help are not the ones sitting around all day posting shite on the internet. I don't know where you're getting at or what political stance you take nor do I care. If you don't think the people who are protesting against the greed of wall street are average Americans, then you need help. Tell us then, since you cared enough to post a link trying to discredit the anti- wall-street movement based on exifs. Who are the people who need the help? Corporations? Cause I've heard opposing arguments by *average* Americans that corporations are people. Last time I checked, Obama's Job Act gives even more tax breaks to companies and extends unemployment benefits to *Americans* with out jobs by taxing millionaires and billionaires. You have me confused. -Original Message- From: full-disclosure-boun...@lists.grok.org.uk [mailto:full-disclosure- boun...@lists.grok.org.uk] On Behalf Of David Alanis Sent: Wednesday, October 12, 2011 10:21 AM To: full-disclosure@lists.grok.org.uk Subject: Re: [Full-disclosure] [OT] Obama said: American people understand that not everybody's been following the rules Quoting Thor (Hammer of God) t
Re: [Full-disclosure] [OT] the nigger said: American people understand that not everybody's been following the rules
Welcome to Ameristan majority of street lights have been removed from one Michigan city that was having trouble paying its electricity bill http://12160.info/profiles/blogs/majority-of-street-lights-have-been-removed-from-one-michigan-cit Colorado empties popular lake to pay its water bill http://www.telegraph.co.uk/news/worldnews/northamerica/usa/8816656/Colorado-empties-popular-lake-to-pay-its-water-bill.html and so on. Your tax $$$ go to bailouts On Thu, Oct 13, 2011 at 10:20 AM, Ivan . ivan...@gmail.com wrote: fast and furious http://www.youtube.com/watch?v=IC2C2lIwNSA On Wed, Oct 12, 2011 at 5:51 PM, Christian Sciberras uuf6...@gmail.comwrote: Darren's and indeed many other people's lame excuse is that they're too humble to be greedy. As if! If anything, most people are greedier than that 1%. The only difference is that people are bad at it, unlike that 1%. Just consider the fact that Average Joe would be just too happy to evade tax. Richer Joe, instead, might be doing the same with his $1bn business. In both cases, they're breaking the law. The occupy wallstreet movement is simply hypocrisy. Did I happen to mention that I'm far from rich? In the coming years, I'll be struggling to get my own drop of land. The only unfair part I see is people complaining while buying iPads and iCrap over Facebook, Twitter etc.. On Tue, Oct 11, 2011 at 6:07 PM, Jeffrey Walton noloa...@gmail.comwrote: On Tue, Oct 11, 2011 at 9:25 AM, Darren Martyn d.martyn.fulldisclos...@gmail.com wrote: Chris - Empathy, guilt, and morals. Guilt being a major factor. The possibility was always there to make millions via evil means, but morals and knowing it would be hard to live with. The problem is not getting lots of money. That is the easy part. The issue is with living with yourself afterward. How about illegal? Check out the Hobbs Act [1]. I'm not making this crap up - the US has laws on the books for negatively affecting commerce (which the crash did), and using fear to peddle their warez (how financial institutions market their instruments). There's probably provisions in the PATRIOT Act, too. The last tine I checked (about a year ago), the SEC had opened fewer than 100 civil investigations. No criminal investigations, despite the fact that some of the financial institutions created spurious ratings companies just to rate their instruments 'good'. Jeff [1] http://www.justice.gov/usao/eousa/foia_reading_room/usam/title9/131mcrm.htm On Tue, Oct 11, 2011 at 12:43 AM, Bob Dobbs bobd10...@gmail.com wrote: On Mon, Oct 10, 2011 at 10:57 AM, Jeffrey Walton noloa...@gmail.com wrote: Who are the real threats to the US: terrorist who try to dream up ways to do the US harm, or Corporate and Congress which does the US harm? I hate to contribute to an off-topic thread but you've successfully trolled me here: Congress has done FAR more harm to the US than terrorists over the last 10 years by just about every measure. ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] [OT] Obama said: American people understand that not everybody's been following the rules
do your own research, read your own shit, make your own decisions 2011/10/13 夜神 岩男 supergiantpot...@yahoo.co.jp On 10/13/2011 08:53 AM, Jeffrey Walton wrote: On Wed, Oct 12, 2011 at 7:47 PM, Ivan .ivan...@gmail.com wrote: http://www.businessinsider.com/what-wall-street-protesters-are-so-angry-about-2011-10?op=1 Very nice. All the pictures make it very easy to take in quickly. It should help those who don't want to take a detailed look at the issues. If I could only get it on my etch-a-sketch Jeff Funny how accurate your statement is about those who don't want to take a detailed look at the issues. Those are the ones making all the noise. I would like to draw your attention to the Featured Comment at the bottom of the article. It is spot on and a critical counterpoint. The entire article is full of leading indicators and trailing indicators, but arguing them as if their meaning were reversed. The most interesting part about all this is looking at them with an eye to predictive analysis. The charts show that we are not in uncharted territory, and that corporate profits in a down season is a leading indicator in a sharp reduction in unemployment (that is, job creation) and another prolonged boom cycle. This will eventually be interrupted by a sharp, short recession, like the one now. The charts used in this article do tell a story, and its not the one the whole 99%/1% argument crowd is about. ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] [OT] the nigger said: American people understand that not everybody's been following the rules
MSNBC labels AP ‘inherently racist’ for accurate translation of Obama speech http://investmentwatchblog.com/msnbc-labels-ap-inherently-racist-for-accurate-translation-of-obama-speech/ some 1% on the list *Chicago Traders Respond To Protesters With Signs Reading ‘We Are The 1%’http://thinkprogress.org/economy/2011/10/05/336590/chicago-protests-we-are-1-percent/| * The Occupy Wall Street movement spread to Chicago this week, where protesters have gathered outside the Chicago Board of Trade, the world’s oldest options and futures trading center. Like the protesters in New York and other cities around the country, the group gathered to protest our nation’s growing income inequalityhttp://thinkprogress.org/politics/2011/05/04/163476/us-unequal-uganda-pakistan/, as the top 1 percent of Americans continue to see their incomes rise rapidlyhttp://thinkprogress.org/politics/2011/04/18/159261/tax-disparity-chart/and their tax rates fall. The Chicago traders, confronted by the protesters’ “We are the 99 percent http://wearethe99percent.tumblr.com/” message, crafted their own not-so-subtle reply, hanging signs in eighth-floor windows that said, “We are the 1%http://chicagoist.com/2011/10/05/board_of_trade_has_a_message_for_oc.php “: On Fri, Oct 7, 2011 at 9:13 AM, xD 0x41 sec...@gmail.com wrote: Hrm very good point there. It is obviously monitored, but really, would the mnitors, even get involved in things... i dont know if that is just part of how to stay under, but could be. I do not know how mi5/6 works but, i have heard rumors, that he is wsome form of undercover something... wich is kinda cool with me.I would prefer to know that, or even think that, than think he is a bad guy and, just being an arse because he can be... i would love some independant input from people who are working as operatives, as Valdis said,it is good to see these peoples input, especially on some topics like ITsec and exploits/pocs and anything wondeful in this area. I know i am fine with that but, amazing to howmany actual results point at n3td3v as this... i certainly wont be using crazycoders.com/.us for any posts for n3td3v,but sertainly other peoples blogs, are full of him/he ? Anyhow.. enough for me, cappucino time. cheers, xd On 7 October 2011 08:59, valdis.kletni...@vt.edu wrote: On Thu, 06 Oct 2011 14:25:18 PDT, andrew.wallace said: MI6 operative - I didn't know you delt in conspiracy. My web page clearly states independent. Which is exactly what it *would* say if you were an undercover operative. http://www.google.com/search?q=n3td3v+mi5 http://www.google.com/search?q=n3td3v+mi6 http://www.google.com/search?q=andrew+wallace+mi5 http://www.google.com/search?q=andrew+wallace+mi6 Certainly a lot of history there. In any case, whether or not you're an MI6 operative, if the list *is* for national security advisors, isn't it silly for you to try to shut it down because of your anti-disclosure stance? ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
[Full-disclosure] VPN provider helped track down alleged LulzSec member
http://www.h-online.com/security/news/item/VPN-provider-helped-track-down-alleged-LulzSec-member-1349666.html ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] Vulnerabilities in GlobalWoW
C'mon... isn't that (gaming non-licensed server over a patented application) illegal? Reporting vulns on counterfeit applications is useless. Ivan Carlos CISO, Consultant +55 (11) 8112-0666 www.icarlos.net -Original Message- From: full-disclosure-boun...@lists.grok.org.uk [mailto:full-disclosure-boun...@lists.grok.org.uk] On Behalf Of MustLive Sent: quarta-feira, 31 de agosto de 2011 17:44 To: submissi...@packetstormsecurity.org; full-disclosure@lists.grok.org.uk Subject: [Full-disclosure] Vulnerabilities in GlobalWoW Hello list! I want to warn you about Insufficient Anti-automation and Denial of Service vulnerabilities in GlobalWoW. Also GlobalWow can be included in ArcEmu and WOW Emulator Server. This is the last of few advisories which I've made in April 2010. In this advisory I'm continue to inform readers of mailing lists about vulnerable web applications which are using CaptchaSecurityImages.php. - Affected products: - Vulnerable are GlobalWow 3.0.9 and previous versions (and potentially next versions). Also the next products are affected: ArcEmu and WOW Emulator Server with which GlobalWow can be bundled. I've already wrote last year the recommendations about fixing these issues in another my advisory concerning vulnerable web application with CaptchaSecurityImages.php. As I wrote earlier (http://www.securityfocus.com/archive/1/511023), developers of CaptchaSecurityImages.php fixed this hole at 27.03.2007. So one of the way to fix these issues is to use fixed version of the script or to make appropriate changes in com_bookman's version of the script. -- Details: -- These are Insufficient Anti-automation and Denial of Service vulnerabilities. The vulnerabilities exist in captcha script CaptchaSecurityImages.php, which is using in this system. I already wrote at my site about vulnerabilities in CaptchaSecurityImages (http://websecurity.com.ua/4043/). Insufficient Anti-automation (WASC-21): http://site/acs/CaptchaSecurityImages.php?width=150height=100characters=2 Captcha bypass is possible as via half-automated or automated (with using of OCR) methods, which were mentioned before (http://websecurity.com.ua/4043/), as with using of session reusing with constant captcha bypass method (http://websecurity.com.ua/1551/), which was described in project Month of Bugs in Captchas. DoS (WASC-10): http://site/acs/CaptchaSecurityImages.php?width=1000height=9000 With setting of large values of width and height it's possible to create large load at the server. Timeline: 2010.04.16 - disclosed at my site. 2010.04.17 - informed developers. 2010.04.18 - informed developers on another e-mail. I mentioned about these vulnerabilities at my site (http://websecurity.com.ua/4134/). Best wishes regards, MustLive Administrator of Websecurity web site http://websecurity.com.ua ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] DEF CON 19 - hackers get hacked!
