Re: [Full-disclosure] THE FULL-CENSORSHIP MOVEMENT
Who is we? Weren't you calling for n3td3v to be allowed back not long ago? Do you see the irony in your message? I know how you can get at least one troll off the list, unsubscribe. On Fri, Oct 2, 2009 at 4:08 PM, full-censors...@hushmail.com wrote: THE FULL-CENSORSHIP MOVEMENT OUR GOALS * we are a movement of security professionals who will complain about every troll * we believe anybody who offends us should be banned * we will not stop until every troll is banned PAST ACHIEVEMENT * we forced n3td3v to be banned mean as we go on now to get the rest banned CALL FOR MEMBERS * we want every security professional to rise up against full- disclosure trolls and get them banned WORKING GROUP * we would like to create a working task group of all the major email providers to collaborate IP intelligence ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] Dumb question: Is Windows box behind a router safe ?
Therefore, some onions must be ogres. On Tue, Sep 22, 2009 at 3:22 PM, Dave irysh...@gmail.com wrote: Layers. Onions have layers. Ogres have layers. Security should have layers. ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] Blonde moment for the list administrator
Go away n3td3v. On Fri, Sep 4, 2009 at 5:18 PM, full-censors...@hushmail.com wrote: Exibar exi...@thelair.com wrote: Yah, Blonde moment when he didnt' ban the idiot sooner... all hackers should be welcome here *all* hackers even the stupid ones. ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] Why FD should unban n3td3v.
The readers did decide, that's why he's banned. If you still like reading his garbage go find whatever bridge he's currently living under and subscribe. If you believe that the days with n3td3v on the list were FD's glory days you're either ignorant or stupid. On Mon, Aug 31, 2009 at 1:56 AM, John Q Publixjohnqpubl...@hush.com wrote: Some of you may call n3td3v annoying, others may call him funny, but others may genuinely value his comments on the list. Leave it up to the reader to decide. FD exists to be unmoderated and uncensored. This list is a great thing, and I'm requesting that it be restored to it's former glory. While I'm no fan of n3td3v, censoring him sets a dangerous precedent. If I wanted to filter out his mails client-side, I still could btw. Just don't censor him on the server. Just my 2 cents. john q public ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] Administrivia: Spring Cleaning
Thank you. ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] Barack Obama -- Not Appropriate
MIB On Thu, Jan 22, 2009 at 8:39 PM, andrew.wallace andrew.wall...@rocketmail.com wrote: Who do you work for? On Fri, Jan 23, 2009 at 1:34 AM, j-f sentier j.sent...@gmail.com wrote: Learn to read think first LTRTF 2009/1/22 andrew.wallace andrew.wall...@rocketmail.com On Fri, Jan 23, 2009 at 12:22 AM, Avraham Schneider avri.schnei...@gmail.com wrote: Besides, the IDF can take care of those terrorists with better tools, so I will let them do their job while I do mine (computer security - what's your's btw?). He works for the Iranian government and spreading hate speech, yet to be denied as a joke. ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] Why are you against n3td3v?
Come now Mr Wallace, answer my previous question in this thread. You've been posting on FD all day so there's no excuse. I'll even include it for you now incase you missed it the first time. So n3td3v, I understand your `group` is still shut off in its own little world. But I wonder why you don't make the archives available. Perhaps it might assist you in regaining your credibility on FD and slow/stop some of the arguing. This is an actual serious inquiry. I await your timely reply. ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] Why are you against n3td3v?
So n3td3v, I understand your group is still shut off in its own little world. But I wonder why you don't make the archives available. Perhaps it might assist you in regaining your credibility on FD and slow/stop some of the arguing. This is an actual serious inquiry. I'll be honest, I'm expecting either no response at all (which will pretty much confirm it doesn't exist) or one of these... There's too much sensitive information., I don't need to prove my credibility to anyone., It's not worth the effort., It's not possible., so on and so forth. and sexyazngrl69, A/S/L plz! On Wed, Jan 14, 2009 at 8:22 AM, Jan G.B. ro0ot.w...@googlemail.com wrote: 2009/1/11 andrew. wallace andrew.wall...@rocketmail.com: Trolls target people they know they can get a reaction out of thats why you are here. You made it again - another reply ;) /diaf ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] Why are you against n3td3v?
