Re: [Full-disclosure] noise: Possible skydrive link to gov

[doc mombasa]

judging from your inane ramblings about things you obviously have zero clue
about
im pretty sure that you're the australian mirror of n3td3v
you even have the same fondness of wowowowowow 1337 h4nd13
!oneoneone
2011/10/28 xD 0x41 

> i think the latter. grow up.
>
>
>
> On 28 October 2011 20:49, doc mombasa  wrote:
> > too lazy to google and find out what skydrive is? or too returded?
> >
> > 2011/10/27 xD 0x41 
> >>
> >> Hi.
> >> I recently have heard that police, in some places, are using an app
> called
> >> SkyDrive to get 'dox' on people, they seem to be hiding it but, i dont
> know
> >> much yet on this expect, that is ptretty certain, they are using
> skydrive
> >> 9police) in some places... but, to what extent.. i know you can share
> >> folders etc on skydrive... its just curious to me.. nothing big.
> >> If anyone has hard proof would be great.
> >> xd
> >>
> >>
> >> ___
> >> Full-Disclosure - We believe in it.
> >> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> >> Hosted and sponsored by Secunia - http://secunia.com/
> >
> >
>
___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Re: [Full-disclosure] noise: Possible skydrive link to gov

[xD 0x41]

i think the latter. grow up.



On 28 October 2011 20:49, doc mombasa  wrote:
> too lazy to google and find out what skydrive is? or too returded?
>
> 2011/10/27 xD 0x41 
>>
>> Hi.
>> I recently have heard that police, in some places, are using an app called
>> SkyDrive to get 'dox' on people, they seem to be hiding it but, i dont know
>> much yet on this expect, that is ptretty certain, they are using skydrive
>> 9police) in some places... but, to what extent.. i know you can share
>> folders etc on skydrive... its just curious to me.. nothing big.
>> If anyone has hard proof would be great.
>> xd
>>
>>
>> ___
>> Full-Disclosure - We believe in it.
>> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
>> Hosted and sponsored by Secunia - http://secunia.com/
>
>

___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Re: [Full-disclosure] noise: Possible skydrive link to gov

[doc mombasa]

too lazy to google and find out what skydrive is? or too returded?

2011/10/27 xD 0x41 

> Hi.
> I recently have heard that police, in some places, are using an app called
> SkyDrive to get 'dox' on people, they seem to be hiding it but, i dont know
> much yet on this expect, that is ptretty certain, they are using skydrive
> 9police) in some places... but, to what extent.. i know you can share
> folders etc on skydrive... its just curious to me.. nothing big.
> If anyone has hard proof would be great.
> xd
>
>
> ___
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/
>
___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Re: [Full-disclosure] noise: Possible skydrive link to gov

[Zachary Hanna]

Skydrive is the Microsoft cloud storage product, for documents, pictures, etc. 
It is similar to Dropbox, which is already a well-known LE intel source.


From: xD 0x41 mailto:sec...@gmail.com>>
Reply-To: "sec...@gmail.com<mailto:sec...@gmail.com>" 
mailto:sec...@gmail.com>>
Date: Wed, 26 Oct 2011 15:03:23 -0700
To: 
"full-disclosure@lists.grok.org.uk<mailto:full-disclosure@lists.grok.org.uk>" 
mailto:full-disclosure@lists.grok.org.uk>>
Subject: [Full-disclosure] noise: Possible skydrive link to gov

Hi.
I recently have heard that police, in some places, are using an app called 
SkyDrive to get 'dox' on people, they seem to be hiding it but, i dont know 
much yet on this expect, that is ptretty certain, they are using skydrive 
9police) in some places... but, to what extent.. i know you can share folders 
etc on skydrive... its just curious to me.. nothing big.
If anyone has hard proof would be great.
xd

___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

[Full-disclosure] noise: Possible skydrive link to gov

[xD 0x41]

Hi.
I recently have heard that police, in some places, are using an app called
SkyDrive to get 'dox' on people, they seem to be hiding it but, i dont know
much yet on this expect, that is ptretty certain, they are using skydrive
9police) in some places... but, to what extent.. i know you can share
folders etc on skydrive... its just curious to me.. nothing big.
If anyone has hard proof would be great.
xd
___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

[Full-disclosure] [noise]

[NoMore FreeBugs]

vulnerability_report.pdf
md5: 833a20296367aa2aec2c34a9a033a40e
sha1: 2d6c75a272ed7ee246d1acc190c7d88244113bc0
sha256: 99ba4971ec3258c14181cb0520a4b69955af01ddd72dc42a2c0efdad17331e26

poc.zip
md5: 457d50055889bc0e3e7a3f7bc53f8d00
sha1: 20f8366de4eebe9a47af081797c5a351f79f33a2
sha256: e4817371d0b927fb601de6c50d1a289e0215adf5c72574491f9d818ce55c2010

Issue&Credits: 
D/NxjWpdO49+eFfR95UGIOmB0mFAZSvy2vTQneueszYbSuxlDQfNhob8ZmhORuW+AUYc7PEgFt/QEYSo5FgXOQRLGxVo7tiLsQFBTK97I44BIveDPCRQS+2HC51W8l0d

___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Re: [Full-disclosure] noise

[Stefan Jon Silverman]

  
  
Like the divine-message
link...has great potential as an internet
off-ramp...style-points for including it...

--sjs
  
On 7/3/2011 1:17 AM, Jeffrey Walton wrote:

  On Sun, Jul 3, 2011 at 3:22 AM, Jonathan Brossard  wrote:

  
Please ignore.

8feb0981f825d47250a7e9b98124d437
43757802615ee62857e4747a7408b4f1
a58cee1bc265f3f6cfd3317f8af14624
1c000334d57584543f62b835d06e0dd1
cc1faeb253c29cd5836d7a7191431e50
39d315f113d3bc1c6ef65df24892b375

d2ecb3b071808731fb74b9538a6a797d
f2877f351449aeab15534709c8e7e7a0
0690feffb8508f429adafc582ca5fb60
276ccd409c713e05b524c5d0d9fbeebd
60a10cf7f5da0e0f4185e7ecfdfb9af3
0c552fe533ddc808c53c4cccade1b078
2279b3a3f4cfbdb00d52a98de7b38094
c6d717c9fc05b86d15f3ac475b01656d

  
  http://groups.google.com/group/alt.test
http://groups.google.com/group/rec.puzzles
...
http://groups.google.com/group/divine-message

___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/


  


___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Re: [Full-disclosure] noise

[Jeffrey Walton]

On Sun, Jul 3, 2011 at 3:22 AM, Jonathan Brossard  wrote:
> Please ignore.
>
> 8feb0981f825d47250a7e9b98124d437
> 43757802615ee62857e4747a7408b4f1
> a58cee1bc265f3f6cfd3317f8af14624
> 1c000334d57584543f62b835d06e0dd1
> cc1faeb253c29cd5836d7a7191431e50
> 39d315f113d3bc1c6ef65df24892b375
>
> d2ecb3b071808731fb74b9538a6a797d
> f2877f351449aeab15534709c8e7e7a0
> 0690feffb8508f429adafc582ca5fb60
> 276ccd409c713e05b524c5d0d9fbeebd
> 60a10cf7f5da0e0f4185e7ecfdfb9af3
> 0c552fe533ddc808c53c4cccade1b078
> 2279b3a3f4cfbdb00d52a98de7b38094
> c6d717c9fc05b86d15f3ac475b01656d
http://groups.google.com/group/alt.test
http://groups.google.com/group/rec.puzzles
...
http://groups.google.com/group/divine-message

___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

[Full-disclosure] noise

[Jonathan Brossard]

Please ignore.

8feb0981f825d47250a7e9b98124d437
43757802615ee62857e4747a7408b4f1
a58cee1bc265f3f6cfd3317f8af14624
1c000334d57584543f62b835d06e0dd1
cc1faeb253c29cd5836d7a7191431e50
39d315f113d3bc1c6ef65df24892b375

d2ecb3b071808731fb74b9538a6a797d
f2877f351449aeab15534709c8e7e7a0
0690feffb8508f429adafc582ca5fb60
276ccd409c713e05b524c5d0d9fbeebd
60a10cf7f5da0e0f4185e7ecfdfb9af3
0c552fe533ddc808c53c4cccade1b078
2279b3a3f4cfbdb00d52a98de7b38094
c6d717c9fc05b86d15f3ac475b01656d




signature.asc
Description: OpenPGP digital signature
___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Re: [Full-disclosure] noise about full-width encoding bypass?