*A German technology researcher on Wednesday showed global mobile makers and technology firms how General Packet Radio Servicehttp://en.wikipedia.org/wiki/General_Packet_Radio_Servicecan easily be tapped, intercepted, and decrypted with an average mobile phone and a few applications. According to the New York Times, Karsten Nohl, a computer engineer and mobile security researcher, demonstrated to fellow researchers gathered to attend Chaos Communication Camphttp://events.ccc.de/2010/08/10/chaos-communication-camp-2011/, a Berlin-based hackers event, how to intercept the voice or data messages sent between mobile deviceshttps://www.nytimes.com/2011/08/10/technology/hacker-to-demonstrate-weak-mobile-internet-security.htmlover GPRS easily, owing to weak protection provided by mobile network carriers for data information. Nohl, in collaboration with his colleague Luca Melette, tapped the information within a radius of five kilometershttp://www.itproportal.com/2011/08/11/gprs-can-be-hacked-easily-claims-german-researcher/#ixzz1UkPeNdiEusing a seven-year-old inexpensive mobile phone from Motorola. http://mobile.slashdot.org/story/11/08/11/1928215/GPRS-Can-Be-Hacked-Easily-Claims-German-Researcher * http://www.nytimes.com/2011/08/10/technology/hacker-to-demonstrate-weak-mobile-internet-security.html?_r=1 On Fri, Aug 12, 2011 at 12:44 AM, Basan ba...@gmx.us wrote: - Original Message - From: -= Glowing Sex =- Sent: 08/10/11 10:56 AM To: coderman Subject: Re: [Full-disclosure] DEF CON 19 - hackers get hacked! times are a changing... but, i see now what tyou mean... still, i just dont know why people even INSTALL or, accept anything at a defcon meeting, ofc someone will try to make some name, mining for data, is stealing an id nowdays, so there would be GREat potential for one device, to connect to some network, and rescan for other weak/known exploits... then you have an army :) To my knowledge, I was watching people's devices getting popped with little to no interaction by their part. If memory serves me correctly maybe someone did an apt-get update on their machine, but outside of that just the usual browsing and remote work. but, intersting about 4G... i have not yet to see that haxd so, 1 point for that but, thats prolly coz ui aint really been looking at that side of it It was impressive. Essentially if you had a device on and near the Rio during (and for some time after) DEF CON, you had a high chance of being compromised. -- Basan - Your friendly fire-breathing chicken monster ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
[Full-disclosure] Samsung Galaxy Tab 10.1 blocked from sale in Australia
An Apple spokesperson told iTnews that it would continue to protect its design patents. This kind of blatant copying is wrong, and we need to protect Apple's intellectual property when companies steal our ideas. http://www.itnews.com.au/News/265483,samsung-galaxy-tab-101-blocked-from-sale-in-australia.aspx And then watch Steve Jobs in an interview saying; Picasso had a saying, good artists copy, great artists stealand we have always been shameless in stealing great ideas. https://www.youtube.com/watch?v=CW0DUg63lqUfeature=related ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
[Full-disclosure] A pound of flesh: how Cisco's unmitigated gall derailed one man's life
Buy Juniper! http://arstechnica.com/tech-policy/news/2011/07/a-pound-of-flesh-how-ciscos-unmitigated-gall-derailed-one-mans-life.ars ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] Sony: No firewall and no patches
doesn't it also mandate the encryption of CC info? requirement 4 Encrypting and Storing Credit Card Data plenty of reports that the data was not encrypted, and also plenty that say it was. On Tue, May 10, 2011 at 4:40 PM, Tracy Reed tr...@ultraviolet.org wrote: On Tue, May 10, 2011 at 05:07:39AM +, Dobbins, Roland spake thusly: Stateful firewalls have no place in front of servers, where every incoming request is unsolicited, and therefore there is no state to inspect in the first place. The PCI SSC requires a stateful firewall in front of servers processing credit card data. Not only to block inbound access to any ports or services accidentally exposed but the outbound policy must also be default deny to make it more difficult to exfiltrate stolen data. If you have traffic going out to a high numbered port and you are not keeping state how do you know if that is a reply packet to an existing inbound connection or if it is an unauthorized outbound connection? Of course, the network should be properly segmented so that only the servers processing payment data are in-scope. You may be right about not putting a stateful firewall in front of the gaming servers (in Sony's case). Where stateful firewalls in front of Web servers are incorrectly mandated by various regulatory frameworks, making use of mod_security or its equivalent on the Web servers themselves ensures compliance without creating a DDoS chokepoint. If you don't have a stateful firewall blocking outbound connections why would the traffic even have to go through mod_security? -- Tracy Reed ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] Sony: No firewall and no patches
Ill throw this into the mixer while on topic of FWs The TCP Split Handshake: Practical Effects on Modern Network Equipment http://nmap.org/misc/split-handshake.pdf On Wed, May 11, 2011 at 10:18 AM, Thor (Hammer of God) t...@hammerofgod.com wrote: I would be extremely interested to learn details of how a stateful firewall in front of a server saved a company, when stateless ACLs in hardware-based network infrastructure devices would've led to failure. Seriously, if you don't mind outlining the scenario, I think it would be very instructive. I'd be happy to - I too would like to dive a bit deeper into what your points are as I find them interesting as well. Let's take it offline - you can share back with the group if you feel it valuable. t ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] Facebook
it's the law, specifically CALEA http://en.wikipedia.org/wiki/Communications_Assistance_for_Law_Enforcement_Act On Wed, May 4, 2011 at 9:19 AM, Javier Bassi javierba...@gmail.com wrote: On Tue, May 3, 2011 at 7:51 PM, Daniel Clemens daniel.clem...@packetninjas.net wrote: Prove it! You clearly know nothing about our legal system. You might find this links interesting http://www.youtube.com/watch?v=t0aQojDGSD4 http://www.google.com/transparencyreport/governmentrequests/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] iPhone Geolocation storage
and now tom tom as well http://crave.cnet.co.uk/cartech/tomtom-admits-to-sending-your-routes-and-speed-information-to-the-police-50003618/ On Thu, Apr 28, 2011 at 9:35 AM, Ivan . ivan...@gmail.com wrote: stevie says it just a bug, a patented bug http://gawker.com/?_escaped_fragment_=5795442/apple-patent-reveals-extensive-stalking-plans#!5795442/apple-patent-reveals-extensive-stalking-plans On Wed, Apr 27, 2011 at 8:46 PM, n...@myproxylists.com wrote: M$ are in the love in http://news.cnet.com/8301-31921_3-20057329-281.html On Tue, Apr 26, 2011 at 8:12 PM, Ivan . ivan...@gmail.com wrote: Interesting write up, and apparently old news If you have jailbroken your phone, just use cydia and search for tool 'Untrackerd' to fix this issue. This background process reset the file periodically. I have always said this, after you have JB'd your iPhone, then it becomes a phone :) I hated that apple's bullshit where your phone is completely tied to itunes unless you jailbroke. https://alexlevinson.wordpress.com/2011/04/21/3-major-issues-with-the-latest-iphone-tracking-discovery/ On Fri, Apr 22, 2011 at 1:59 PM, mark seiden m...@seiden.com wrote: yes, that's right. on one of the forensics lists someone pointed out that he started google maps for 6 seconds and ended up with 1253 locations in the cache, all with the same time stamp. those would be potential known locations in your neighborhood. much fuller disclosure in http://markey.house.gov/docs/applemarkeybarton7-12-10.pdf including that the some of the location data comes from google. it looks like everything gets anonymized, aggregated to 5 digit zipcodes, and max retention of 6 months, but don't talk much about what the device does except when it uploads data. the congressional disclosure, while it makes me feel better about location data, contains a few choice items like it's unclear how apple can keep app developers from retaining location data. which doesn't seem forbidden by apple, only by law. it's also unclear why they keep really old data in the cache on the phone. cache bloat results for little benefit. the android doesn't do time-based pruning either and has a similar location cache with the same data it. it appears to me that since the keying is by mac address or the tower id that there will only be one timestamped item for each of those. so if you go around the same neighborhood repeatedly, the same data will be in the cache. so not exactly tracking, just recency. but it would seem prudent to both specify and implement the briefest retention of the location data that was possible to perform the function expected by the user. On Apr 20, 2011, at 12:34 PM, Brandon Matthews wrote: I've been poring over my phone's data, and I'm not sure if the resolution is just very low, or if it's logging the locations of towers and not my phone. Ex: http://imgur.com/2m5tO I'm going to xref with FCC databases soon to try and find out. B (Not speaking for Cisco, only for myself and with nobody's approval) On 4/20/11 12:11 PM, Michele Orru antisnatc...@gmail.com did declare: Already twitted today. Pretty scary btw. I hope there's not the equivalent for Android. antisnatchor Thor (Hammer of God) mailto:t...@hammerofgod.com April 20, 2011 9:05 PM For those of you who have not seen this yet: http://radar.oreilly.com/2011/04/apple-location-tracking.html Description: Description: Description: cid:image001.png@01CBA43F.5B83F2A0 /There's no reason to think outside the box / /if you don't think yourself into it. / ** *My newest book: Thor's Microsoft Security Bible http://www.amazon.com/Thors-Microsoft-Security-Bible-Infrastructures/dp/1597 495727C:/Users/thor/Documents/Cakewalk * ** *Timothy Thor Mullen t...@hammerofgod.com mailto:t...@hammerofgod.com* *http://www.hammerofgod.com http://www.hammerofgod.com/* ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe
Re: [Full-disclosure] iPhone Geolocation storage