Hence why it's with the list of other silly excuses. On Wed, Jan 14, 2009 at 5:06 PM, valdis.kletni...@vt.edu wrote: On Wed, 14 Jan 2009 16:58:34 EST, vulcanius said: I'll be honest, I'm expecting either no response at all (which will pretty much confirm it doesn't exist) or one of these... There's too much sensitive information. Sensitive info shared with 4,500+ others is no longer sensitive. It's open-sourced. ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] Full-Disclosure wouldn't let me post this message
Yeah but you also see the world in some fucked up, retarded, distorted, and psychedelic way while the rest of us see it normally. On Thu, Jan 8, 2009 at 7:12 AM, n3td3v xploita...@gmail.com wrote: On Wed, Jan 7, 2009 at 3:22 PM, Jan G.B. ro0ot.w...@googlemail.com wrote: I don't think that your post is on topic of this list. And I don't think anyone is following you - guess that's the reason why you're *here*, again. Also, an intellectual reply to your posting would be quite absurd. I see cyber war being used incorrectly a national security issue. You may not realise that it might be, but I see it as being one. ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] n3td3v is big in the security community protecting the UK against the threats.
Seriously? What was the point of sending that link to FD other than to alienate yourself and your imaginary group even more? On Tue, Jan 6, 2009 at 4:50 PM, n3td3v xploita...@gmail.com wrote: http://twitter.com/n3td3v/status/1100384047 ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] Fwd: FD culture!?
It's pretty hilarious that you went and asked John to moderate those who don't like you n3td3v and then turned around and criticized people for wanting the same thing, except on a more unbiased level. I'm pretty positive Cartwright doesn't give a shit about the quality of the list as I'm guessing he unsubbed himself a looong time ago. On Sun, Dec 7, 2008 at 1:30 AM, n3td3v [EMAIL PROTECTED] wrote: On Sun, Dec 7, 2008 at 6:25 AM, Bipin Gautam [EMAIL PROTECTED] wrote: On 12/7/08, n3td3v [EMAIL PROTECTED] wrote: What's John Cartwright got to do with an unmoderated mailing list? You joined F-D because you thought it would be partially moderated when someone *you~* don't agree with annoys you? lolcopter. You know where the unsubscribe button is if you don't like this style of mailing list management, please use it instead of moaning. On a side note, I already asked for Ureleet to be banned, but Cartwright's not interested in partially moderating an unmoderated mailing list. Would you rather the list was partially moderated? No... but least, less noise! We have two eyes, two ears but one mouth for a reason. Listen more, look more but talk less. I am complaining because whats happening in FD contradicts to; -- Acceptable Content Any information pertaining to vulnerabilities is acceptable, for instance announcement and discussion thereof, exploit techniques and code, related tools and papers, and other useful information. Gratuitous advertisement, product placement, or self-promotion is forbidden. Disagreements, flames, arguments, and off-topic discussion should be taken off-list wherever possible. Humour is acceptable in moderation, providing it is inoffensive. Politics should be avoided at all costs. Members are reminded that due to the open nature of the list, they should use discretion in executing any tools or code distributed via this list. -- Lastly, i request you all to only post things that we-all may find interesting to read. Personal replies are better taken off-list. Please keep noise low. Please help us to like you more! The charter is just a guideline, its got no law or authority. ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] Fwd: Solving of problems
Yin is the dark and yang is the light. Are you saying that you're the evil one Ureleet and... *gulp* ...n3td3v is the good? On Thu, Dec 4, 2008 at 8:34 PM, Ureleet [EMAIL PROTECTED] wrote: -- Forwarded message -- From: Ureleet [EMAIL PROTECTED] Date: Thu, Dec 4, 2008 at 8:34 PM Subject: Re: Solving of problems To: Mike C [EMAIL PROTECTED] Cc: n3td3v [EMAIL PROTECTED] who says we have it in for each other at all? what makes u the official 'problem' solver. i am the Yin to n3td3v's yang, u r just fucking up the rotation. On Wed, Dec 3, 2008 at 9:48 PM, Mike C [EMAIL PROTECTED] wrote: Ok. Lets restart. Why has the bickering restarted? Why do you have it in for each other? -- MC Security Researcher Lead, Project Chroma http://sites.google.com/site/projectchromaproject/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] Project Chroma: A color code for the state ofcyber security