[3APA3A]

Dear Brian Eaton,

--Monday, May 21, 2007, 11:28:27 PM, you wrote to [EMAIL PROTECTED]:


BE> Given how few application platforms decode full-width unicode to ASCII
BE> equivalents, is there a case to be made that those application
BE> platforms that do decide this conversion is a good idea are broken?

BE> Put another way: should this be considered a bug in ASP.NET?

BE> Regards,
BE> Brian

Converting  e.g.  Unicode  full-width  'A'  into ASCII 'A' is definitely
valid and expected behavior. A bug is using unfiltered input in HTML/SQL
generation.  As for inability of content filter to catch this situation,
it's just one more way to bypass it. See

http://securityvulns.com/advisories/content.asp
http://securityvulns.com/advisories/bypassing.asp


-- 
~/ZARAZA http://securityvulns.com/
Итак, я буду краток. (Твен)

___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Re: [Full-disclosure] noise about full-width encoding bypass?

[3APA3A]

Dear Brian Eaton,

--Monday, May 21, 2007, 11:48:09 PM, you wrote to [EMAIL PROTECTED]:

BE> On 5/21/07, 3APA3A <[EMAIL PROTECTED]> wrote:
>> It's not true, because it's quite convertible character. At least for IIS:
>>
>> http://example.com/test.asp?q=%uFF1Cscript>alert("Hello")
>>
>> where test.asp is
>>
>> <%=Request.QueryString("q")%>
>>
>> launches javascript.

BE> This does not work for me for IIS 6 and IE 7.  What platform did you test?

Windows  2003  Server Std. Russian + All updates. It may actually depend
on  default  server language/charset, because text is actually converted
to ANSI charset, not to ASCII. Mine is Windows-1251.


BE> Regards,
BE> Brian

-- 
~/ZARAZA http://securityvulns.com/


___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Re: [Full-disclosure] noise about full-width encoding bypass?

[Valdis . Kletnieks]

On Mon, 21 May 2007 14:41:58 CDT, Steven Adair said:
> I think you could be on either side, but I would learn towards this being
> a feature than a bug.  Multiple products appear to do the decoding in the
> same manner and intentionally perform this function.

No, they merely *claim* to do it the same way.

>   However, the recent
> advisories that went out were geared towards IDS/IPS products that were
> not designed to be able to recognize such half-/full-width encoded
> traffic.

And if the IDS doesn't do it the *exact* same way, we're just repeating
the mistakes of "using fragmented packets to bypass the IDS", "using X to
bypass the IDS", "using Y to bypass the IDS"... and so on.


pgpQupWx2WCer.pgp
Description: PGP signature
___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Re: [Full-disclosure] noise about full-width encoding bypass?

[Brian Eaton]

On 5/21/07, 3APA3A <[EMAIL PROTECTED]> wrote:
> It's not true, because it's quite convertible character. At least for IIS:
>
> http://example.com/test.asp?q=%uFF1Cscript>alert("Hello")
>
> where test.asp is
>
> <%=Request.QueryString("q")%>
>
> launches javascript.

This does not work for me for IIS 6 and IE 7.  What platform did you test?

Regards,
Brian

___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Re: [Full-disclosure] noise about full-width encoding bypass?

[Steven Adair]

> On 5/21/07, ascii <[EMAIL PROTECTED]> wrote:
>> Brian Eaton wrote:
>> > To summarize what I've heard from various sources: I am missing
>> > something important. =)  Both PHP and ASP.NET will decode these
>> > characters into their ASCII equivalents.
>>
>> (AFAIK)
>>
>> Only ASP.NET/IIS decodes that automatically.
>>
>> PHP *can* do that as like JSP and probably others but that has
>> to happen explicitly in the application code or on an other layer.
>
> (Cracking up that somebody going by the handle ascii is commenting on
> character encoding issues. =)
>
> Given how few application platforms decode full-width unicode to ASCII
> equivalents, is there a case to be made that those application
> platforms that do decide this conversion is a good idea are broken?
>
> Put another way: should this be considered a bug in ASP.NET?
>

I think you could be on either side, but I would learn towards this being
a feature than a bug.  Multiple products appear to do the decoding in the
same manner and intentionally perform this function.  However, the recent
advisories that went out were geared towards IDS/IPS products that were
not designed to be able to recognize such half-/full-width encoded
traffic.  Unless there is some RFC or generally followed documentation
saying the traffic should not be encoded/decoded as such, I would continue
to lean towards this being a feature.  It just appears to be a place much
of the IT (security) world has overlooked.

Steven
securityzone.org


> Regards,
> Brian
>
> ___
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/
>


___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Re: [Full-disclosure] noise about full-width encoding bypass?

[Brian Eaton]

On 5/21/07, ascii <[EMAIL PROTECTED]> wrote:
> Brian Eaton wrote:
> > To summarize what I've heard from various sources: I am missing
> > something important. =)  Both PHP and ASP.NET will decode these
> > characters into their ASCII equivalents.
>
> (AFAIK)
>
> Only ASP.NET/IIS decodes that automatically.
>
> PHP *can* do that as like JSP and probably others but that has
> to happen explicitly in the application code or on an other layer.

(Cracking up that somebody going by the handle ascii is commenting on
character encoding issues. =)

Given how few application platforms decode full-width unicode to ASCII
equivalents, is there a case to be made that those application
platforms that do decide this conversion is a good idea are broken?

Put another way: should this be considered a bug in ASP.NET?

Regards,
Brian

___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Re: [Full-disclosure] noise about full-width encoding bypass?

[ascii]

Brian Eaton wrote:
> To summarize what I've heard from various sources: I am missing
> something important. =)  Both PHP and ASP.NET will decode these
> characters into their ASCII equivalents.

(AFAIK)

Only ASP.NET/IIS decodes that automatically.

PHP *can* do that as like JSP and probably others but that has
to happen explicitly in the application code or on an other layer.

Regards,
Francesco `ascii` Ongaro
http://www.ush.it/

___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Re: [Full-disclosure] noise about full-width encoding bypass?

[Brian Eaton]

On 5/21/07, Brian Eaton <[EMAIL PROTECTED]> wrote:
> Has anyone had a look at the full-width unicode encoding trick discussed here?
>
> http://www.kb.cert.org/vuls/id/739224
>
> AFAICT, this technique could be useful for a homograph attack.  I
> don't think it's useful for much else.  However, a few vendors have
> reacted already, so I may be missing something important.

To summarize what I've heard from various sources: I am missing
something important. =)  Both PHP and ASP.NET will decode these
characters into their ASCII equivalents.  I don't think J2EE apps are
vulnerable, but this is definitely useful for more more than just
homograph attacks.

Thanks to the various people who have tested this out!

Regards,
Brian

___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Re: [Full-disclosure] noise about full-width encoding bypass?

[3APA3A]

Dear Brian Eaton,

--Monday, May 21, 2007, 6:22:21 PM, you wrote to [EMAIL PROTECTED]:


BE> If the SQL engine is processing queries in ASCII or ISO-8859-1, the
BE> conversion from unicode to the code page used by the engine will fail.
BE>  Either the engine will give up on the query, or it might substitute a
BE> question mark (?) for the unconvertible character.

It's not true, because it's quite convertible character. At least for IIS:

http://example.com/test.asp?q=%uFF1Cscript>alert("Hello")

where test.asp is

<%=Request.QueryString("q")%>

launches javascript.

BTW:  It  may be used to bypass keyword based filtering to create, e.g.
porn pages available through any corporate firewall. See

http://securityvulns.ru/files/p.html

-- 
~/ZARAZA http://securityvulns.com/


___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Re: [Full-disclosure] noise about full-width encoding bypass?

[Amichai Shulman]

We have tested this technique for both XSS and SQL Injection with IIS
(and any backend database) and it works nicely.

The issue is that the web server translates the graphical equivalent
character to the actual character (so %uFF07 is actually translated by
the web server to an ASCII quote character). 


Amichai Shulman
CTO



Imperva, Inc.
125 Menachem Begin St.
Tel Aviv 67010
Israel

(972) 3-6840103 Office
(972) 54-5885083 Mobile
(972) 3-6840200 Fax
[EMAIL PROTECTED]

 

SecureSphere
Named 
Editor's Choice for
Web Application Firewall
http://imperva.com/go/nc/

 

-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Brian
Eaton
Sent: Monday, May 21, 2007 5:22 PM
To: Web Security; Full-Disclosure
Subject: [Full-disclosure] noise about full-width encoding bypass?

Has anyone had a look at the full-width unicode encoding trick discussed
here?

http://www.kb.cert.org/vuls/id/739224

AFAICT, this technique could be useful for a homograph attack.  I don't
think it's useful for much else.  However, a few vendors have reacted
already, so I may be missing something important.