stevie says it just a bug, a patented bug http://gawker.com/?_escaped_fragment_=5795442/apple-patent-reveals-extensive-stalking-plans#!5795442/apple-patent-reveals-extensive-stalking-plans On Wed, Apr 27, 2011 at 8:46 PM, n...@myproxylists.com wrote: M$ are in the love in http://news.cnet.com/8301-31921_3-20057329-281.html On Tue, Apr 26, 2011 at 8:12 PM, Ivan . ivan...@gmail.com wrote: Interesting write up, and apparently old news If you have jailbroken your phone, just use cydia and search for tool 'Untrackerd' to fix this issue. This background process reset the file periodically. I have always said this, after you have JB'd your iPhone, then it becomes a phone :) I hated that apple's bullshit where your phone is completely tied to itunes unless you jailbroke. https://alexlevinson.wordpress.com/2011/04/21/3-major-issues-with-the-latest-iphone-tracking-discovery/ On Fri, Apr 22, 2011 at 1:59 PM, mark seiden m...@seiden.com wrote: yes, that's right. on one of the forensics lists someone pointed out that he started google maps for 6 seconds and ended up with 1253 locations in the cache, all with the same time stamp. those would be potential known locations in your neighborhood. much fuller disclosure in http://markey.house.gov/docs/applemarkeybarton7-12-10.pdf including that the some of the location data comes from google. it looks like everything gets anonymized, aggregated to 5 digit zipcodes, and max retention of 6 months, but don't talk much about what the device does except when it uploads data. the congressional disclosure, while it makes me feel better about location data, contains a few choice items like it's unclear how apple can keep app developers from retaining location data. which doesn't seem forbidden by apple, only by law. it's also unclear why they keep really old data in the cache on the phone. cache bloat results for little benefit. the android doesn't do time-based pruning either and has a similar location cache with the same data it. it appears to me that since the keying is by mac address or the tower id that there will only be one timestamped item for each of those. so if you go around the same neighborhood repeatedly, the same data will be in the cache. so not exactly tracking, just recency. but it would seem prudent to both specify and implement the briefest retention of the location data that was possible to perform the function expected by the user. On Apr 20, 2011, at 12:34 PM, Brandon Matthews wrote: I've been poring over my phone's data, and I'm not sure if the resolution is just very low, or if it's logging the locations of towers and not my phone. Ex: http://imgur.com/2m5tO I'm going to xref with FCC databases soon to try and find out. B (Not speaking for Cisco, only for myself and with nobody's approval) On 4/20/11 12:11 PM, Michele Orru antisnatc...@gmail.com did declare: Already twitted today. Pretty scary btw. I hope there's not the equivalent for Android. antisnatchor Thor (Hammer of God) mailto:t...@hammerofgod.com April 20, 2011 9:05 PM For those of you who have not seen this yet: http://radar.oreilly.com/2011/04/apple-location-tracking.html Description: Description: Description: cid:image001.png@01CBA43F.5B83F2A0 /There's no reason to think outside the box / /if you don't think yourself into it. / ** *My newest book: Thor's Microsoft Security Bible http://www.amazon.com/Thors-Microsoft-Security-Bible-Infrastructures/dp/1597 495727C:/Users/thor/Documents/Cakewalk * ** *Timothy Thor Mullen t...@hammerofgod.com mailto:t...@hammerofgod.com* *http://www.hammerofgod.com http://www.hammerofgod.com/* ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe
Re: [Full-disclosure] iPhone Geolocation storage
Interesting write up, and apparently old news https://alexlevinson.wordpress.com/2011/04/21/3-major-issues-with-the-latest-iphone-tracking-discovery/ On Fri, Apr 22, 2011 at 1:59 PM, mark seiden m...@seiden.com wrote: yes, that's right. on one of the forensics lists someone pointed out that he started google maps for 6 seconds and ended up with 1253 locations in the cache, all with the same time stamp. those would be potential known locations in your neighborhood. much fuller disclosure in http://markey.house.gov/docs/applemarkeybarton7-12-10.pdf including that the some of the location data comes from google. it looks like everything gets anonymized, aggregated to 5 digit zipcodes, and max retention of 6 months, but don't talk much about what the device does except when it uploads data. the congressional disclosure, while it makes me feel better about location data, contains a few choice items like it's unclear how apple can keep app developers from retaining location data. which doesn't seem forbidden by apple, only by law. it's also unclear why they keep really old data in the cache on the phone. cache bloat results for little benefit. the android doesn't do time-based pruning either and has a similar location cache with the same data it. it appears to me that since the keying is by mac address or the tower id that there will only be one timestamped item for each of those. so if you go around the same neighborhood repeatedly, the same data will be in the cache. so not exactly tracking, just recency. but it would seem prudent to both specify and implement the briefest retention of the location data that was possible to perform the function expected by the user. On Apr 20, 2011, at 12:34 PM, Brandon Matthews wrote: I've been poring over my phone's data, and I'm not sure if the resolution is just very low, or if it's logging the locations of towers and not my phone. Ex: http://imgur.com/2m5tO I'm going to xref with FCC databases soon to try and find out. B (Not speaking for Cisco, only for myself and with nobody's approval) On 4/20/11 12:11 PM, Michele Orru antisnatc...@gmail.com did declare: Already twitted today. Pretty scary btw. I hope there's not the equivalent for Android. antisnatchor Thor (Hammer of God) mailto:t...@hammerofgod.com April 20, 2011 9:05 PM For those of you who have not seen this yet: http://radar.oreilly.com/2011/04/apple-location-tracking.html Description: Description: Description: cid:image001.png@01CBA43F.5B83F2A0 /There's no reason to think outside the box / /if you don't think yourself into it. / ** *My newest book: Thor's Microsoft Security Bible http://www.amazon.com/Thors-Microsoft-Security-Bible-Infrastructures/dp/1597 495727C:/Users/thor/Documents/Cakewalk * ** *Timothy Thor Mullen t...@hammerofgod.com mailto:t...@hammerofgod.com* *http://www.hammerofgod.com http://www.hammerofgod.com/* ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] iPhone Geolocation storage
M$ are in the love in http://news.cnet.com/8301-31921_3-20057329-281.html On Tue, Apr 26, 2011 at 8:12 PM, Ivan . ivan...@gmail.com wrote: Interesting write up, and apparently old news https://alexlevinson.wordpress.com/2011/04/21/3-major-issues-with-the-latest-iphone-tracking-discovery/ On Fri, Apr 22, 2011 at 1:59 PM, mark seiden m...@seiden.com wrote: yes, that's right. on one of the forensics lists someone pointed out that he started google maps for 6 seconds and ended up with 1253 locations in the cache, all with the same time stamp. those would be potential known locations in your neighborhood. much fuller disclosure in http://markey.house.gov/docs/applemarkeybarton7-12-10.pdf including that the some of the location data comes from google. it looks like everything gets anonymized, aggregated to 5 digit zipcodes, and max retention of 6 months, but don't talk much about what the device does except when it uploads data. the congressional disclosure, while it makes me feel better about location data, contains a few choice items like it's unclear how apple can keep app developers from retaining location data. which doesn't seem forbidden by apple, only by law. it's also unclear why they keep really old data in the cache on the phone. cache bloat results for little benefit. the android doesn't do time-based pruning either and has a similar location cache with the same data it. it appears to me that since the keying is by mac address or the tower id that there will only be one timestamped item for each of those. so if you go around the same neighborhood repeatedly, the same data will be in the cache. so not exactly tracking, just recency. but it would seem prudent to both specify and implement the briefest retention of the location data that was possible to perform the function expected by the user. On Apr 20, 2011, at 12:34 PM, Brandon Matthews wrote: I've been poring over my phone's data, and I'm not sure if the resolution is just very low, or if it's logging the locations of towers and not my phone. Ex: http://imgur.com/2m5tO I'm going to xref with FCC databases soon to try and find out. B (Not speaking for Cisco, only for myself and with nobody's approval) On 4/20/11 12:11 PM, Michele Orru antisnatc...@gmail.com did declare: Already twitted today. Pretty scary btw. I hope there's not the equivalent for Android. antisnatchor Thor (Hammer of God) mailto:t...@hammerofgod.com April 20, 2011 9:05 PM For those of you who have not seen this yet: http://radar.oreilly.com/2011/04/apple-location-tracking.html Description: Description: Description: cid:image001.png@01CBA43F.5B83F2A0 /There's no reason to think outside the box / /if you don't think yourself into it. / ** *My newest book: Thor's Microsoft Security Bible http://www.amazon.com/Thors-Microsoft-Security-Bible-Infrastructures/dp/1597 495727C:/Users/thor/Documents/Cakewalk * ** *Timothy Thor Mullen t...@hammerofgod.com mailto:t...@hammerofgod.com* *http://www.hammerofgod.com http://www.hammerofgod.com/* ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] Got an iPhone or 3G iPad? Apple is recording your moves
*Q*: Steve, Could you please explain the necessity of the passive location-tracking tool embedded in my iPhone? It's kind of unnerving knowing that my exact location is being recorded at all times. Maybe you could shed some light on this for me before I switch to a Droid. They don't track me. *A*: Oh yes they do. We don't track anyone. The info circulating around is false. Sent from my iPhone http://www.macrumors.com/2011/04/25/steve-jobs-on-ios-location-issue-we-dont-track-anyone/ On Sun, Apr 24, 2011 at 9:16 AM, Ivan . ivan...@gmail.com wrote: http://www.guardian.co.uk/technology/2011/apr/22/iphone-android-location-based-services On Sat, Apr 23, 2011 at 1:51 AM, andrew.wallace andrew.wall...@rocketmail.com wrote: On Fri, Apr 22, 2011 at 3:29 PM, mark seiden m...@seiden.com wrote: i'm more worried about private parties tracking these days... say set up high res cameras with a good view of the major highways and scan all of the license plates. Do you mean organised crime gangs? We got plenty of them up here in Glasgow. Andrew ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] Got an iPhone or 3G iPad? Apple is recording your moves
http://www.guardian.co.uk/technology/2011/apr/22/iphone-android-location-based-services On Sat, Apr 23, 2011 at 1:51 AM, andrew.wallace andrew.wall...@rocketmail.com wrote: On Fri, Apr 22, 2011 at 3:29 PM, mark seiden m...@seiden.com wrote: i'm more worried about private parties tracking these days... say set up high res cameras with a good view of the major highways and scan all of the license plates. Do you mean organised crime gangs? We got plenty of them up here in Glasgow. Andrew ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] iPhone Geolocation storage