How exactly is a list of 5 colors going to educate the world about the need for, and proper implementation of, security measures? And be specific, stop with the vagueness already. On Wed, Dec 3, 2008 at 9:45 PM, Mike C [EMAIL PROTECTED] wrote: Thats what project Chroma is all about.. Are you on board?! -- MC Security Researcher Lead, Project Chroma http://sites.google.com/site/projectchromaproject/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] Project Chroma: A color code for the state ofcyber security
*Sorry for my double posting to you Chris. All this solution does is take up their resources and piss off the users who then find ways to get rid of it or circumvent the useless thing. In the case of Mike C this means they'll be disabling whatever security software is in place that uses it. Bravo folks, you've saved the tubes. On Tue, Dec 2, 2008 at 12:13 PM, Chris Jeane [EMAIL PROTECTED] wrote: If you are taking a proactive approach to security, maybe you should always remind the user to be careful with their data. How about 'all desktops have an icon or widget (say at the right hand corner)' that flashes red every five minutes and says 'be careful with the data you share.' This solution removes the overhead of all that pesky monitoring and data mining. ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] Project Chroma: A color code for the state ofcyber security
So have you actually come up with a feasible metric for measuring the current state of malicious/non-malicious traffic on the tubes vs the current state of global tube defenses or is n3td3v's abstract world just rubbing off on you and all you have is a list of colors and a crazy and horribly unrealistic idea in your head? Did you guys just complete ignore the FD charter when you subscribed to the list or what? On Sun, Nov 30, 2008 at 1:17 PM, n3td3v [EMAIL PROTECTED] wrote: We don't need SANS, we've got Mike C! On Sun, Nov 30, 2008 at 5:28 PM, Tomas L. Byrnes [EMAIL PROTECTED] wrote: The SANS Internet Storm Center has been doing this for ages. ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] Project Chroma: A color code for the state ofcyber security
What are you going to do? Give me a massage? I think I'd like that. But in all actuality, I can't wait to hear more about these industry insiders and your techniques for measuring the current level of security implemented across the tubes. That will be some feat. On Sun, Nov 30, 2008 at 9:38 PM, Mike C [EMAIL PROTECTED] wrote: On Sun, Nov 30, 2008 at 9:51 PM, vulcanius [EMAIL PROTECTED] wrote: So have you actually come up with a feasible metric for measuring the current state of malicious/non-malicious traffic on the tubes vs the current Yes. I;m working with industry insiders and we have a set of tangible measurements ready. These will be a part of future Chroma announcements. state of global tube defenses or is n3td3v's abstract world just rubbing off on you and all you have is a list of colors and a crazy and horribly unrealistic idea in your head? Such trolling is highly unwarranted. This kind of banter is not required on FD. I may have to take you up on this offline, and you dont want this. Ask some former FD posters. -- MC Security Researcher Lead, Project Chroma http://sites.google.com/site/projectchromaproject/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] Project Chroma: A color code for the state ofcyber security
By the way, I also noticed that the new site for your project has the current threat level as yellow. Is it safe to assume that you've already got your metric systems in place and running? On Sun, Nov 30, 2008 at 9:41 PM, Mike C [EMAIL PROTECTED] wrote: Yes, The project Chroma leads know of various efforts. But these are either vendor specific, or old and unstandardized. Project Chroma aims to be very active, and will look to interact with security vendors to implement the color codes in security products. -- MC Security Researcher Lead, Project Chroma http://sites.google.com/site/projectchromaproject/ On Sun, Nov 30, 2008 at 6:28 PM, Tomas L. Byrnes [EMAIL PROTECTED] wrote: The