Here's why I think the attack is mostly harmless:

Let's say an attacker wants to use this technique to hide a SQL
injection attack.  They decide to use a full-width encoding for single
quote, 0xff 0x07.  They successfully bypass the IDS, because the IDS is
only scanning for normal single quotes.  (You can see the encodings and
their graphical representation here:
http://www.unicode.org/charts/PDF/UFF00.pdf)

If the SQL engine is processing queries in Unicode, then 0xff 0x07 will
be treated as a normal unicode character, not a single quote.
The sequence 0xff 0x07 is not equivalent to 0x27, the real single quote
value.  No SQL injection occurs.

If the SQL engine is processing queries in UTF-8, then 0xff 0x07 will be
converted from Unicode to UTF-8: 0xef 0xbc 0x87.  Again, the engine does
not recognize 0xef 0xbc 0x87 as equivalent to 0x27.

If the SQL engine is processing queries in ASCII or ISO-8859-1, the
conversion from unicode to the code page used by the engine will fail.
 Either the engine will give up on the query, or it might substitute a
question mark (?) for the unconvertible character.

To summarize: I think half-width and full-width unicode characters are
characters that happen to have the same graphical representation as
other characters, but don't carry any special significance outside of
that graphical representation.  The graphical representation can be
important in homograph attacks, but otherwise I don't see this technique
as particularly useful to an attacker.

Any comments on what I may have missed?

Regards,
Brian

___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Re: [Full-disclosure] noise about full-width encoding bypass?

[Łukasz Pilorz]

Hi,
I think this encoding bypass may have some impact on applications
which convert data from Unicode/UTF to other encodings. A naive
example:
http://lukasz.pilorz.net/testy/full_width_utf/index.phps

But I don't suggest this was the main problem, I have probably missed
something too.
Best regards,
Łukasz Pilorz

Brian Eaton napisał(a):
> Has anyone had a look at the full-width unicode encoding trick discussed here?
>
> http://www.kb.cert.org/vuls/id/739224
>
> AFAICT, this technique could be useful for a homograph attack.  I
> don't think it's useful for much else.  However, a few vendors have
> reacted already, so I may be missing something important.
>
> Here's why I think the attack is mostly harmless:
>
> Let's say an attacker wants to use this technique to hide a SQL
> injection attack.  They decide to use a full-width encoding for single
> quote, 0xff 0x07.  They successfully bypass the IDS, because the IDS
> is only scanning for normal single quotes.  (You can see the encodings
> and their graphical representation here:
> http://www.unicode.org/charts/PDF/UFF00.pdf)
>
> If the SQL engine is processing queries in Unicode, then 0xff 0x07
> will be treated as a normal unicode character, not a single quote.
> The sequence 0xff 0x07 is not equivalent to 0x27, the real single
> quote value.  No SQL injection occurs.
>
> If the SQL engine is processing queries in UTF-8, then 0xff 0x07 will
> be converted from Unicode to UTF-8: 0xef 0xbc 0x87.  Again, the engine
> does not recognize 0xef 0xbc 0x87 as equivalent to 0x27.
>
> If the SQL engine is processing queries in ASCII or ISO-8859-1, the
> conversion from unicode to the code page used by the engine will fail.
>  Either the engine will give up on the query, or it might substitute a
> question mark (?) for the unconvertible character.
>
> To summarize: I think half-width and full-width unicode characters are
> characters that happen to have the same graphical representation as
> other characters, but don't carry any special significance outside of
> that graphical representation.  The graphical representation can be
> important in homograph attacks, but otherwise I don't see this
> technique as particularly useful to an attacker.
>
> Any comments on what I may have missed?
>
> Regards,
> Brian
>
> ___
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/
>
___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Re: [Full-disclosure] noise about full-width encoding bypass?

[Brian Eaton]

On 5/21/07, Łukasz Pilorz <[EMAIL PROTECTED]> wrote:
> I think this encoding bypass may have some impact on applications
> which convert data from Unicode/UTF to other encodings. A naive
> example:
> http://lukasz.pilorz.net/testy/full_width_utf/index.phps
>
> But I don't suggest this was the main problem, I have probably missed
> something too.

Your POC works for me, the PHP iconv code converts the UTF-8 byte
sequence 0xef  0xbc 0x9C to ASCII '<'.  Looks like PHP applications
may be at risk.

The java CharsetDecoder class does not.  (I don't think this will be
JRE specific, but I tested the IBM JRE...).

The perl Encode module does not.

Anybody have an IIS server handy, to test out how .NET handles this?

Regards,
Brian
___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

[Full-disclosure] noise about full-width encoding bypass?

[Brian Eaton]

Has anyone had a look at the full-width unicode encoding trick discussed here?

http://www.kb.cert.org/vuls/id/739224

AFAICT, this technique could be useful for a homograph attack.  I
don't think it's useful for much else.  However, a few vendors have
reacted already, so I may be missing something important.

Here's why I think the attack is mostly harmless:

Let's say an attacker wants to use this technique to hide a SQL
injection attack.  They decide to use a full-width encoding for single
quote, 0xff 0x07.  They successfully bypass the IDS, because the IDS
is only scanning for normal single quotes.  (You can see the encodings
and their graphical representation here:
http://www.unicode.org/charts/PDF/UFF00.pdf)

If the SQL engine is processing queries in Unicode, then 0xff 0x07
will be treated as a normal unicode character, not a single quote.
The sequence 0xff 0x07 is not equivalent to 0x27, the real single
quote value.  No SQL injection occurs.

If the SQL engine is processing queries in UTF-8, then 0xff 0x07 will
be converted from Unicode to UTF-8: 0xef 0xbc 0x87.  Again, the engine
does not recognize 0xef 0xbc 0x87 as equivalent to 0x27.

If the SQL engine is processing queries in ASCII or ISO-8859-1, the
conversion from unicode to the code page used by the engine will fail.
 Either the engine will give up on the query, or it might substitute a
question mark (?) for the unconvertible character.

To summarize: I think half-width and full-width unicode characters are
characters that happen to have the same graphical representation as
other characters, but don't carry any special significance outside of
that graphical representation.  The graphical representation can be
important in homograph attacks, but otherwise I don't see this
technique as particularly useful to an attacker.

Any comments on what I may have missed?

Regards,
Brian

___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Re: [Full-disclosure] Noise

[n3td3v]

Nah dude, he stood in defence of Kevin Mitnick, works with the UN, whitehouse, fbi etc. He's a world leading advisor with much infulence on the super powers of the world in relation to information technology security.

 
http://www.nytimes.com/2005/07/31/business/yourmoney/31hack.html?ex=1280462400&en=311d897de4ab090a&ei=5088&partner=rssnyt&emc=rss

 
http://www.msbit.com/mis.html
 
http://www.cutter.com/consultants/seidenm.html
 
He's highly respected in the government and corporate circuits of the world. Everytime I speak to him he's in another part of the world preparing to go into talks with a government or corporation. By no means a script kid who got lucky. He and people as high up as him are the real people who run U-S government and corporate interests. We all know when we think of George W Bush, we all know he's not that powerful and takes advice from the real advisors in control of the world, that you never see or hear about in public, well Seiden is your man.
 
On 3/30/06, [EMAIL PROTECTED] <[EMAIL PROTECTED]> wrote:

On Wed, 29 Mar 2006 23:36:28 +0100, n3td3v said:> You mean like Seiden who broke into banks and told everyone about it, and is
> now one of the biggest security experts in the industry. He sent me an> e-mail telling me a week or so back telling me to take you seriously, i'm> beginning to wonder why.On Wed, 29 Mar 2006 23:56:48 +0100, n3td3v said:
> thats the current situation, upto date. Seiden at yahoo (security> consultant/advisor/hacker) whatever you want to call him is now pissed off> because he's getting no info feed into his corporate security team
> anymore...You'd think if Seiden was leet enough to break into banks, he'd be able toapply the same techniques to Yahoo and not need an external feed.  Unless ofcourse he was just a skiddy who whacked the banks with some exploit he stole
from somebody else and didn't understand
___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Re: [Full-disclosure] Noise

[s89df987 s9f87s987f]

end this now, I'd swear you wanted him to come back.

On 3/30/06, [EMAIL PROTECTED] <[EMAIL PROTECTED]> wrote:

On Wed, 29 Mar 2006 23:36:28 +0100, n3td3v said:
> You mean like Seiden who broke into banks and told everyone about it, 
and is

> now one of the biggest security experts in the industry. He sent me an
> e-mail telling me a week or so back telling me to take you seriously, 
i'm

> beginning to wonder why.