Its maker, Israel-based Cellbrite, says it can copy all the content in a cell phone -- including contacts, text messages, call history, and pictures -- within a few minutes. Even deleted texts and other data can be restored by UFED 2.0, the latest version of the product, it says. http://redtape.msnbc.msn.com/_news/2011/04/20/6503253-gadget-gives-cops-quick-access-to-cell-phone-data On Thu, Apr 21, 2011 at 12:41 PM, Marcio B. Jr. marcio.barb...@gmail.com wrote: On Wed, Apr 20, 2011 at 10:27 PM, Zach C. fxc...@gmail.com wrote: On Wed, Apr 20, 2011 at 6:04 PM, Marcio B. Jr. marcio.barb...@gmail.com wrote: On Wed, Apr 20, 2011 at 9:45 PM, Zach C. fxc...@gmail.com wrote: That only seems to apply to Android 3.x, only seems to apply is a sloppy euphemism. Correct sentence is: IT DOES APPLY. I guess context is for the weak, since Android 2.3 (the latest non-3.x version) source is out ( http://www.androidcentral.com/samsung-releases-gingerbread-source-code-i9000 ), and the source was also released for all previous versions -- specifically, every version except 3.0. So, it applies to Android 3.0, sure, but that's the only version it applies to, and Google indicates they will be releasing source when it's actually finished and ready to be released on all the platforms Android currently runs on. Alright, you state context is for the weak and soon after that, you agree with me. That's really fantastic, Google-boy. Well, considering every version prior is more prevalent than 3.0 is, and Google will be releasing source... Cut all that enthusiastic mumbo-jumbo crap. Say WHEN it's going to happen (if so). When will Honeycomb's sources be available? But keep clutching that teddy-bear of spiteful vindication that Google didn't release the source code for *one* version of Android! This one version happens to be the latest. Moreover, I really want to bow to your proselytism but I see no sensible reason for hiding Honeycomb. Oh mommy, GSoC rules! Google is so into FOSS! They sure are. :D Quod erat demonstrandum. On Wed, Apr 20, 2011 at 5:34 PM, Marcio B. Jr. marcio.barb...@gmail.com wrote: On Wed, Apr 20, 2011 at 4:41 PM, Michael Holstein michael.holst...@csuohio.edu wrote: Pretty scary btw. I hope there's not the equivalent for Android. anyone can git the android repository and look at the source I'm sorry? http://www.zdnet.com/blog/google/google-android-30-honeycomb-open-source-no-more/2845 Marcio Barbado, Jr. ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ Marcio Barbado, Jr. Marcio Barbado, Jr. ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
[Full-disclosure] Got an iPhone or 3G iPad? Apple is recording your moves
All iPhones appear to log your location to a file called consolidated.db. This contains latitude-longitude coordinates along with a timestamp. The coordinates aren't always exact, but they are pretty detailed. There can be tens of thousands of data points in this file, and it appears the collection started with iOS 4, so there's typically around a year's worth of information at this point. Our best guess is that the location is determined by cell-tower triangulation, and the timing of the recording is erratic, with a widely varying frequency of updates that may be triggered by traveling between cells or activity on the phone itself. http://radar.oreilly.com/2011/04/apple-location-tracking.html ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] iPhone Geolocation storage
the Police can slurp it up with there new toy http://www.thenewspaper.com/news/34/3458.asp On Thu, Apr 21, 2011 at 10:34 AM, Marcio B. Jr. marcio.barb...@gmail.com wrote: On Wed, Apr 20, 2011 at 4:41 PM, Michael Holstein michael.holst...@csuohio.edu wrote: Pretty scary btw. I hope there's not the equivalent for Android. anyone can git the android repository and look at the source I'm sorry? http://www.zdnet.com/blog/google/google-android-30-honeycomb-open-source-no-more/2845 Marcio Barbado, Jr. ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] iPhone Geolocation storage
welcome to Ameristan I guess On Thu, Apr 21, 2011 at 10:45 AM, Zach C. fxc...@gmail.com wrote: That only seems to apply to Android 3.x, which is not even the most prevalent Android version in the wild. In fact, I think it can only be found on tablets at present, and presumably Google will release the source when they have 3.x stuff workable in mobile phones as well. On Wed, Apr 20, 2011 at 5:34 PM, Marcio B. Jr. marcio.barb...@gmail.com wrote: On Wed, Apr 20, 2011 at 4:41 PM, Michael Holstein michael.holst...@csuohio.edu wrote: Pretty scary btw. I hope there's not the equivalent for Android. anyone can git the android repository and look at the source I'm sorry? http://www.zdnet.com/blog/google/google-android-30-honeycomb-open-source-no-more/2845 Marcio Barbado, Jr. ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] Best Buy and Privacy?
Hey, don't you people have private information laws that deal with this sort of stuff? In europe, someone can't store your private information if you haven't explicitly allowed its storage and usage scenarios, let alone send it to third party. Also, they have responsibility to keep your data secure. There is even an agency to which you can report about possible violations of those laws that supposedly goes on inspections. I'm not sure how well this is handled in reality. I should do an experiment on this by reporting myself, but in any case, I use it to harrass people in situations like yours with no problems. * Thor (Hammer of God) (t...@hammerofgod.com) wrote: I found this interesting, so I thought I would share it. Over the last few years I had amassed quite a number of various gaming system games that I never used anymore (if at all) so I decided to trade them in at Best Buy (they do this for store credit). Though $3 for a $50 game wasn't exactly attractive, I figured I could get a free Blue Ray out of it, so why not. I showed up with a stack of games, and sat at the counter for about 30 minutes while the guy individually entered each title, catalog number, etc for each game. After all that, he finally said that he needed to see my driver's license in order to give me my $73 credit. I always question this type of thing, so asked him why. In case these were stolen he says, going on to say it is store policy. Whatever, I think, so I give it to him. He doesn't just look at it, but starts entering my info into the system - I didn't care because it was an out-of-state license, but didn't like that he was actually entering it into the system. He then notices that my license had expired a month earlier. I actually knew this, but wasn't going to offer it up. He says he can't take it, and I give the obligatory I'm not driving in the store, I'm just giving you games bit and the it was me a month ago, so what difference does it make now pitch. He goes asks the manager, and sure enough, they can't take it because it is expired. So this is the point where I really start to wonder and ask more questions about what difference it makes. He then tells me that the reason he has to enter so much information, including each individual title and UPC, is because they have to send all this information to the Seattle police in case any of the titles I turned in were reported stolen by someone. I asked how they expected to match up a stolen title with a redeemed one short of putting 5 Pimp My Ride games in a line-up for identification, and of course the kid didn't know and didn't care. I then pointed out that even if I did steal it, if the cops came around looking for it, I wouldn't have it anymore anyway because it would be in the Best Buy warehouse. More not caring. While the overall process of wasting police resources on tracking games that might have been stolen seems like a complete waste of time and money, what really concerned me is that Best Buy was going to send my personal information over to the police without disclosing anything to me. There was no mention of it anywhere, no fine print, nothing. Had my license not been expired, that info (which they would not have had) would be put into the public system, and there would be no way I could control the information or what they did with it. This would have been particularly bad if I had to explain why I had a copy of Barbie's Horse Adventure at some point. As far as profiling is concerned, you would think they would be more interested in the fact that I was going to use the $73 credit towards the purchase of a couple of seasons of Dexter, but I have no way of knowing that they wouldn't have sent this information anyway. It begs the question as to what other information Best Buy is sending to whom, and what kind of privacy rights I am implicitly giving up by shopping there. If they can report personal information to government agencies without my knowledge, approval, or any sort of notification, and in this case collected the information for the explicit purpose of doing so, why else are they collecting? AFAIAC, there is something seriously wrong with this. Anyway, I thought I would share this in case anyone found it interesting. T There's no reason to think outside the box If you don't think yourself into it. -- PGP 0x96085C00 http://lesh.sysphere.org pgpQVVl1cwWK2.pgp Description: PGP signature ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] Evilgrade 2.0 - the update explotation framework is back
Hm, I'm new to this list. so I find this a bit strange. Christian, Vladis, are you the same person? what are your motives? do you really believe the things you are saying? you seem to be just generally negative, jumping from point to point and being very silly. Just signing the update packages prevents this attack, so it's not that hard to fix. In my opinion, all in all, you're creating a yet another overly complex system with as yet more possible flaws. Don't forget tat each new line of code is a potential attack vector which affects any system. there is a REAL attack vector that needs to be fixed, and you are saying that it shouldn't be fixed as every line of code creates a POTENTIAL attack vector? Only thing, there's the danger of someone using stolen certificates. a signing key might be stolen, so we shouldn't use it? do you use passwords chris? why? they might be stolen? you can't possibly believe that? Amen to that. A more subtle issue is the tradeoff issue: Any time they have a code engineer spending time building and feeding that code-signing infrastructure is time that code engineer *isn't* spending writing actual new features the users *want*. code-signing infrastructure? ofcourse, code for those things is well known, packed in libraries, and trivial to use. ofcourse. and... and bla. I could go on, but probbably the whole list is aware of those things. I'm wondering what's going on? are you payed list-posters from an evil rival company? this is the only idea I have. * valdis.kletni...@vt.edu (valdis.kletni...@vt.edu) wrote: On Sun, 31 Oct 2010 14:24:59 BST, Christian Sciberras said: In my opinion, all in all, you're creating a yet another overly complex system with as yet more possible flaws. Don't forget tat each new line of code is a potential attack vector which affects any system. Amen to that. A more subtle issue is the tradeoff issue: Any time they have a code engineer spending time building and feeding that code-signing infrastructure is time that code engineer *isn't* spending writing actual new features the users *want*. Which user-requested feature are you going to heave over the side in order to do code-signing instead? That question has to enter into the calculus as well. ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ -- PGP 0x96085C00 http://lesh.sysphere.org pgpPfmit3xWx5.pgp Description: PGP signature ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] African ISP SekuritY