SANS Internet Storm Center has been doing this for ages. It has the advantage of being data driven, using the DShield reports as a primary sensor mechanism. http://isc.sans.org/ -Original Message- From: [EMAIL PROTECTED] [mailto:full-disclosure- [EMAIL PROTECTED] On Behalf Of Mike C Sent: Saturday, November 29, 2008 9:35 PM To: Full Disclosure Subject: [Full-disclosure] Project Chroma: A color code for the state ofcyber security Hi, It is time to take an example from Homeland Security and define codes of color for cyber-warfare threat levels. I propose the following: Green level: There is negligible threat to online security. Yellow level : There is a minimal level of threat, and this must be monitored and contained. Orange level: This level of threat indicates there are parties who are actively engaging in cyber-warfare. Caution is required when online. Red level: This level indicates a full blown cyber-war. It indicates very high probability of all communications being intercepted. While homeland security's implementation does not seem to have a real world merit, such a threat level would certainly be very useful in the online security realm. Please disseminate this announcement of the project Chroma levels for online security. The immediate mission of the project is to be picked up by the antivirus and security tools vendors, so as to add the color codes to their products and provide users with a tangible measure of their online security. Current status: Threat level Yellow. -- MC Security Researcher Lead, Project Chroma. ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] FAO John Cartwright
How about we take a vote on who needs to be removed instead. On Thu, Nov 27, 2008 at 12:45 PM, n3td3v [EMAIL PROTECTED] wrote: I urge you to ban [EMAIL PROTECTED] from full-disclosure with immediate effect. ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] FAO John Cartwright
That's pretty much guaranteed. But then maybe John would be forced to finally take action and remove the two people around which 96% of the trouble on FD revolves. For that, I'd be willing to deal with the chaos. On Thu, Nov 27, 2008 at 1:54 PM, Bill Reyor [EMAIL PROTECTED] wrote: Sounds like more chaos, I'll pass thanks. Sent from my iPhone, On Nov 27, 2008, at 1:32 PM, vulcanius [EMAIL PROTECTED] wrote: How about we take a vote on who needs to be removed instead. On Thu, Nov 27, 2008 at 12:45 PM, n3td3v [EMAIL PROTECTED] [EMAIL PROTECTED] wrote: I urge you to ban [EMAIL PROTECTED] from full-disclosure with immediate effect. ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] Fwd: Police probe BNP link to car fire
Are you retarded? On Fri, Nov 21, 2008 at 8:30 AM, Mike C [EMAIL PROTECTED] wrote: On Fri, Nov 21, 2008 at 6:47 PM, James Rankin [EMAIL PROTECTED]wrote: I can work the BBC website myself just fine, cheers Yes, but it is statistically more likely you will read this if n3td3v posts it here. Thus his posting. I sense an air of hostility towards this security researcher, and dont understand the reason. Please take your hostilities offline. ~MC ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] n3td3v warns sans is being brought into disrepute by pauldotcom
Why shouldn't I feed you? Every time we feed you input, you give us the most hilarious output. On Sun, Nov 9, 2008 at 3:26 PM, n3td3v [EMAIL PROTECTED] wrote: Don't feed the troll On Sun, Nov 9, 2008 at 7:05 PM, vulcanius [EMAIL PROTECTED] wrote: Hrmmm, why not. Put me on your little black list of people with common sense who know you're a moron and want you off the FD list. On Sun, Nov 9, 2008 at 12:48 PM, n3td3v [EMAIL PROTECTED] wrote: Are you declaring yourself an enemy of n3td3v? On Sun, Nov 9, 2008 at 5:44 PM, waveroad waveroad [EMAIL PROTECTED] wrote: You don't understand, you are the investigator of this topic. Coming from somebody else will be different and i wont say a shit about it. The problem is that you collect the shit, you've created, and you don't like it. That's why as many others here i think you're a real joke. ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] n3td3v warns sans is being brought into disrepute by pauldotcom