On Wed, 29 Mar 2006 23:56:48 +0100, n3td3v said:
> thats the current situation, upto date. Seiden at yahoo (security
> consultant/advisor/hacker) whatever you want to call him is now pissed 
off

> because he's getting no info feed into his corporate security team
> anymore...

You'd think if Seiden was leet enough to break into banks, he'd be able to
apply the same techniques to Yahoo and not need an external feed.  Unless 
of
course he was just a skiddy who whacked the banks with some exploit he 
stole

from somebody else and didn't understand



___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/





_
On the road to retirement? Check out MSN Life Events for advice on how to 
get there! http://lifeevents.msn.com/category.aspx?cid=Retirement


___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Re: [Full-disclosure] Noise

[Valdis . Kletnieks]

On Wed, 29 Mar 2006 23:36:28 +0100, n3td3v said:
> You mean like Seiden who broke into banks and told everyone about it, and is
> now one of the biggest security experts in the industry. He sent me an
> e-mail telling me a week or so back telling me to take you seriously, i'm
> beginning to wonder why.

On Wed, 29 Mar 2006 23:56:48 +0100, n3td3v said:
> thats the current situation, upto date. Seiden at yahoo (security
> consultant/advisor/hacker) whatever you want to call him is now pissed off
> because he's getting no info feed into his corporate security team
> anymore...

You'd think if Seiden was leet enough to break into banks, he'd be able to
apply the same techniques to Yahoo and not need an external feed.  Unless of
course he was just a skiddy who whacked the banks with some exploit he stole
from somebody else and didn't understand



pgpUmKyknrVKF.pgp
Description: PGP signature
___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Re: [Full-disclosure] Noise

[n3td3v]

Wel, theres certainly no chance i'll come back to the list after the way i've been treated. With all the trolls (much of them blackhat/scriptkid based) bashing legitmate security researchers who have been reporting shizzle to the big players within the industry for some 7 years so far, its not suprising that I want to leave the list. Its people like you who really make me sick. I was recommended this list to expose Yahoo security professionals for their misconduct of security behind the scenes. Yahoo security team setup 
http://security.yahoo.com because of my activity, and they want to protect users, now that I go public, it seems like all my work is unjustified in the eyes of this list. See you around then, if anyone has questions about Yahoo security you can contact the group, where one of us will reply to you 
[EMAIL PROTECTED]
On 3/30/06, evader <[EMAIL PROTECTED]> wrote:

You've said you were leaving about 3 times in the past, and then came back shortly after. Stay away.
On Thu, 2006-03-30 at 03:08 +0100, n3td3v wrote:
I will go away if you want, but that doesn't stop me being the founder of the biggest groups' with corporate hack information on the internet. If you want me to F""k off I will...if that makes you sleep easier. Bye, then, I guess this will be my last ever FD post. I wil dispappear and Todd from RING-0F-FIRE can come back on the list and take over. Since they have all the corporate hackers, after all . 

On 3/30/06, Stan Bubrouski <
[EMAIL PROTECTED]> wrote: 
So let me see if I get this right, yahoo employees are trying to tapyou for information and you stopped contacting them.  Plenty of people 
on this list want nothing of you and would love for you to stopcontacting them.  How can we pull a yahoo here and be rid of you?-sb
On 3/29/06, n3td3v <[EMAIL PROTECTED]> wrote:>
> I finished school 11 years ago, infact I left on my own accordance (when I> was 14) because they were going to chuck me out of school anyway. I soon got
> involved in stealing cars, brekaing into houses, and taking goods from > shops. All my criminal friends went to jail, I was the only one left. I> started using computers to pass the time (when I was 18) when having "no one
> left to hang about with", and I used my knowledge of criminality to work out > the bad guys at Yahoo. I then met an employee (who will remain unnamed) to
> act as an informant for Yahoo. I then started to find my own vulnerabilities> to Yahoo, which I reported to them. They started disrespecting me,  I setup 
> my own security group to show them that I could be a match against them and> continue to compromise their systems. I then went on a public crusade to
> tell the public all about their flaws that I had been keeping secret for > years. Their employees who thought were befriending me to keep in tap with
> info I had were told finally to f*** off just last week, and now there is no> connection between n3td3v and the yahoo security team, infact, I mailed the 
> official address and told them I wouldn't be mailign them ever again. And> thats the current situation, upto date. Seiden at yahoo (security
> consultant/advisor/hacker) whatever you want to call him is now pissed off > because he's getting no info feed into his corporate security team
> anymore... and the consultants and engineers who had opened dialog with me> are now sitting in paranoia.>
>>> On 3/29/06, xyberpix <[EMAIL PROTECTED]
> wrote:> > -BEGIN PGP SIGNED MESSAGE-> > Hash: SHA1> >> > Yeah, I do actually, but due to the nature of the company that I work 
> > for, I'm not actually able to disclose any of that information.> > I'm also legally not allowed to disclose any vulnerabilities
> > publicly, as per my contract of employment.> > Most the people on this list and a few others are already aware of > > those factors, but I guess I couldn't expect someone of your l33tness
> > to comprehend that.> > Maybe one day when you get a real job, and finish school, and if> > you're lucky enough, your prospective employer will have no idea who 
> > n3td3v is. You may even understand that certain> > factors change when you get a real job, I just hope that for your
> > sake one day you realize the damage that you are doing to your name > > in the industry.> >> > xyberpix
> >> > Blog: http://blogs.securiteam.com
> >> >> >> > On 29 Mar 2006, at 23:18, n3td3v wrote: 
> >> > > Well actually breaking into systems and showing the result to> > > Google Yahoo etc sure is a bigger buzz than blogging about "current
> > > issues" within the media that you currently blog about. Wheres your > > > hacker stories of breaking into systems, wheres your unique/
> > > original posts that haven't been seen before in public? I> > > throughout the the years have been none stop telling everyone of my 
> > > war stories of whats been happening behind the scenes at the Yahoo> > > security community. I mean, which scene do you belong to, apart
> > > from some guy who reads FD and then blogs about whatever is

Re: [Full-disclosure] Noise

[evader]

You've said you were leaving about 3 times in the past, and then came back shortly after. Stay away.

On Thu, 2006-03-30 at 03:08 +0100, n3td3v wrote:

I will go away if you want, but that doesn't stop me being the founder of the biggest groups' with corporate hack information on the internet. If you want me to F""k off I will...if that makes you sleep easier. Bye, then, I guess this will be my last ever FD post. I wil dispappear and Todd from RING-0F-FIRE can come back on the list and take over. Since they have all the corporate hackers, after all . 



On 3/30/06, Stan Bubrouski <[EMAIL PROTECTED]> wrote: 

So let me see if I get this right, yahoo employees are trying to tap
you for information and you stopped contacting them.  Plenty of people 
on this list want nothing of you and would love for you to stop
contacting them.  How can we pull a yahoo here and be rid of you?

-sb

On 3/29/06, n3td3v <[EMAIL PROTECTED]> wrote:
>
> I finished school 11 years ago, infact I left on my own accordance (when I
> was 14) because they were going to chuck me out of school anyway. I soon got
> involved in stealing cars, brekaing into houses, and taking goods from 
> shops. All my criminal friends went to jail, I was the only one left. I
> started using computers to pass the time (when I was 18) when having "no one
> left to hang about with", and I used my knowledge of criminality to work out 
> the bad guys at Yahoo. I then met an employee (who will remain unnamed) to
> act as an informant for Yahoo. I then started to find my own vulnerabilities
> to Yahoo, which I reported to them. They started disrespecting me,  I setup 
> my own security group to show them that I could be a match against them and
> continue to compromise their systems. I then went on a public crusade to
> tell the public all about their flaws that I had been keeping secret for 
> years. Their employees who thought were befriending me to keep in tap with
> info I had were told finally to f*** off just last week, and now there is no
> connection between n3td3v and the yahoo security team, infact, I mailed the 
> official address and told them I wouldn't be mailign them ever again. And
> thats the current situation, upto date. Seiden at yahoo (security
> consultant/advisor/hacker) whatever you want to call him is now pissed off 
> because he's getting no info feed into his corporate security team
> anymore... and the consultants and engineers who had opened dialog with me
> are now sitting in paranoia.
>
>
>
> On 3/29/06, xyberpix <[EMAIL PROTECTED]> wrote:
> > -BEGIN PGP SIGNED MESSAGE-
> > Hash: SHA1
> >
> > Yeah, I do actually, but due to the nature of the company that I work 
> > for, I'm not actually able to disclose any of that information.
> > I'm also legally not allowed to disclose any vulnerabilities
> > publicly, as per my contract of employment.
> > Most the people on this list and a few others are already aware of 
> > those factors, but I guess I couldn't expect someone of your l33tness
> > to comprehend that.
> > Maybe one day when you get a real job, and finish school, and if
> > you're lucky enough, your prospective employer will have no idea who 
> > n3td3v is. You may even understand that certain
> > factors change when you get a real job, I just hope that for your
> > sake one day you realize the damage that you are doing to your name 
> > in the industry.
> >
> > xyberpix
> >
> > Blog: http://blogs.securiteam.com
> >
> >
> >
> > On 29 Mar 2006, at 23:18, n3td3v wrote: 
> >
> > > Well actually breaking into systems and showing the result to
> > > Google Yahoo etc sure is a bigger buzz than blogging about "current
> > > issues" within the media that you currently blog about. Wheres your 
> > > hacker stories of breaking into systems, wheres your unique/
> > > original posts that haven't been seen before in public? I
> > > throughout the the years have been none stop telling everyone of my 
> > > war stories of whats been happening behind the scenes at the Yahoo
> > > security community. I mean, which scene do you belong to, apart
> > > from some guy who reads FD and then blogs about whatever is on the 
> > > list. Don't you have your own stuff thats original/unique?
> > >
> > > On 3/29/06, xyberpix <[EMAIL PROTECTED]> wrote: -BEGIN PGP 
> > > SIGNED MESSAGE-
> > > Hash: SHA1
> > >
> > > Bwahahahahahahahahaha