difference between breach and hack is that you say breach when you'd like to sound cool and james-bondy. a person that breaches has one of those tight microphone-headphone things and is handsome. while a person that hacks just has a greasy hair. can you please explain me the definition based difference and the normal difference between two words? cnn for example likes to use that word in attempt to keep people away from changing the channel. * Benji (m...@b3nji.com) wrote: Isn't it still a hack depending on how the u/p were obtained? Could someone please explain the definition based difference between a breach and a hack? Sent from my BlackBerry® wireless device -Original Message- From: Bill Hicks 420b1llh1...@gmail.com Sender: full-disclosure-boun...@lists.grok.org.uk Date: Wed, 27 Oct 2010 10:13:33 To: full-disclosure@lists.grok.org.uk Subject: Re: [Full-disclosure] African ISP SekuritY ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ -- PGP 0x96085C00 http://lesh.sysphere.org pgpbs1Am5UV3K.pgp Description: PGP signature ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] CYBSEC Advisory#2010-0605 InterScan Web Security 5.0 Arbitrary File Upload
Hi Moritz, it's just a typing mistake. Thanks for the advice Kind regards, Ivan On Thu, Jun 24, 2010 at 4:53 PM, Moritz Hoffmann mor...@antiguru.de wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On 06/23/2010 04:40 PM, Cybsec - Security Systems wrote: Direct execution of arbitrary PHP code in the Web Server. I assume this is a Java-based application, why do you state that as a result PHP code can be executed? I don't get it... Kind regards, Moritz -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iEYEARECAAYFAkwjt6UACgkQl56sB+DIUZQOWwCfbKNWvYQ5QgmgUqmdKnW1OlKr pWIAnj2NvBHleRYEXXW7338qvSBYJTgQ =ZBpL -END PGP SIGNATURE- ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ -- Huertas Ivan Dario ivanhuer...@gmail.com Analista en Informatica 1530182705 ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
[Full-disclosure] No anti-virus software? No internet connection
Security is as easy as that.. http://www.news.com.au/technology/no-anti-virus-software-no-internet-connection/story-e6frfro0-1225882656490 ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] No anti-virus software? No internet connection
yep, your tax $$$ at work Don't forget there Internet filter as well.. With these rocket scientist running the show, what's there to worry about http://blogs.news.com.au/techblog/index.php/news/comments/finally_theres_protection_against_spams_and_scams On Tue, Jun 22, 2010 at 2:32 PM, Jubei Trippataka vpn.1.fana...@gmail.com wrote: They had a committee working on this for a year and that's the best they could come up with? HAHAHAHA. Belinda Neal - With idiots like you and your colleagues tackling this issue, tax payers deserve to burn you at the stake. BTW... are you really a du0d? -- ciao JT ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
[Full-disclosure] The Strange and Consequential Case of Bradley Manning, Adrian Lamo and WikiLeaks
http://www.informationclearinghouse.info/article25767.htm ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
[Full-disclosure] Apple's Worst Security Breach: 114, 000 iPad Owners Exposed,
http://gawker.com/5559346/apples-worst-security-breach-114000-ipad-owners-exposed ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
[Full-disclosure] Web Browsers Leave 'Fingerprints' Behind as You Surf the Net
Interesting research http://www.eff.org/press/archives/2010/05/13 ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
[Full-disclosure] We must work harder on cloud, says Microsoft
Funny stuff... Nirvana in a cloud context would be for customers to trust Microsoft just as they trust their bank or utility company. Building that mentality will take time. It's going to be incumbent upon us to establish that confidence with our customers,” he said during a visit to Sydney. http://www.theaustralian.com.au/australian-it/we-must-work-harder-on-cloud-says-microsoft/story-e6frgakx-1225856537669 ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] We must work harder on cloud, says Microsoft
The question is who would trust any of these orgs to maintain the integrity of their data? On Thu, Apr 22, 2010 at 9:43 AM, Jason Nada j.cri...@live.com wrote: The funny thing about the cloud is that eventually there is going to be a monopoly of one company that dominates in it. Just as Microsoft has done with software, I can see Microsoft CloudSoft coming soon. Date: Thu, 22 Apr 2010 09:03:26 +1000 From: ivan...@gmail.com To: full-disclosure@lists.grok.org.uk; security-bas...@securityfocus.com Subject: [Full-disclosure] We must work harder on cloud, says Microsoft Funny stuff... Nirvana in a cloud context would be for customers to trust Microsoft just as they trust their bank or utility company. Building that mentality will take time. It's going to be incumbent upon us to establish that confidence with our customers,” he said during a visit to Sydney. http://www.theaustralian.com.au/australian-it/we-must-work-harder-on-cloud-says-microsoft/story-e6frgakx-1225856537669 ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ The New Busy is not the old busy. Search, chat and e-mail from your inbox. Get started. ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
[Full-disclosure] Compliance Is Wasted Money, Study Finds
For those who don't frequent slashdot... Enterprises are spending huge amounts of money on compliance programs related to PCI-DSS, HIPAA and other regulations, but those funds may be misdirected in light of the priorities of most information security programs, a new study has found. A paper by Forrester Research, commissioned by Microsoft and RSA, the security division of EMC, found that even though corporate intellectual property comprises 62 percent of a given company's data assets, most of the focus of their security programs is on compliance with various regulations. The study found that enterprise security managers know what their companies' true data assets are, but find that their security programs are driven mainly by compliance, rather than protection (PDF). http://www.rsa.com/products/DLP/ar/10844_5415_The_Value_of_Corporate_Secrets.pdf ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
[Full-disclosure] Cryptome Spying guides as a Digital Forensic Resource
For those who missed all the action http://blogs.sans.org/computer-forensics/2010/03/02/cryptome-spying-guides-as-a-digital-forensic-resource/ *Microsoft* – http://cryptome.org//isp-spy/microsoft-spy.zip *Paypal* – http://cryptome.org/isp-spy/paypal-spy.zip *MySpace* – http://cryptome.org/isp-spy/myspace-spy.pdf *Facebook* – http://cryptome.org/isp-spy/comcast-spy.pdf *AOL* – http://cryptome.org/isp-spy/aol-spy.pdf *Skype* – http://cryptome.org/isp-spy/skype-spy.pdf *Cox Communications* – http://cryptome.org/isp-spy/cox-spy.pdf *Ning* – http://cryptome.org/isp-spy/ning-spy.pdf *MyYearbook* – http://cryptome.org/isp-spy/myyearbook-spy.pdf *Stickam* – http://cryptome.org/isp-spy/stickam-spy.pdf *USPS Requests* http://cryptome.org/isp-spy/usps-spy.pdf / http://cryptome.org/isp-spy/usps-spy2.pdf *Cisco* – http://cryptome.org/isp-spy/cisco-spy.pdf *3GPP* – http://cryptome.org/3gpp/3gpp-spy.htm *ATT *- http://cryptome.org/isp-spy/att-spy-doc-01.pdf / http://cryptome.org/isp-spy/att-spy-doc-02.zip *Verizon* – http://cryptome.org/isp-spy/verizon-spy.pdf *Sprint CALEA Delivery* – http://cryptome.org/isp-spy/sprint-spy2.pdf *Sprint* – http://cryptome.org/isp-spy/sprint-spy.zip *Nextel* – http://cryptome.org/isp-spy/nextel-spy.pdf *Voicestream* – http://cryptome.org/isp-spy/voicestream-spy.zip *Yahoo* – http://cryptome.org/isp-spy/yahoo-spy.pdf *SBC-Ameritech* – http://cryptome.org/isp-spy/sbc-ameritech-spy.pdf *Ameritech* – http://cryptome.org/isp-spy/ameritech-spy.pdf *SBC-LEA* – http://cryptome.org/isp-spy/ameritech-spy.pdf *Cingular* – http://cryptome.org/isp-spy/cingular-spy.pdf *Cricket* – http://cryptome.org/isp-spy/cricket-spy.pdf *Pactel* – http://cryptome.org/isp-spy/pactel-spy.pdf *GTE* – http://cryptome.org/isp-spy/gte-spy.pdf ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
[Full-disclosure] ACTA internet enforcement chapter leaks
http://www.boingboing.net/2010/02/21/acta-internet-enforc.html http://craphound.com/acta_digital_chapter-1.pdf ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] [WEB SECURITY] Trustwave's SpiderLabs Security Advisory TWSL2010-001
Hi all,
There is an ongoing conversation about a potential XSS with ViewState of
the .NET framework. However, some were not able to reproduce the issue
and therefore we decided to prepare a short and high resolution movie.
http://www.hacking-lab.com/download/
Regards
Ivan
-Original Message-
From: Trustwave Advisories [mailto:trustwaveadvisor...@trustwave.com]
Sent: Dienstag, 9. Februar 2010 23:41
To: webapp...@lists.securityfocus.com; websecur...@webappsec.org;
full-disclosure@lists.grok.org.uk; bugt...@securityfocus.com
Subject: [WEB SECURITY] Trustwave's SpiderLabs Security Advisory
TWSL2010-001
Trustwave's SpiderLabs Security Advisory TWSL2010-001:
Multiplatform View State Tampering Vulnerabilities
Published: 2010-02-08 Version: 1.1
SpiderLabs has documented view state tampering
vulnerabilities in three products from separate vendors.
View states are used by some web application frameworks to
store the state of HTML GUI controls. View states are
typically stored in hidden client-side input fields,
although server-side storage is widely supported.
The affected vendors generally recommend that client-side
view states are cryptographically signed and/or encrypted,
but specific exploits have not been previously documented.
These vulnerabilities show that unsigned client-side view
states will ALWAYS result in a vulnerability in the affected
products.
Credit: David Byrne of Trustwave's SpiderLabs
===
Vendor: Microsoft (http://www.microsoft.com)
Product: ASP.Net (http://www.asp.net)
Versions affected: .Net 3.5 is confirmed vulnerable;
previous versions are likely to be vulnerable as well.
Description:
ASP.Net is a web-application development framework that
provides for both user interfaces, and back-end
functionality.
The ASP.Net view state is typically stored in a hidden field
named __VIEWSTATE. When a page's view state is not
cryptographically signed, many standard .Net controls are
vulnerable to Cross-Site Scripting (XSS) through the view
state.
It is well documented that using an unsigned view state is
bad, but most previous advisories focus on vaguely
described threats or vulnerabilities introduced by custom
use of the view state. To the best of Trustwave's knowledge,
this is the first time a proof of concept attack of this
nature has been demonstrated against the view state. A
vulnerability was alluded to in a 2004 Microsoft article on
troubleshooting view state problems [1]. However, other
Microsoft documents recommend disabling view state signing
if performance is a key consideration, [2, 3, 4] or for
various other reasons [5, 6]. Realistically, unsigned view
states should never be used in a production environment.