Hrmmm, why not. Put me on your little black list of people with common sense who know you're a moron and want you off the FD list. On Sun, Nov 9, 2008 at 12:48 PM, n3td3v [EMAIL PROTECTED] wrote: Are you declaring yourself an enemy of n3td3v? On Sun, Nov 9, 2008 at 5:44 PM, waveroad waveroad [EMAIL PROTECTED] wrote: You don't understand, you are the investigator of this topic. Coming from somebody else will be different and i wont say a shit about it. The problem is that you collect the shit, you've created, and you don't like it. That's why as many others here i think you're a real joke. ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] question
This is absolutely full of irony. On Sun, Nov 9, 2008 at 5:20 PM, n3td3v [EMAIL PROTECTED] wrote: are you one of those weirdos who tries to speak on behalf of an email list and when a question is emailed to you, you don't answer it and instead attempt to get the list to answer it on your behalf that you think you're representing the opinion of? On Sun, Nov 9, 2008 at 9:58 PM, waveroad waveroad [EMAIL PROTECTED] wrote: Ask this question to your psy. 2008/11/9, n3td3v [EMAIL PROTECTED]: what is your problem with me? ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] What Christianity means to me
I'm sorry, I thought this was Full-Disclosure, not metaphysics weekly. On Fri, Nov 7, 2008 at 11:47 AM, [EMAIL PROTECTED] wrote: On Fri, 07 Nov 2008 15:22:23 +0200, anonymous pimp said: And that, my friends, is the basis of all Christianity. No it isn't. Christianity is... based on the teachings of Jesus Christ [0] [0] http://www.bbc.co.uk/religion/religions/christianity/ FAIL. You're parroting (and citing a circular definition, at that). Andrew A at least *groks* what Jesus was trying to tell us. Among other things, Andrew A notices that Jesus didn't develop his teachings in an intellectual vacuum - he would have been at very familiar with the Old Testament, and had at least passing familiarity with the various Greek philosophers. Even in those areas where Greek teaching was incompatible with Judeaic teachings, they'd be known in compare and contrast form. As we find in Luke chapter 2: 46 After three days they found him in the temple courts, sitting among the teachers, listening to them and asking them questions. 47 Everyone who heard him was amazed at his understanding and his answers. Note that the text implies that at that time, it was not unusual for a 12 year old boy to be at the temple talking to the teachers - what *was* unusual was the depth of understanding for a 12 year old. ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] What Christianity means to me
Are you still trying to justify a completely off-topic thread? On Fri, Nov 7, 2008 at 12:58 PM, [EMAIL PROTECTED] wrote: On Fri, 07 Nov 2008 12:35:44 EST, vulcanius said: Neither, because religion has nothing to do with full disclosure. None are so blind as those who refuse to see. If you had 2 prospective employees, one of whom could merely quote the CNET article about next week's patches, and one who actually understood what that meant in the context of your organization's threat model, which would you rather have working for you? ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] What Christianity means to me
Neither, because religion has nothing to do with full disclosure. On Fri, Nov 7, 2008 at 12:32 PM, [EMAIL PROTECTED] wrote: On Fri, 07 Nov 2008 12:25:38 EST, vulcanius said: So Jesus Christ has what to do with the full disclosure? I'm sorry but I think you may have just got full retard on me. One person *understood* the advisory and what it actually meant, one was merely parroting a circular definition. Which one would *you* rather have working for you? ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] Two bulletins from Microsoft on Patch Tuesday
Probably because there's noone on his mailing list despite his claim of 5000 subscribers. Seriously n3td3v, I'd love to hear you answer as to why you continue to troll the FD list with blatant nonsense while you have this amazing list of 5000 some odd subscribers who all want to hear what you have to say. On Thu, Nov 6, 2008 at 7:40 PM, Anders B Jansson [EMAIL PROTECTED] wrote: n3td3v wrote: blackhats like you will always hate on me, so i just ignore the negative responses i get. Whitehats hate you equally because you just create spam and don't post anything of actual value. You have your mailing list. Why can't you just stay there until you have anything of value to disclose? -- // hdw ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] Securing our computers?