Re: [Full-disclosure] Noise

[n3td3v]

I will go away if you want, but that doesn't stop me being the founder of the biggest groups' with corporate hack information on the internet. If you want me to F""k off I will...if that makes you sleep easier. Bye, then, I guess this will be my last ever FD post. I wil dispappear and Todd from RING-0F-FIRE can come back on the list and take over. Since they have all the corporate hackers, after all .

On 3/30/06, Stan Bubrouski <[EMAIL PROTECTED]> wrote:
So let me see if I get this right, yahoo employees are trying to tapyou for information and you stopped contacting them.  Plenty of people
on this list want nothing of you and would love for you to stopcontacting them.  How can we pull a yahoo here and be rid of you?-sbOn 3/29/06, n3td3v <[EMAIL PROTECTED]
> wrote:>> I finished school 11 years ago, infact I left on my own accordance (when I> was 14) because they were going to chuck me out of school anyway. I soon got> involved in stealing cars, brekaing into houses, and taking goods from
> shops. All my criminal friends went to jail, I was the only one left. I> started using computers to pass the time (when I was 18) when having "no one> left to hang about with", and I used my knowledge of criminality to work out
> the bad guys at Yahoo. I then met an employee (who will remain unnamed) to> act as an informant for Yahoo. I then started to find my own vulnerabilities> to Yahoo, which I reported to them. They started disrespecting me,  I setup
> my own security group to show them that I could be a match against them and> continue to compromise their systems. I then went on a public crusade to> tell the public all about their flaws that I had been keeping secret for
> years. Their employees who thought were befriending me to keep in tap with> info I had were told finally to f*** off just last week, and now there is no> connection between n3td3v and the yahoo security team, infact, I mailed the
> official address and told them I wouldn't be mailign them ever again. And> thats the current situation, upto date. Seiden at yahoo (security> consultant/advisor/hacker) whatever you want to call him is now pissed off
> because he's getting no info feed into his corporate security team> anymore... and the consultants and engineers who had opened dialog with me> are now sitting in paranoia.>>>
> On 3/29/06, xyberpix <[EMAIL PROTECTED]> wrote:> > -BEGIN PGP SIGNED MESSAGE-> > Hash: SHA1> >> > Yeah, I do actually, but due to the nature of the company that I work
> > for, I'm not actually able to disclose any of that information.> > I'm also legally not allowed to disclose any vulnerabilities> > publicly, as per my contract of employment.> > Most the people on this list and a few others are already aware of
> > those factors, but I guess I couldn't expect someone of your l33tness> > to comprehend that.> > Maybe one day when you get a real job, and finish school, and if> > you're lucky enough, your prospective employer will have no idea who
> > n3td3v is. You may even understand that certain> > factors change when you get a real job, I just hope that for your> > sake one day you realize the damage that you are doing to your name
> > in the industry.> >> > xyberpix> >> > Blog: http://blogs.securiteam.com> >> >> >> > On 29 Mar 2006, at 23:18, n3td3v wrote:
> >> > > Well actually breaking into systems and showing the result to> > > Google Yahoo etc sure is a bigger buzz than blogging about "current> > > issues" within the media that you currently blog about. Wheres your
> > > hacker stories of breaking into systems, wheres your unique/> > > original posts that haven't been seen before in public? I> > > throughout the the years have been none stop telling everyone of my
> > > war stories of whats been happening behind the scenes at the Yahoo> > > security community. I mean, which scene do you belong to, apart> > > from some guy who reads FD and then blogs about whatever is on the
> > > list. Don't you have your own stuff thats original/unique?> > >> > > On 3/29/06, xyberpix <[EMAIL PROTECTED]> wrote: -BEGIN PGP
> > > SIGNED MESSAGE-> > > Hash: SHA1> > >> > > Bwahahahahahahahahahahahahahaahahahahaha.> > >> > > To live in your world must be so much fun.
> > >> > > xyberpix> > >> > > Blog: http://blogs.securiteam.com> > >> > >> > >> > > On 29 Mar 2006, at 22:20, n3td3v wrote:
> > >> > > > And of course, you want to advertise that securiteam.com let you> > > > setup a blog on their domain because they felt sorry for you. I
> > > > believe theres a e-mail link on the securiteam.com site for anyone> > > > to ask for a blog, its nothing special. How many corporate systems> > > > and networks have you broken into, just as I thought...none.
> > > >> > > > On 3/29/06, xyberpix <[EMAIL PROTECTED]> wrote: -BEGIN PGP> > > > SIGNED MESSAGE-> > > > Hash: SHA1
> > > >> > > > Seriously, this list was better with a certain someone not on it,> > > can> > > > we please go back to that way of life again?> > > >
> > > > xyber

Re: [Full-disclosure] Noise

[Stan Bubrouski]

So let me see if I get this right, yahoo employees are trying to tap
you for information and you stopped contacting them.  Plenty of people
on this list want nothing of you and would love for you to stop
contacting them.  How can we pull a yahoo here and be rid of you?

-sb

On 3/29/06, n3td3v <[EMAIL PROTECTED]> wrote:
>
> I finished school 11 years ago, infact I left on my own accordance (when I
> was 14) because they were going to chuck me out of school anyway. I soon got
> involved in stealing cars, brekaing into houses, and taking goods from
> shops. All my criminal friends went to jail, I was the only one left. I
> started using computers to pass the time (when I was 18) when having "no one
> left to hang about with", and I used my knowledge of criminality to work out
> the bad guys at Yahoo. I then met an employee (who will remain unnamed) to
> act as an informant for Yahoo. I then started to find my own vulnerabilities
> to Yahoo, which I reported to them. They started disrespecting me,  I setup
> my own security group to show them that I could be a match against them and
> continue to compromise their systems. I then went on a public crusade to
> tell the public all about their flaws that I had been keeping secret for
> years. Their employees who thought were befriending me to keep in tap with
> info I had were told finally to f*** off just last week, and now there is no
> connection between n3td3v and the yahoo security team, infact, I mailed the
> official address and told them I wouldn't be mailign them ever again. And
> thats the current situation, upto date. Seiden at yahoo (security
> consultant/advisor/hacker) whatever you want to call him is now pissed off
> because he's getting no info feed into his corporate security team
> anymore... and the consultants and engineers who had opened dialog with me
> are now sitting in paranoia.
>
>
>
> On 3/29/06, xyberpix <[EMAIL PROTECTED]> wrote:
> > -BEGIN PGP SIGNED MESSAGE-
> > Hash: SHA1
> >
> > Yeah, I do actually, but due to the nature of the company that I work
> > for, I'm not actually able to disclose any of that information.
> > I'm also legally not allowed to disclose any vulnerabilities
> > publicly, as per my contract of employment.
> > Most the people on this list and a few others are already aware of
> > those factors, but I guess I couldn't expect someone of your l33tness
> > to comprehend that.
> > Maybe one day when you get a real job, and finish school, and if
> > you're lucky enough, your prospective employer will have no idea who
> > n3td3v is. You may even understand that certain
> > factors change when you get a real job, I just hope that for your
> > sake one day you realize the damage that you are doing to your name
> > in the industry.
> >
> > xyberpix
> >
> > Blog: http://blogs.securiteam.com
> >
> >
> >
> > On 29 Mar 2006, at 23:18, n3td3v wrote:
> >
> > > Well actually breaking into systems and showing the result to
> > > Google Yahoo etc sure is a bigger buzz than blogging about "current
> > > issues" within the media that you currently blog about. Wheres your
> > > hacker stories of breaking into systems, wheres your unique/
> > > original posts that haven't been seen before in public? I
> > > throughout the the years have been none stop telling everyone of my
> > > war stories of whats been happening behind the scenes at the Yahoo
> > > security community. I mean, which scene do you belong to, apart
> > > from some guy who reads FD and then blogs about whatever is on the
> > > list. Don't you have your own stuff thats original/unique?
> > >
> > > On 3/29/06, xyberpix <[EMAIL PROTECTED]> wrote: -BEGIN PGP
> > > SIGNED MESSAGE-
> > > Hash: SHA1
> > >
> > > Bwahahahahahahahahahahahahahaahahahahaha.
> > >
> > > To live in your world must be so much fun.
> > >
> > > xyberpix
> > >
> > > Blog: http://blogs.securiteam.com
> > >
> > >
> > >
> > > On 29 Mar 2006, at 22:20, n3td3v wrote:
> > >
> > > > And of course, you want to advertise that securiteam.com let you
> > > > setup a blog on their domain because they felt sorry for you. I
> > > > believe theres a e-mail link on the securiteam.com site for anyone
> > > > to ask for a blog, its nothing special. How many corporate systems
> > > > and networks have you broken into, just as I thought...none.
> > > >
> > > > On 3/29/06, xyberpix <[EMAIL PROTECTED]> wrote: -BEGIN PGP
> > > > SIGNED MESSAGE-
> > > > Hash: SHA1
> > > >
> > > > Seriously, this list was better with a certain someone not on it,
> > > can
> > > > we please go back to that way of life again?
> > > >
> > > > xyberpix
> > > >
> > > > Blog: http://blogs.securiteam.com
> > > >
> > > >
> > > >
> > > > -BEGIN PGP SIGNATURE-
> > > > Version: GnuPG v1.4.1 (Darwin)
> > > >
> > > >
> iD8DBQFEKvaQ2VKEoIQBZwkRAtzKAKC1Nm61nKmI+kvMO8xdWGfS3stTewCgknu/
> > > > lmv5iUrwWtmo9VmqUH9VaT4=
> > > > =ohry
> > > > -END PGP SIGNATURE-
> > > >
> > > > ___