The following code is vulnerable to a XSS attack against the
form control. Note that the ValidateRequest setting does
not prevent the attack.
%@ Page EnableViewStateMac=False
ValidateRequest=True %
html runat=server
form runat=server/
/html
If the following request is sent to the server, the response
will contain JavaScript that calls an alert box.
xss.aspx?__VIEWSTATE=/wEPDwUKLTgzNDA2NzgyMA9kFgJmD2QWAgIBDxY
CHglpbm5lcmh0bWwFHTxzY3JpcHQ%2BYWxlcnQoJ3hzcycpPC9zY3JpcHQ%2
BZGQ=
The view state's XML equivalent is below:
?xml version=1.0 encoding=utf-16?
viewstate
Pair
Pair
String-834067820/String
Pair
ArrayList
Int320/Int32
Pair
ArrayList
Int321/Int32
Pair
ArrayList
IndexedStringinnerhtml/IndexedString
Stringlt;scriptgt;alert('xss')lt;/scriptgt;/String
/ArrayList
/Pair
/ArrayList
/Pair
/ArrayList
/Pair
/Pair
/Pair
/viewstate
The HTML response is below:
html
form name=ctl01 method=post
action=xss.aspx id=ctl01
div
input type=hidden name=__VIEWSTATE id=__VIEWSTATE
value=/wEPDwUKLTgzNDA2NzgyMA9kFgJmD2QWAgIBDxYCHglpbm5lcmh0b
WwFHTxzY3JpcHQ+YWxlcnQoJ3hzcycpPC9zY3JpcHQ+ZGQ= /
/div
scriptalert('xss')/script/form
/html
This example uses the innerhtml attribute of the form
control, although other attributes in other controls are
also vulnerable to similar attacks.
Remediation Steps:
The ASP.Net view state should always be cryptographically
signed with a Message Authentication Code (MAC). This has
been enabled by default since .Net 1.1, but can be disabled
using the EnableViewStateMac setting. Using the
ViewStateUserKey setting can also help to mitigate the
scope of this vulnerability. [7]
===
Vendor: Apache Software Foundation (http://www.apache.org)
Product: Apache MyFaces (http://myfaces.apache.org/)
Versions affected: 1.2.8 and 1.1.7 are confirmed as
vulnerable. All previous versions are likely vulnerable.
Related products: Some versions of IBM WebSphere Application
Server
[Full-disclosure] Google baulks at Conroy's call to censor YouTube
Conroy said applying ISP filters to high-traffic sites such as YouTube would slow down the internet, so we're currently in discussions with Google about ... how we can work this through. What we're saying is, well in Australia, these are our laws and we'd like you to apply our laws, Conroy said. Google at the moment filters an enormous amount of material on behalf of the Chinese government; they filter an enormous amount of material on behalf of the Thai government. http://www.smh.com.au/technology/technology-news/google-baulks-at-conroys-call-to-censor-youtube-20100211-ntm0.html ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
[Full-disclosure] Internet attack defense: License and registration please...
Your documents please? http://government.zdnet.com/?p=6934 ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
[Full-disclosure] U.S. enables Chinese hacking of Google
http://edition.cnn.com/2010/OPINION/01/23/schneier.google.hacking/index.html ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] All China, All The Time
Now, by analyzing the software used in the break-ins against Google and dozens of other companies, Joe Stewart, a malware specialist with SecureWorks, a computer security company based in Atlanta, said he determined the main program used in the attack contained a module based on an unusual algorithm from a Chinese-authored technical paper that has been published exclusively on Chinese-language Web sites. http://news.cnet.com/Evidence-found-of-Chinese-attack-on-Google/2100-7349_3-6250413.html?tag=newsEditorsPicksArea.0 On Wed, Jan 20, 2010 at 6:51 AM, Densmore, Todd todd.densm...@hp.com wrote: Mark, Dan, Smasher, etc. Thanks for the feedback. I saw the thread this weekend, but I had to wait until I today to respond. My main motivation was to point out that there is no free lunch, and often even security professionals forget to think critically. It was not meant to be a thorough assessment of the actual 0-day. However I appreciate the correction, the details of the exploit, and the observation that its sophistication was probably exaggerated in the media. I have changed some implicit wording in the article about China and added an addendum to the blog to clarify the exploit and thank sources. ~todd Todd Densmore HP Software - Application Security Center todd.densm...@hp.com 770.343.7054 Office ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
[Full-disclosure] Network flaw causes scary Web error
Would be fun to try and replicate this A Georgia mother and her two daughters logged onto Facebook from mobile phones last weekend and wound up in a startling place: strangers' accounts with full access to troves of private information. The glitch -- the result of a routing problem at the family's wireless carrier, ATT -- revealed a little known security flaw with far reaching implications for everyone on the Internet, not just Facebook users. http://www.boston.com/business/technology/articles/2010/01/15/ap_exclusive_network_flaw_causes_scary_web_error/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] All China, All The Time
Interesting article on zdnet, talking about the targeting of the lawful intercept system at Google …they [hackers] apparently were able to access a system used to help Google comply with search warrants by providing data on Google users, said a source familiar with the situation, who spoke on condition of anonymity because he was not authorized to speak with the press. “Right before Christmas, it was, ‘Holy s***, this malware is accessing the internal intercept [systems],’” he said. http://blogs.zdnet.com/Foremski/?p=1047 2010/1/15 Michael Holstein michael.holst...@csuohio.edu: With all the hubbub around China yet again, I would like to remind you of the utilities available at Hammer of God that allow one to completely block any or all traffic to or from China or any other country in the world via ISA/TMG. Source for pre-built blocklists in DNSBL, CIDR, or Cisco ACL format : http://www.okean.com/thegoods.html Regards, Michael Holstein Cleveland State University ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
[Full-disclosure] TSA Logo Contest - Schneier
http://www.schneier.com/blog/archives/2010/01/tsa_logo_contes.html ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
[Full-disclosure] The Great Aussie Firewall is dead: Long live the firewall
http://www.theregister.co.uk/2009/12/15/australian_censorship_measures/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
[Full-disclosure] Decaf anyone?
http://www.wired.com/threatlevel/2009/12/decaf-cofee/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
[Full-disclosure] Revenge of the Computer Nerds
But the real action (and the evidence for chicanery) is in the computer code obtained from the CRU. Our own computer guru Marc Sheppard, writing for American Thinker here and here, was one of the first to offer an accurate diagnosis of this fraudulent method of computer programming. Analyzing the code, as Marc has indicated in his work, is a complex business. As he pleads in one article, please bear with me while I get a tad techie on you. http://www.americanthinker.com/2009/12/revenge_of_the_computer_nerds_1.html?utm_source=twitterfeedutm_medium=twitter ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] Revenge of the Computer Nerds
ahh the bullshit left / right paradigm. Sheeple anyone? Seven Ploys for Manipulating the People: 1. The Distraction Principle: While the people are distracted by the struggle to exist, politicians can do virtually anything to them and they will not notice 2. The Social Compliance Principle: The people are trained by society not to question authority. Politicians can exploit this “suspension of suspiciousness� to make people believe what they want them to 3. The Herd Principle: Even highly scpetical people will let their guard down when everyone around them appears to share the same views. Politicians exploit this by utilising propaganda (spin) to spread lies and misconceptions 4. The Dishonestly Principle: Any mistaken past agreement with the politician's spin may be used against you in the future, making it harder for people to publicly change their views even when they realise they've been had 5. The Deception Principle: Things and people are seldom what they seem, but politicians and their media teams are expert at manipulating your perceptions to believe that they are 6. The Need and Greed Principle: Your needs and desires, such as wanting to do the right thing for your children, make you vulnerable. Once politicians have convinced you about what it is you really want, they can easily manipulate you 7. The Time Principle: When the people are under time pressure to make an important choice, they use a different decision strategy. Politicians steer the people towards a strategy that involves less reasoning. These are the classic ploys used by confidence tricksters everywhere. On Thu, Dec 10, 2009 at 12:21 PM, Dan Kaminsky d...@doxpara.com wrote: Yes, because when I want technical data, I go to a right wing blog http://www.jgc.org/blog/2009/11/very-artificial-correction-flap-looks.html (Bonus points: Check the dates) On Wed, Dec 9, 2009 at 4:25 PM, Ivan . ivan...@gmail.com wrote: But the real action (and the evidence for chicanery) is in the computer code obtained from the CRU. Our own computer guru Marc Sheppard, writing for American Thinker here and here, was one of the first to offer an accurate diagnosis of this fraudulent method of computer programming. Analyzing the code, as Marc has indicated in his work, is a complex business. As he pleads in one article, please bear with me while I get a tad techie on you. http://www.americanthinker.com/2009/12/revenge_of_the_computer_nerds_1.html?utm_source=twitterfeedutm_medium=twitter ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
[Full-disclosure] Climate-Gate:A SysAdmin’s Perspective
http://www.smalldeadanimals.com/FOIA_Leaked/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] Software developer looks at CRU code