Actually I think a new game should be created that revolves around stalking n3td3v. Points would be awarded for the quickest response to each of his worthless posts. At the end of the month a Stalker of the Month could be selected and given a prize. Bonus points could be given out for the most degrading responses. I think it could be a lot of fun. On Mon, Nov 3, 2008 at 4:58 PM, Ed Carp [EMAIL PROTECTED] wrote: Jesus ... you guys need to get back on your lithium... ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] Fwd: 0day auctions, should they be outlawed?
Because n3td3v is paranoid and believes the government should run just about everything. On Mon, Nov 3, 2008 at 5:45 PM, Email Cash [EMAIL PROTECTED] wrote: I think that ZDI/TippingPoint and the other legit private outfits have been doing a pretty decent job so far. Why bring the law into it? On Mon, Nov 3, 2008 at 7:29 PM, [EMAIL PROTECTED] [EMAIL PROTECTED] wrote: There should be a FD listing fee for the 0day so the list can garner a commission from the sale. Absolutely no increase in government should be directed toward 0day sale prevention or enforcement. The answer to these things rarely should incude the words 'government', 'task' and 'force'. From: n3td3v [EMAIL PROTECTED] Sent: Monday, November 03, 2008 11:00 AM To: full-disclosure@lists.grok.org.uk Subject: Re: [Full-disclosure] Fwd: 0day auctions, should they be outlawed? On Mon, Nov 3, 2008 at 6:49 PM, Marc Balmer wrote: * n3td3v wrote: -- Forwarded message -- From: n3td3v Date: Mon, Nov 3, 2008 at 1:15 PM Subject: 0day auctions, should they be outlawed? To: n3td3v i'll be lobbying soon to outlaw 0day auctions, this means the banning of 0day sales on the internet. i've noticed an increased level in 0day sales lately on mailing lists, and web sites... i think this should be against the law. let me know what your opinions are on this, so i can form what im going to say when i lobby people about it. cheers. wrong approach. there should be a law that the state has to buy all 0days and publish them here on undisclosure. that would be good use of tax money... ;) the latest guy put up an alias that says anti security and i guess demanded money to make the 0day be known, and then there is still no guarantee that the affected vendor or the government is going to get wind of the exploit. that means, there is going to need to be a government task force in place to infiltrate these sales, to make sure the good guys are getting the info before blackhat elements. is there already a government strike force in place to buy these 0day offers? or are the government sitting on their hand as per usual? im becoming increasingly frustrated about what is going on. cheers. ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] Fwd: 0day auctions, should they be outlawed?