Re: [Full-disclosure] Noise

[n3td3v]

You can actually crash the server if you throw enough data into it, but you great security researchers, probably haven't tried that yet and plus, the hack was captured on the yahoo search engine, which is mighty impressive. Maybe Mark Seiden was spying on me at the time 

http://66.218.69.11/search/cache?ei=UTF-8&p=n3td3v&fr=sfp&u=mtf.news.yahoo.com/mailto%3Furl%3Dhttp%253A//e.my.yahoo.com/config/cstore%253F.opt%3Dcontent%2526.node%3D1%2526.sid%3D171771%26title%3DChoose+Content%26prop%3Dmycstore%26locale%3Dus%26h1%3Dymessenger+at+Yahoo%21+Groups%26h2%3Dn3td3v%26h3%3Dhttp%253A//my.yahoo.com&w=n3td3v&d=U5wy1m1aMbOe&icp=1&.intl=us

On 3/30/06, n3td3v <[EMAIL PROTECTED]> wrote:


http://mtf.news.yahoo.com/mailto?url="" 


On 3/30/06, Randal T. Rioux <[EMAIL PROTECTED]
> wrote: 
No. He needs to disconnect from AOL because his sister needs the phoneand his mom just yelled to him in the basement to come up for dinner. 
php0t wrote:> You need a hug.>> -Original Message-> *From:* 
[EMAIL PROTECTED]> [mailto: [EMAIL PROTECTED]
] *On Behalf Of *n3td3v> *Sent:* Thursday, March 30, 2006 12:57 AM> *To:* 
full-disclosure@lists.grok.org.uk> *Subject:* Re: [Full-disclosure] Noise>> I finished school 11 years ago, infact I left on my own accordance> (when I was 14) because they were going to chuck me out of school 
> anyway. I soon got involved in stealing cars, brekaing into houses,> and taking goods from shops. All my criminal friends went to jail, I> was the only one left. I started using computers to pass the time 
> (when I was 18) when having "no one left to hang about with", and I> used my knowledge of criminality to work out the bad guys at Yahoo.> I then met an employee (who will remain unnamed) to act as an 
> informant for Yahoo. I then started to find my own vulnerabilities> to Yahoo, which I reported to them. They started disrespecting me,> I setup my own security group to show them that I could be a match 
> against them and continue to compromise their systems. I then went> on a public crusade to tell the public all about their flaws that I> had been keeping secret for years. Their employees who thought were 
> befriending me to keep in tap with info I had were told finally to> f*** off just last week, and now there is no connection between> n3td3v and the yahoo security team, infact, I mailed the official 
> address and told them I wouldn't be mailign them ever again. And> thats the current situation, upto date. Seiden at yahoo (security> consultant/advisor/hacker) whatever you want to call him is now 
> pissed off because he's getting no info feed into his corporate> security team anymore... and the consultants and engineers who had> opened dialog with me are now sitting in paranoia.
>___Full-Disclosure - We believe in it.Charter: 
http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/

___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Re: [Full-disclosure] Noise

[n3td3v]

http://mtf.news.yahoo.com/mailto?url=""

On 3/30/06, Randal T. Rioux <[EMAIL PROTECTED]> wrote:
No. He needs to disconnect from AOL because his sister needs the phoneand his mom just yelled to him in the basement to come up for dinner.
php0t wrote:> You need a hug.>> -Original Message-> *From:* [EMAIL PROTECTED]> [mailto:
[EMAIL PROTECTED]] *On Behalf Of *n3td3v> *Sent:* Thursday, March 30, 2006 12:57 AM> *To:* 
full-disclosure@lists.grok.org.uk>     *Subject:* Re: [Full-disclosure] Noise>> I finished school 11 years ago, infact I left on my own accordance> (when I was 14) because they were going to chuck me out of school
> anyway. I soon got involved in stealing cars, brekaing into houses,> and taking goods from shops. All my criminal friends went to jail, I> was the only one left. I started using computers to pass the time
> (when I was 18) when having "no one left to hang about with", and I> used my knowledge of criminality to work out the bad guys at Yahoo.> I then met an employee (who will remain unnamed) to act as an
> informant for Yahoo. I then started to find my own vulnerabilities> to Yahoo, which I reported to them. They started disrespecting me,> I setup my own security group to show them that I could be a match
> against them and continue to compromise their systems. I then went> on a public crusade to tell the public all about their flaws that I> had been keeping secret for years. Their employees who thought were
> befriending me to keep in tap with info I had were told finally to> f*** off just last week, and now there is no connection between> n3td3v and the yahoo security team, infact, I mailed the official
> address and told them I wouldn't be mailign them ever again. And> thats the current situation, upto date. Seiden at yahoo (security> consultant/advisor/hacker) whatever you want to call him is now
> pissed off because he's getting no info feed into his corporate> security team anymore... and the consultants and engineers who had> opened dialog with me are now sitting in paranoia.
>___Full-Disclosure - We believe in it.Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Re: [Full-disclosure] Noise

[Randal T. Rioux]

No. He needs to disconnect from AOL because his sister needs the phone
and his mom just yelled to him in the basement to come up for dinner.

php0t wrote:
> You need a hug.
> 
> -Original Message-
> *From:* [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED] *On Behalf Of *n3td3v
> *Sent:* Thursday, March 30, 2006 12:57 AM
> *To:* full-disclosure@lists.grok.org.uk
>     *Subject:* Re: [Full-disclosure] Noise
> 
> I finished school 11 years ago, infact I left on my own accordance
> (when I was 14) because they were going to chuck me out of school
> anyway. I soon got involved in stealing cars, brekaing into houses,
> and taking goods from shops. All my criminal friends went to jail, I
> was the only one left. I started using computers to pass the time
> (when I was 18) when having "no one left to hang about with", and I
> used my knowledge of criminality to work out the bad guys at Yahoo.
> I then met an employee (who will remain unnamed) to act as an
> informant for Yahoo. I then started to find my own vulnerabilities
> to Yahoo, which I reported to them. They started disrespecting me, 
> I setup my own security group to show them that I could be a match
> against them and continue to compromise their systems. I then went
> on a public crusade to tell the public all about their flaws that I
> had been keeping secret for years. Their employees who thought were
> befriending me to keep in tap with info I had were told finally to
> f*** off just last week, and now there is no connection between
> n3td3v and the yahoo security team, infact, I mailed the official
> address and told them I wouldn't be mailign them ever again. And
> thats the current situation, upto date. Seiden at yahoo (security
> consultant/advisor/hacker) whatever you want to call him is now
> pissed off because he's getting no info feed into his corporate
> security team anymore... and the consultants and engineers who had
> opened dialog with me are now sitting in paranoia.
> 