CRU's programming 'below commercial standards' http://news.bbc.co.uk/2/hi/programmes/newsnight/8395514.stm On Mon, Dec 7, 2009 at 11:21 AM, Paul Schmehl pschmehl_li...@tx.rr.com wrote: --On December 6, 2009 3:46:49 PM -0800 Thor (Hammer of God) t...@hammerofgod.com wrote: No provision for funding with PUBLIC money. Private funds (premiums) only. Really? Page 115 of the GPO copy of HR 3962 has the heading Abortions for which public funding is allowed. In sec 265 on page 160 the act authorizes funding abortions with federal funds for a woman who suffers from a physical disorder, physical injury, or physical illness that would, as certified by a physician, place the woman in danger of death unless the abortion is performed, including a life-endangering physical condition caused by or arising from the pregnancy itself, or unless the pregnancy is the result of an act of rape or incest. This places the judgment in the hands of a physician, some of whom would be more than happy to certify a woman for abortion whose life was not really in danger. But even if every case could be certified as true and accurate, the fact remains that federal funds would pay for abortions. The plan fact is that your statement is false, as is made obvious in the bill. Page 117, Sec 1303, Subsection b, subsection ii of the Senate version is titled Abortions for which public funding is allowed Need I go further? The fact is that, in their present forms, both the House and Senate version provide public funding for abortions. No, it's not abortion on demand, but it is abortion. Stop taking the news media's word for the facts and do your own research. Paul Schmehl, If it isn't already obvious, my opinions are my own and not those of my employer. ** WARNING: Check the headers before replying ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
[Full-disclosure] In the thick of it: how the Digital Economy bill is trying to kill open Wi-Fi networks
http://www.guardian.co.uk/technology/2009/nov/30/open-wi-fi-digital-economy-bill-government ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
[Full-disclosure] Microsoft: ‘Piracy no long er poses a threat to us’
In a recent interview, managing director of Microsoft Philippines Inc., John Bessey, has claimed that piracy no longer poses a threat to the software giant. http://freakbits.com/microsoft-piracy-no-longer-poses-a-threat-to-us-1202 ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
[Full-disclosure] Feds ‘Pinged’ Sprint GPS D ata 8 Million Times Over a Year
http://www.wired.com/threatlevel/2009/12/gps-data/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] Software developer looks at CRU code
just ask Al of the Gore about his carbon trading exchange he setup with Ken Lay of Enron fame as advisor... http://www.youtube.com/watch?v=UjHAB62xKXI On Tue, Dec 1, 2009 at 11:13 AM, Rohit Patnaik quanti...@gmail.com wrote: Right, but you said that the global warming folks are asking for unnecessary spending of *trillions*. Where would those trillions go? I don't see Al Gore becoming richer than Bill Gates off carbon credits. Neither do I see the UN gaining any more power via the IPCC. If anything, the existing climate treaty (i.e. the Kyoto protocol) has completely sidestepped the UN. I guess what I'm troubled by is the fact that you seem to be stating that there's some kind of deliberate malice on the part of those stating that anthropogenic climate change is real. I don't see malice. I see a fair amount of incompetence, but incompetence exists in every discipline. --Rohit Patnaik On Mon, Nov 30, 2009 at 6:06 PM, Paul Schmehl pschmehl_li...@tx.rr.com wrote: I'm going to assume this is a serious question. You could start with the people enriching themselves off of carbon credits. Al Gore, for one obvious example. You could continue with the people that think the entire world should be ruled by a bureaucracy called the UN. You could go on with the scientists who get millions of dollars worth of grants to study the problem and propose solutions. Are there people on the opposing side who benefit from what you call scaremongering? Of course there are. But the claims of the global warming crowd are unsupported by the data (not *their* data, because they have clearly skewed it to support their claims, as is proven both by their emails and their program code) but by the real data, unmassaged. --On Monday, November 30, 2009 16:00:05 -0600 Rohit Patnaik quanti...@gmail.com wrote: There's a question I ask whenever I hear a theory like this. Cui bono? Who benefits? Who is benefiting from the climate change scaremongering? You claim that trillions of dollars will need to be spent. If its such a scam, then who is scamming us? The UN IPCC? A mysterious cabal of alternative energy companies? The Trilateral Commission? -- Paul Schmehl, Senior Infosec Analyst As if it wasn't already obvious, my opinions are my own and not those of my employer. *** It is as useless to argue with those who have renounced the use of reason as to administer medication to the dead. Thomas Jefferson ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] Software developer looks at CRU code
watch the video, but the Al of the Gore bit is at 1.40 in http://www.youtube.com/watch?v=VebOTc-7shU On Tue, Dec 1, 2009 at 3:40 PM, Paul Schmehl pschmehl_li...@tx.rr.comwrote: --On Monday, November 30, 2009 6:13 PM -0600 Rohit Patnaik quanti...@gmail.com wrote: Right, but you said that the global warming folks are asking for unnecessary spending of *trillions*. Where would those trillions go? Apparently you haven't read the proposals to deal with global warming. An MIT study found the cost of complying with one proposed energy sector bill designed to deal with global warming would be $4500 annually per family of four. The EPA analyzed the bill and estimated its cost at 500 billion dollars by the year 2030. And that's just for the US. And just one suggested solution to the so-called problem. I don't see Al Gore becoming richer than Bill Gates off carbon credits. So unless Al Gore makes more than Bill Gates he's not motivated to proselytize for global warming? He's already made millions of dollars off the scam, but I suppose his motivations were of the purest form. Neither do I see the UN gaining any more power via the IPCC. If anything, the existing climate treaty (i.e. the Kyoto protocol) has completely sidestepped the UN. Anything that takes power away from local communities concentrates power in larger governmental entities. By the same token, anything that takes power away from nations, concentrates power in a larger entity - in this case, the UN, which would supposedly administer fines for non-compliance, etc., etc. I guess what I'm troubled by is the fact that you seem to be stating that there's some kind of deliberate malice on the part of those stating that anthropogenic climate change is real. I don't see malice. I see a fair amount of incompetence, but incompetence exists in every discipline. Have you read the emails that were exposed by the hackers? The scientists have deliberately misled the public regarding the data, conspired to deny FOI requests (which may be a criminal offense), attempted to get the media to both ignore and denigrate the opposition and written programs designed to deliberately skew the data in their favor and hide unfavorable data. http://www.timesonline.co.uk/tol/news/environment/article6936328.ece http://www.timesonline.co.uk/tol/news/environment/article6936289.ece If that isn't malice, what is? Paul Schmehl As if it wasn't already obvious, my opinions are my own and not those of my employer. ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
[Full-disclosure] Symantec Online Store Hacked
http://news.softpedia.com/news/Symantec-Online-Store-Hacked-127726.shtml ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
[Full-disclosure] Software developer looks at CRU code
http://www.youtube.com/watch?v=sYxk7pnmMFwfeature=related ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] Microsoft Windows TCP/IP Timestamps Code Execution Vulnerability
Binary diffing?. Stop spamming. We already know that it's a timestamp issue. Do you have any idea to start some research/test?. I was reading the RFC 1323 and a paper about TCP/IP implementation in Windows 2003 Server but it seems to be very reliable. I mean, how windows implemented it to lead to code execution?. 2009/11/27 webDEViL w3bd3...@gmail.com That's what binary diffing is all about. Sent from my iPhone On Nov 27, 2009, at 7:59 AM, Ivan Security ivanch...@gmail.com wrote: Hi list, Has anyone more details about this vulnerability?. The advisory just say: The vulnerability exists due to the TCP/IP stack not cleaning up state information correctly. This causes the TCP/IP stack to reference a field as a function pointer when it actually contains other information I'd like to know a bit more in order to test it and make some research. Regards, Ivan. ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] Microsoft Windows TCP/IP Timestamps Code Execution Vulnerability
Thanks for your correct response.
Discover the problem by binary difference is quite hard and if it were
achiveable, which files should we compare?. I succesfully tested the other
vulnerabilitiy called Microsoft Windows XP/Vista TCP/IP Orphaned
Connections Vulnerability because i had more information. I'm testing this
issue against a Windows Vista Ultimate SP1. I could patch it and then
compare the corresponding binary files.
Following your guesses i can start to try something buggy. Thanks.
Regards,
Ivan.
2009/11/27 valdis.kletni...@vt.edu
On Fri, 27 Nov 2009 12:27:29 -0300, Ivan Security said:
implementation in Windows 2003 Server but it seems to be very reliable. I
mean, how windows implemented it to lead to code execution?.
My guess is that there's some code in there that should have said:
if packet.hdr.type = TIMESTAMP {
option.callback = timestamp_handler;
option.data = packet.hdr.timestamp_data;
} else {
option.callback = NULL;
}
and some other code that did this:
if (option.callback) { *option.callback(option.data) };
but somebody forgot that else field, so .callback was random trash. Since
it was non-NULL random trash, the 'if' was true, and we end up calling
through
a trash pointer. Now if you have a way to control the value of
option.callback
(possibly 'option' is an malloc structure), and uou can force re-use of
the area by including multiple TCP options on a christmas-tree packet...
I can't prove that's the case here, but that's the general model for quite
a
few oh fuck we called through a bad function pointer. If it isn't that,
it's
probably a use-after-free where some other function has re-allocated the
storage and done the fandango on the bits.
Binary diffing?. Stop spamming.