Actually in the case of n3td3v I believe his paranoia is that everyone _except_ the government is out to get him. Black hats, white hats, 83 year old grandmothers, the lot of 'em. Remember now, according to himself he IS a researcher exploring the seedy underbelly of the interwebs and it's inhabitants, all of which apparently frequent security mailing lists. On Mon, Nov 3, 2008 at 9:25 PM, [EMAIL PROTECTED] wrote: On Mon, 03 Nov 2008 18:00:30 EST, vulcanius said: Because n3td3v is paranoid and believes the government should run just about everything. No, paranoid means you think the government already does run just about everything, whether or not you think it should. :) ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] security industry software license
If you're going to continue having conversations with yourself I highly recommend switching to an IM client. It will provide you with more immediate gratification and the rest of us with peace and quiet and relevance. But whatever, I just remembered Gmail can filter, silly me. Goodbye n3td3v and good riddance. On Wed, Oct 15, 2008 at 5:16 PM, n3td3v [EMAIL PROTECTED] wrote: metasploit http://metasploit.com/ should get a privacy policy though, if they want to be taken seriously by the kiddies... On Wed, Oct 15, 2008 at 9:47 PM, n3td3v [EMAIL PROTECTED] wrote: i was joking i dont have an informant who told me that stuff, but i thought it was pretty funny anyway. ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] actionable intelligence
You should pursue something more realistic, like getting the FD list moderated. On Mon, Oct 13, 2008 at 9:22 PM, n3td3v [EMAIL PROTECTED] wrote: how can we start to make intelligence actionable? how can we take intelligence from an idle state into an actionable state? what kind of schemes can we setup to make intelligence more actionable to locker out the bad guys? what can we do as a community to get more of the intelligence that is already held about people, more actionable? i'll leave you with those kind of thoughts as we move forward. ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] security industry software license
The economics alone of such a set of laws is enough to realize how unrealistic it is. Not to mention the privacy concerns, international laws, enforcement, etc. In the perfect world of your imagination this might just work but in the real world it's an absolutely ridiculous idea. Do you honestly believe such a thing could ever happen or are you just speculating for no reason? ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] telco service?
Heh. I don't think it's off topic at all, after all were just disclosing information. KF, your absolutely right. The lack of regulation and the lack of attention people give to it is atrocious. You would think in a post 9/11 America that they would at least have some sort of security board. Same goes for the utility companies. Speaking of LENS. If anyone is interested in a copy of the LERG (local exchange routing guide) send me an e-mail. Basically a bunch of excel spreadsheets mapping out switches across the US. Find out who manages it, what equipment they are running. What NPA/NXX's they control, etc. It's a nice little thing to have around sometimes. Shoot me a private e-mail if you'd like a copy. Forewarning, the file is roughly 45MB so plan to have an FTP ready for me to upload it to. On 5/5/05, KF (lists) [EMAIL PROTECTED] wrote: Deigo Dude wrote: Continuing on the thread of telco's (even though its off topic) I think it actually falls in a safe zone under the list charter. In general though I feel that the security of our nations telco infrastructure should certainly be talked about. After the deregulation of the industry I feel that some of these companies need to be held accountable for their equipment. They are currently in the position that they can simply pull wool over any anyones eyes that inquires about their security. 'These aren't the droids you're looking for. If you get too close to finding something out they try to burry you in legal jargon and mumbo jumbo instead of addressing the problems at hand. It is really quite pathetic. Every try to talk to your local police about the potential that someone may have taken control of your towns DMS100... try it sometime. Have an even funner time if you live out in the middle of B.F.E. Ever try to talk to the FTC about a telco issue? FBI? DHS? Its not a fun task... especially when folks either A have no clue what you are speaking of or B simply don't care. These telcos act like the internet and computers have nothing to do with the security of their network... I think its bull shit. I used to have access to https://lens.bellsouth.com (Local exchange navigation system) so you all im sure would also have fun if you can gain access to that. You can look up full information for non-published numbers, make reservations of new numbers, make service orders, change phone service, pretty much anything a bellsouth employee would need to do at any point. I am sure you and several others have had access to that sort of thing over time. That is exactly part of the problem. NO standards and no one to really regulate them. -KF ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] Sprint telco service?