___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Re: [Full-disclosure] Noise

[n3td3v]

http://mtf.news.yahoo.com/mailto?url=""
 
On 3/30/06, Alexander Hristov <[EMAIL PROTECTED]> wrote:
Hey n3td3v have u ever consired brain surgery like braintransplantation or something like that ? I think it might help ! Try
your favourite search engine yahoo for searching more info about thatok ?On 3/30/06, n3td3v <[EMAIL PROTECTED]> wrote:>> Lets hear your story then, I bet thats a lot more interesting, right? Lets
> see, you grew up in a balanced family and social background, went to private> school, finished all your exams, went to univeristy, studied computer> science etc and then had the big peice of paper to say you can analyise code
> and find vulnerabilities. Or you become the big router/network guy and can> headoff the biggest DNS or DDoS attack the world can throw at you...lets> hear your story, if you even have the confidence to expose that to the
> public...yet you think you can bash me. People with real knowledge of new> methodology of hacking never came from university graduates, it has come> from bored, unemployed folks, that people like you might describe as losers.
> But to be honest, you guys you discredit, are actually the guys keeping you> in a job. On 3/30/06, Scott T. Cameron <[EMAIL PROTECTED]
> wrote:> > On Wed, Mar 29, 2006 at 11:56:48PM +0100, n3td3v wrote:> > > I finished school 11 years ago, infact I left on my own accordance (when> I> > > was 14) because they were going to chuck me out of school anyway. I soon
> got> > > involved in stealing cars, brekaing into houses, and taking goods from> > > shops. All my criminal friends went to jail, I was the only one left. I> > > started using computers to pass the time (when I was 18) when having "no
> one> > > left to hang about with", and I used my knowledge of criminality to work> out> >> > > >> > Highly uninteresting.> >
>>> ___> Full-Disclosure - We believe in it.> Charter:> http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/>>--Best Regards,Aleksander Hristov < root at securitydot.net
 > < http://securitydot.net >
___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Re: [Full-disclosure] Noise

[Alexander Hristov]

Hey n3td3v have u ever consired brain surgery like brain
transplantation or something like that ? I think it might help ! Try
your favourite search engine yahoo for searching more info about that
ok ?

On 3/30/06, n3td3v <[EMAIL PROTECTED]> wrote:
>
> Lets hear your story then, I bet thats a lot more interesting, right? Lets
> see, you grew up in a balanced family and social background, went to private
> school, finished all your exams, went to univeristy, studied computer
> science etc and then had the big peice of paper to say you can analyise code
> and find vulnerabilities. Or you become the big router/network guy and can
> headoff the biggest DNS or DDoS attack the world can throw at you...lets
> hear your story, if you even have the confidence to expose that to the
> public...yet you think you can bash me. People with real knowledge of new
> methodology of hacking never came from university graduates, it has come
> from bored, unemployed folks, that people like you might describe as losers.
> But to be honest, you guys you discredit, are actually the guys keeping you
> in a job.
>
>
>
> On 3/30/06, Scott T. Cameron <[EMAIL PROTECTED]> wrote:
> > On Wed, Mar 29, 2006 at 11:56:48PM +0100, n3td3v wrote:
> > > I finished school 11 years ago, infact I left on my own accordance (when
> I
> > > was 14) because they were going to chuck me out of school anyway. I soon
> got
> > > involved in stealing cars, brekaing into houses, and taking goods from
> > > shops. All my criminal friends went to jail, I was the only one left. I
> > > started using computers to pass the time (when I was 18) when having "no
> one
> > > left to hang about with", and I used my knowledge of criminality to work
> out
> >
> > 
> >
> > Highly uninteresting.
> >
>
>
> ___
> Full-Disclosure - We believe in it.
> Charter:
> http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/
>
>


--
Best Regards,
Aleksander Hristov < root at securitydot.net > < http://securitydot.net >

___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Re: [Full-disclosure] Noise

[n3td3v]

Lets hear your story then, I bet thats a lot more interesting, right? Lets see, you grew up in a balanced family and social background, went to private school, finished all your exams, went to univeristy, studied computer science etc and then had the big peice of paper to say you can analyise code and find vulnerabilities. Or you become the big router/network guy and can headoff the biggest DNS or DDoS attack the world can throw at you...lets hear your story, if you even have the confidence to expose that to the public...yet you think you can bash me. People with real knowledge of new methodology of hacking never came from university graduates, it has come from bored, unemployed folks, that people like you might describe as losers. But to be honest, you guys you discredit, are actually the guys keeping you in a job.

 
On 3/30/06, Scott T. Cameron <[EMAIL PROTECTED]> wrote:
On Wed, Mar 29, 2006 at 11:56:48PM +0100, n3td3v wrote:> I finished school 11 years ago, infact I left on my own accordance (when I
> was 14) because they were going to chuck me out of school anyway. I soon got> involved in stealing cars, brekaing into houses, and taking goods from> shops. All my criminal friends went to jail, I was the only one left. I
> started using computers to pass the time (when I was 18) when having "no one> left to hang about with", and I used my knowledge of criminality to work outHighly uninteresting.

___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Re: [Full-disclosure] Noise

[Scott T. Cameron]

On Wed, Mar 29, 2006 at 11:56:48PM +0100, n3td3v wrote:
> I finished school 11 years ago, infact I left on my own accordance (when I
> was 14) because they were going to chuck me out of school anyway. I soon got
> involved in stealing cars, brekaing into houses, and taking goods from
> shops. All my criminal friends went to jail, I was the only one left. I
> started using computers to pass the time (when I was 18) when having "no one
> left to hang about with", and I used my knowledge of criminality to work out



Highly uninteresting.

___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

RE: [Full-disclosure] Noise

[php0t]

Title: Message



You 
need a hug.

  
  -Original Message-From: 
  [EMAIL PROTECTED] 
  [mailto:[EMAIL PROTECTED] On Behalf Of 
  n3td3vSent: Thursday, March 30, 2006 12:57 AMTo: 
  full-disclosure@lists.grok.org.ukSubject: Re: [Full-disclosure] 
  Noise
  I finished school 11 years ago, infact I left on my own accordance (when 
  I was 14) because they were going to chuck me out of school anyway. I 
  soon got involved in stealing cars, brekaing into houses, and taking goods 
  from shops. All my criminal friends went to jail, I was the only one left. I 
  started using computers to pass the time (when I was 18) when having "no one 
  left to hang about with", and I used my knowledge of criminality to work out 
  the bad guys at Yahoo. I then met an employee (who will remain unnamed) to act 
  as an informant for Yahoo. I then started to find my own vulnerabilities to 
  Yahoo, which I reported to them. They started disrespecting me,  I setup 
  my own security group to show them that I could be a match against them and 
  continue to compromise their systems. I then went on a public crusade to tell 
  the public all about their flaws that I had been keeping secret for years. 
  Their employees who thought were befriending me to keep in tap with info I had 
  were told finally to f*** off just last week, and now there is no connection 
  between n3td3v and the yahoo security team, infact, I mailed the official 
  address and told them I wouldn't be mailign them ever again. And thats the 
  current situation, upto date. Seiden at yahoo (security 
  consultant/advisor/hacker) whatever you want to call him is now pissed off 
  because he's getting no info feed into his corporate security team anymore... 
  and the consultants and engineers who had opened dialog with me are now 
  sitting in paranoia.  
  On 3/29/06, xyberpix <[EMAIL PROTECTED]> 
  wrote: 
  -BEGIN 
PGP SIGNED MESSAGE-Hash: SHA1Yeah, I do actually, but due to 
the nature of the company that I work for, I'm not actually able to 
disclose any of that information.I'm also legally not allowed to 
disclose any vulnerabilitiespublicly, as per my contract of 
employment.Most the people on this list and a few others are already 
aware of those factors, but I guess I couldn't expect someone of your 
l33tnessto comprehend that.Maybe one day when you get a real job, 
and finish school, and ifyou're lucky enough, your prospective employer 
will have no idea who n3td3v is. You may even understand that 
certainfactors change when you get a real job, I just hope that for 
yoursake one day you realize the damage that you are doing to your 
namein the industry.xyberpix Blog: http://blogs.securiteam.comOn 
29 Mar 2006, at 23:18, n3td3v wrote:> Well actually breaking into 
systems and showing the result to> Google Yahoo etc sure is a bigger 
buzz than blogging about "current > issues" within the media that you 
currently blog about. Wheres your> hacker stories of breaking into 
systems, wheres your unique/> original posts that haven't been seen 
before in public? I> throughout the the years have been none stop 
telling everyone of my > war stories of whats been happening behind 
the scenes at the Yahoo> security community. I mean, which scene do 
you belong to, apart> from some guy who reads FD and then blogs about 
whatever is on the > list. Don't you have your own stuff thats 
original/unique?>> On 3/29/06, xyberpix <[EMAIL PROTECTED]> wrote: 
-BEGIN PGP> SIGNED MESSAGE- > Hash: 
SHA1>> 
Bwahahahahahahahahahahahahahaahahahahaha.>> To live in your 
world must be so much fun.>> xyberpix>> Blog: http://blogs.securiteam.com>>>> 
On 29 Mar 2006, at 22:20, n3td3v wrote:>> > And of course, 
you want to advertise that securiteam.com let you > > setup 
a blog on their domain because they felt sorry for you. I> > 
believe theres a e-mail link on the securiteam.com site for anyone> > 
to ask for a blog, its nothing special. How many corporate systems > 
> and networks have you broken into, just as I thought...none.> 
>> > On 3/29/06, xyberpix <[EMAIL PROTECTED]> wrote: 
-BEGIN PGP> > SIGNED MESSAGE- > > Hash: 
SHA1> >> > Seriously, this list was better with a 
certain someone not on it,> can> > we please go back to 
that way of life again?> >> > xyberpix > 
>> > Blog: http://blogs.securiteam.com> 
>> >> >> > -BEGIN PGP 
SIGNATURE-> > Version: GnuPG v1.4.1 (Darwin) > 
>> > 
iD8DBQFEKvaQ2VKEoIQBZwkRAtzKAKC1Nm61nKmI+kvMO8xdWGfS3stTewCgknu/> 
   