Suggesting doing a binary diff at this point wouldn't be spamming at all -
it
would tell you *exactly* where the missing 'else foo=NULL' was. The fact
that we don't have W2003 servers falling over left right and center would
indicate that it's probably some odd corner case involving multiple TCP
option fields and other similar (a bad multiply-nested
'if/then/elseif/then/if/
else/elseif/then/else', nested case statements, etc. And at that point,
you're going to need either the source or a good binary diff to see where
it went astray. :)
___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
[Full-disclosure] Microsoft Windows TCP/IP Timestamps Code Execution Vulnerability
Hi list, Has anyone more details about this vulnerability?. The advisory just say: The vulnerability exists due to the TCP/IP stack not cleaning up state information correctly. This causes the TCP/IP stack to reference a field as a function pointer when it actually contains other information I'd like to know a bit more in order to test it and make some research. Regards, Ivan. ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
[Full-disclosure] UK jails schizophrenic for refusal to decrypt files
The first person jailed under draconian UK police powers that Ministers said were vital to battle terrorism and serious crime has been identified by The Register as a schizophrenic science hobbyist with no previous criminal record. His crime was a persistent refusal to give counter-terrorism police the keys to decrypt his computer files. http://www.theregister.co.uk/2009/11/24/ripa_jfl/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
[Full-disclosure] Climategate: how the MSM rep orted the greatest scandal in modern science – Telegraph Blogs
hackers providing a public service.. http://blogs.telegraph.co.uk/news/jamesdelingpole/100017451/climategate-how-the-msm-reported-the-greatest-scandal-in-modern-science/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
[Full-disclosure] Microsoft confirms first Windows 7 zero-day bug
http://computerworld.co.nz/news.nsf/scrt/E9592E1A9719742ACC25766F0066B38D ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
[Full-disclosure] Spying on Americans: Obama Endorses Bush Era Warrantless Wiretapping
In a Court filing late Friday night, the Obama Administration attempted to dress up in new clothes its embrace of one of the worst Bush Administration positions--that courts cannot be allowed to review the National Security Agency's massive, well-documented program of warrantless surveillance. In doing so it demonstrated that it will not willingly set limits on its own power and reinforced the need for Congress to step in and reform the so-called 'state secrets' privilege. (Kevin Bankston, As Congress Considers State Secrets Reform, Obama Admin Tries to Shut Down Yet Another Warrantless Wiretapping Lawsuit, Electronic Frontier Foundation, November 2, 2009) http://www.globalresearch.ca/index.php?context=viewArticlecode=BUR20091106articleId=15941 ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
[Full-disclosure] UK surveillance plan to go ahead
The Home Office says it will push ahead with plans to ask communications firms to monitor all internet use. http://news.bbc.co.uk/2/hi/uk_news/politics/8350660.stm ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] How Prosecutors Wiretap Wall Street
some background http://www.wired.com/dangerroom/2009/03/breaking-cyber/ http://news.cnet.com/8301-13578_3-10046097-38.html http://www.wired.com/threatlevel/2008/06/senate-debates/ http://www.lawandsecurity.org/publications/ForTheRecord/NSA_jan_07.pdf and the list goes on ahh the land of the free. On Fri, Nov 6, 2009 at 2:47 PM, Paul Schmehl pschmehl_li...@tx.rr.comwrote: --On November 5, 2009 9:12:29 PM -0600 Chris r...@operamail.com wrote: and someone could sue you for burying your head up your ass. Fortunately, we have this list as proof. Oh my, aren't we clever. Getting back on topic, it is well-known, and proven, that the NSA has surveillence facilities inside several U.S. telecom carriers. You need only look inside one of ATT's PoPs in San Francisco for proof. You know this to be true because you've looked for yourself, right? You didn't just take the world of a complete stranger quoted by a compliant press at face value, did you? Yes, the NSA might target non-citizens, however, without oversight, who is to know? Don't mention FISA judges either. They have become a rubber stamp for wiretap requests with an approval rate of well over 99.99%. Sure, because we all know those rat bastards at the NSA and all those federal judges don't give a shit about the USA or freedom or personal rights. When you forget that the people who work in government are just like you, trying to make a living and do the best they can, it's easy to depersonalize them and demonize them as if they're all blackhearted evil turds. Easy, that is, if you don't have much of a brain. The same applies to the NSLs issued by the FBI. Not only are targets not permitted to talk about such NSLs, but they can't even acknowledge the existance of such NSLs. And yet, here you are asking for the very proof that cannot be provided. That's hilarious. The surveillance program didn't even survive for four years after 9/11 before someone inside the NSA blew the whistle on the program. Of course, even though they were working for those evil bastards somehow their altruism got the better of them and they revealed the truth about the program, despite the fact that they had sworn an oath to keep it a secret. (And I'm sure they didn't get a dime for blabbing either!) And of course Congress knew nothing about it, even though they had been briefed about it dozens of times and never raised a single objection. Then of course, once the program had been revealed publicly, all those altruistic politicians immediately began investigating because they care so deeply about your privacy and your personal freedoms. And then all the privacy experts, motivated by the purest of concerns, your personal privacy and freedoms, immediately sprung into action to protect you because they all care so deeply for you personally. Or maybe, just maybe, there was the ever-so-slightest twinge of politics involved. Of course we all know that Joe Wilson told the truth and George Bush lied. That should be obvious to any rational person, right? But we'll never know for sure if the whistleblowers were motivated by something other than altruism, because you're so deeply concerned about your personal privacy and freedom that it would never even occur to you to question the motives of anyone who agrees with your view of the world. The fact that you believe that only those who violate their oath of office are honest and only those who never violate their oath of office are dishonest blinds you to the possibility that the truth lies somewhere in between. It's OK though. So long as you don't apply that standard to your investments, you'll probably be able to retire OK. The only question I have for you is... Which government agency is paying your mortgage? The same one that is proposing to pay for your healthcare and control every other aspect of your life because you're too blind to see the forest for the trees. You and millions of other blithering idiots who see nothing wrong with the government forcing you to buy insurance but everything wrong with them trying to keep terrorists from blowing your worthless ass up. Paul Schmehl, If it isn't already obvious, my opinions are my own and not those of my employer. ** WARNING: Check the headers before replying ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] How Prosecutors Wiretap Wall Street
http://www.youtube.com/watch?v=WourPs56Shc On Thu, Nov 5, 2009 at 1:48 PM, valdis.kletni...@vt.edu wrote: On Wed, 04 Nov 2009 17:42:37 CST, Paul Schmehl said: You and millions of others love to conflate those issues with warrantless surveillance of US citizens for the purpose of obtaining evidence in a criminal investigation and then scream bloody murder about warrantless surveillance and intrusions of our rights. OK, so in your opinion we should sit back and accept the legal theory that I'm the President, and as Commander in Chief I can give orders contrary to the usual 4th Amendment restrictions (note carefully that there was *NOT* an actual formal declaration of war made - Congress merely authorized the use of force. Many constitutional law experts seem to think this makes a difference). So it is OK if as President, he decides to suspend habeus corpus? If it's *not* OK, how do you intend to complain once your corpus can't be habeased any more? The price of freedom is eternal vigilance -- Thomas Jefferson. In other words, the time to raise a fuss is *before* they go down the slippery slope, not once they're 3/4 of the way down and in an uncontrolled slide. When fascism comes to America, it will be wrapped in a flag and carrying a cross. -- Sinclair Lewis, 1935 And that's why we raise a fuss. You may wish to read Naomi Wolf's Fascist America in 10 easy steps: http://www.guardian.co.uk/world/2007/apr/24/usa.comment And that's why we raise a fuss. ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
[Full-disclosure] How Prosecutors Wiretap Wall Street
The answer is both more mundane and more alarming. Prosecutors are using the FBI's massive surveillance system, DCSNet, which stands for Digital Collection System Network. According to Wired magazine, this system connects FBI wiretapping rooms to switches controlled by traditional land-line operators, internet-telephony providers and cellular companies. It can be used to instantly wiretap almost any communications device in the U.S. — wireless or tethered. http://www.wallstreetandtech.com/blog/archives/2009/10/how_prosecutors.html;jsessionid=ABTR4HPERGBDFQE1GHPCKHWATMY32JVN ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
[Full-disclosure] H D Moore sells Metasploit: Open source project in commercial hands
http://risky.biz/metasploit_sold ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] H D Moore sells Metasploit: Open source project in commercial hands
quick, wget the whole site before it all goes commercial ;-p On Fri, Oct 23, 2009 at 11:08 AM, James Lay j...@slave-tothe-box.netwrote: *From: *Rohit Patnaik quanti...@gmail.com *Date: *Thu, 22 Oct 2009 18:52:57 -0500 *To: *Ivan . ivan...@gmail.com *Cc: *Full-disclosure full-disclosure@lists.grok.org.uk *Subject: *Re: [Full-disclosure] H D Moore sells Metasploit: Open source project in commercial hands I don't really see this as a bad thing. Metasploit's new hybrid license seems to force contributions to be open-sourced so Rapid7's contributions should flow back to the community. --Rohit Patnaik On Thu, Oct 22, 2009 at 6:14 PM, Ivan . ivan...@gmail.com wrote: http://risky.biz/metasploit_sold I’ve dealt with Rapid7...there were pushy and condescending on the phone since we weren’t interested in their (amazingly expensive) product. It took months to get them to stop calling even after we told them several times we weren’t interested. If they act like that with Metaslpoit...well...good luck. James ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
[Full-disclosure] Yahoo! apologises for lap dance at hack event
yahoo rocks! http://www.brisbanetimes.com.au/technology/technology-news/yahoo-apologises-for-lap-dance-at-hack-event-20091021-h7sr.html ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
[Full-disclosure] Web-monitoring software gathers data on kid chats
Parents who install a leading brand of software to monitor their kids' online activities may be unwittingly allowing the company to read their children's chat messages — and sell the marketing data gathered. Software sold under the Sentry and FamilySafe brands can read private chats conducted through Yahoo, MSN, AOL and other services, and send back data on what kids are saying about such things as movies, music or video games. The information is then offered to businesses seeking ways to tailor their marketing messages to kids. http://www.google.com/hostednews/ap/article/ALeqM5i5CjgMEdrwRm3JxeglUykMAHAYmAD9AGNVM00 ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] Free wlan sniffer for vista
track down ngsniff, not sure if it works on vista. no packet driver required http://osdir.com/ml/security.penetration/2002-11/msg00028.html On Sat, Aug 22, 2009 at 5:09 PM, Peter van Hooft ho...@natlab.research.philips.com wrote: Hi Tk, I would recommend grabbing WinTcpdum and the WinPcap libraries. This has worked for me in the past. http://www.winpcap.org/default.htm On Fri, 21 Aug 2009 06:07:40 -0700, TK ktriv...@msn.com wrote: I am looking for a free wireless sniffer on Vista. I have tried wireshark but it seems I cannot get this into promiscuous mode. I need to sniff all HTTP traffic of the wireless router Thanks in advance This won't help as wireshark uses winpcap to access the network device. Note that not all wireless chipsets support promiscuous mode. peter ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
[Full-disclosure] Dirtiest Web Sites of Summer 2009
http://safeweb.norton.com/dirtysites ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
[Full-disclosure] Former British cop 'has bank details of 40 million people'
http://www.news.com.au/technology/story/0,28348,25828444-5014239,00.html ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
[Full-disclosure] Sniffing Browser History Without Javascript
Interesting! http://it.slashdot.org/story/09/06/13/2125211/Sniffing-Browser-History-Without-Javascript http://www.making-the-web.com/misc/sites-you-visit/nojs/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
[Full-disclosure] Kaminsky: MS security assessment tool is a 'game changer'
In case anyone missed it http://www.theregister.co.uk/2009/03/20/microsoft_crash_tool/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
[Full-disclosure] The BBC acquired a botnet, but was it legal? - Update
According to Struan Robertson, a technology lawyer with Pinsent Masons, in a posting on Out-Law.com, the BBC's statement that the activity would only be illegal if those behind it had criminal intent is not true. Robertson said The BBC appears to have broken the Computer Misuse Act by causing 22,000 computers to send spam. It does not matter that the emails were sent to the BBC's own accounts and criminal intent is not necessary to establish an offence of unauthorised access to a computer. However, Robertson does not think the BBC will be punished for the action because the BBC's actions probably caused no harm. http://www.h-online.com/security/The-BBC-acquired-a-botnet-but-was-it-legal-Update--/news/112834 ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