Now this is a thread I can enjoy. I've had alot of what we will call experience in the past with telco's. When I refer to telco's i'm not talking just about the local RBOC, I'm also referring to cellular providers as well. I can't explain the ghost voices your hearing as that's something i've never dealt with before. But if your leaning towards the cause of it being a phreak, then I suggest you take a look outside your window to the box connecting your house to the trunk line. You may see someone there who isn't quite affiliated with the phone company. To Steve, yeah, I remember the days of BBS's. The local number you dialed was probably a loop. Given the few details it's impossible to determine what type though. And the type of number your referring to is an ANAC (automatic number announcement circuit). These are widely available if you just search google for say, ANAC list 800-444- is probably the most well-known and longest lasting. In reference to that article. Telephone companies have quite a few well-guarded secrets. But with the right attitude, voice, and information it can be pretty easily attained. It is possible to gain access to a switch even without a computer. There are actually local numbers as well as 800 numbers out there that have automated voice response systems allowing you to control the switch. In the past I have never once encountered any of these systems having ANY form of authentication. What do I mean? There is no PIN number, no password, etc. You simply dial it up and your in. If you are ever clever enough to get ahold of one of these numbers you will find a few interesting items in the menus. My personal favorites were routing and surveillance. The RBOC's have gotten smart with their security in the past. They still use their cheap old dial-up VPN's. However, gaining access to these is a bit tough. You must have a valid bellsouth employee ID as well as the RSA Secure ID token keychain. These keychains use an algorithm to generate a new password every 60 seconds. I'm feeling generous so i'll give a little more information. The generic login for some of these VPNs is simply, ABC1234/. The password is formatted a bit differently. It is comprised of the six digit number produced by the RSA Secure ID and is preceded by the letters, kppk. 169199 seems to be the current ID. And yes, DMS100's give me a hardon. On 5/3/05, KF (lists) [EMAIL PROTECTED] wrote: Steve Kudlak wrote: KF (lists) wrote: I am interested in hearing from folks with stories similar to this: http://www.security-focus.com/news/10083 Ever hear weird shit on your phone line? Weird billing errors? Weird non dtmf tones randomly stray into your conversations? Had your lines redirected? Have extra lines that you did not ask for? Do DMS100's give you a hard on? shoot me a private email. hell if ya feel like it talk about it on list. -KF ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ I have had a number of weird things with all telcos. In fact one happened today. If you're not on the West Coast ofg NOrth AMerican sorry to bore you with local meteorology. I called a friend to talk about my travails in moving out of the place I was in and into a real two bedroom apartment with a friend. When I called this freind I heard a voice that said: Well with the amount of moisture you can feel in the air... I said hello and I got no answer ...I tried calling his number back and got no answer and then got a busy signalthen I tried later and got the usual answwwering machine. The strange stray voices or ghost voices as I sometimes call them I have gotten a lot. Weirdly I have accidentally called a local bumber and go some phone company linemaan's service in some state many miles away. If people were intertested I could dig them up. I might ask if anyone remembers 8BBS, Bernie Klatt, Suisan Thunder or other people there and Bow Wow Net... Have Fun, Sends Steve P.S. I dunno if this is the place for this sort of thing..I would like to know where one gets tthe numbers that one calls that repeat your number back to you etc. I would be interested quite a bit in a better description of the 'ghost voices' as that is one of the specific symptoms I am inquiring about. -KF ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] #HACKPHREAK ADVISORY | BBQ CHICKEN WTF!
No, but you just reaffirmed my point. Too many dumbass, immature kids. I post quite frequently on others. FD has a good community but there are a few too many rotten eggs. On 4/13/05, [EMAIL PROTECTED] [EMAIL PROTECTED] wrote: This reminds me of why I tend to stay away from FD. which is that you have nothing decent to say on security, to post on FD. babye :) - class101 Jr. Researcher Hat-Squad.com - - Original Message - From: vulcanius [EMAIL PROTECTED] To: full-disclosure@lists.grok.org.uk Sent: Wednesday, April 13, 2005 8:44 PM Subject: Re: [Full-disclosure] #HACKPHREAK ADVISORY | BBQ CHICKEN WTF! Agreed. But I do have to say, all the tribal tattoos are very original. I've never seen those before. *note: sarcasm* This reminds me of why I tend to stay away from FD. Vulcanius On 4/13/05, Berend-Jan Wever [EMAIL PROTECTED] wrote: I propose we up the age limit to post on full-disclosure to 14. Cheers, SkyLined ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/