Re: [Full-disclosure] Noise

[n3td3v]

I finished school 11 years ago, infact I left on my own accordance (when I was 14) because they were going to chuck me out of school anyway. I soon got involved in stealing cars, brekaing into houses, and taking goods from shops. All my criminal friends went to jail, I was the only one left. I started using computers to pass the time (when I was 18) when having "no one left to hang about with", and I used my knowledge of criminality to work out the bad guys at Yahoo. I then met an employee (who will remain unnamed) to act as an informant for Yahoo. I then started to find my own vulnerabilities to Yahoo, which I reported to them. They started disrespecting me,  I setup my own security group to show them that I could be a match against them and continue to compromise their systems. I then went on a public crusade to tell the public all about their flaws that I had been keeping secret for years. Their employees who thought were befriending me to keep in tap with info I had were told finally to f*** off just last week, and now there is no connection between n3td3v and the yahoo security team, infact, I mailed the official address and told them I wouldn't be mailign them ever again. And thats the current situation, upto date. Seiden at yahoo (security consultant/advisor/hacker) whatever you want to call him is now pissed off because he's getting no info feed into his corporate security team anymore... and the consultants and engineers who had opened dialog with me are now sitting in paranoia.
 
On 3/29/06, xyberpix <[EMAIL PROTECTED]> wrote:
-BEGIN PGP SIGNED MESSAGE-Hash: SHA1Yeah, I do actually, but due to the nature of the company that I work
for, I'm not actually able to disclose any of that information.I'm also legally not allowed to disclose any vulnerabilitiespublicly, as per my contract of employment.Most the people on this list and a few others are already aware of
those factors, but I guess I couldn't expect someone of your l33tnessto comprehend that.Maybe one day when you get a real job, and finish school, and ifyou're lucky enough, your prospective employer will have no idea who
n3td3v is. You may even understand that certainfactors change when you get a real job, I just hope that for yoursake one day you realize the damage that you are doing to your namein the industry.xyberpix
Blog: http://blogs.securiteam.comOn 29 Mar 2006, at 23:18, n3td3v wrote:> Well actually breaking into systems and showing the result to> Google Yahoo etc sure is a bigger buzz than blogging about "current
> issues" within the media that you currently blog about. Wheres your> hacker stories of breaking into systems, wheres your unique/> original posts that haven't been seen before in public? I> throughout the the years have been none stop telling everyone of my
> war stories of whats been happening behind the scenes at the Yahoo> security community. I mean, which scene do you belong to, apart> from some guy who reads FD and then blogs about whatever is on the
> list. Don't you have your own stuff thats original/unique?>> On 3/29/06, xyberpix <[EMAIL PROTECTED]> wrote: -BEGIN PGP> SIGNED MESSAGE-
> Hash: SHA1>> Bwahahahahahahahahahahahahahaahahahahaha.>> To live in your world must be so much fun.>> xyberpix>> Blog: 
http://blogs.securiteam.com On 29 Mar 2006, at 22:20, n3td3v wrote:>> > And of course, you want to advertise that securiteam.com let you
> > setup a blog on their domain because they felt sorry for you. I> > believe theres a e-mail link on the securiteam.com site for anyone> > to ask for a blog, its nothing special. How many corporate systems
> > and networks have you broken into, just as I thought...none.> >> > On 3/29/06, xyberpix <[EMAIL PROTECTED]> wrote: -BEGIN PGP> > SIGNED MESSAGE-
> > Hash: SHA1> >> > Seriously, this list was better with a certain someone not on it,> can> > we please go back to that way of life again?> >> > xyberpix
> >> > Blog: http://blogs.securiteam.com> >> >> >> > -BEGIN PGP SIGNATURE-> > Version: GnuPG v1.4.1 (Darwin)
> >> > iD8DBQFEKvaQ2VKEoIQBZwkRAtzKAKC1Nm61nKmI+kvMO8xdWGfS3stTewCgknu/> > lmv5iUrwWtmo9VmqUH9VaT4=> > =ohry> > -END PGP SIGNATURE-> >> > ___
> > Full-Disclosure - We believe in it.> > Charter: http://lists.grok.org.uk/full-disclosure-charter.html> > Hosted and sponsored by Secunia - 
http://secunia.com/> >> > ___> > Full-Disclosure - We believe in it.> > Charter: 
http://lists.grok.org.uk/full-disclosure-charter.html> > Hosted and sponsored by Secunia - http://secunia.com/>> -BEGIN PGP SIGNATURE-> Version: GnuPG 
v1.4.1 (Darwin)>> iD8DBQFEKwLO2VKEoIQBZwkRAhOBAJoCGou8RI/hWUqNpbcsSVZiHPhHaQCeKvI+> VQpWU9/mpZoC1LsiZl+xv/k=> =hFF7> -END PGP SIGNATURE->> ___
> Full-Disclosure - We believe in it.> Charter: http://lists.grok.org.uk/full-disclosure-charter.html> Hosted and sponsored by Secu

Re: [Full-disclosure] Noise

[n3td3v]

On 3/29/06, [EMAIL PROTECTED] <[EMAIL PROTECTED]> wrote:
But as a Big-Phallused Expert that hangs with all these Important D00dz fromYahoo and Microsoft, you probably haven't broken into all that many computersystems yourself.
 
What are you suggesting? Employees have given mad infos? Thats a big statement, even for you to make... and i'm not stupid enough to confirm or deny in public.Remember - there's a severely limited number of ex-blackhats that have gone
straight and are taken seriously by the people you claim to hang with.  Usually,those felony convictions really spork up your employment chances.  Fortunately,all those ones from your juvie record will hopefully evaporate

 
You mean like Seiden who broke into banks and told everyone about it, and is now one of the biggest security experts in the industry. He sent me an e-mail telling me a week or so back telling me to take you seriously, i'm beginning to wonder why.
Also fortunately for the security scene, some of us still rate people on thebasis of demonstrated clue, not on the size of their "I hacked into NNN poorlyconfigured webservers" phallus enhancer.

 
Yeah, thats all its been poor server setups and nothing else. 
___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Re: [Full-disclosure] Noise

[xyberpix]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

Yeah, I do actually, but due to the nature of the company that I work  
for, I'm not actually able to disclose any of that information.
I'm also legally not allowed to disclose any vulnerabilities  
publicly, as per my contract of employment.
Most the people on this list and a few others are already aware of  
those factors, but I guess I couldn't expect someone of your l33tness  
to comprehend that.
Maybe one day when you get a real job, and finish school, and if  
you're lucky enough, your prospective employer will have no idea who  
n3td3v is. You may even understand that certain
factors change when you get a real job, I just hope that for your  
sake one day you realize the damage that you are doing to your name  
in the industry.


xyberpix

Blog: http://blogs.securiteam.com



On 29 Mar 2006, at 23:18, n3td3v wrote:

Well actually breaking into systems and showing the result to  
Google Yahoo etc sure is a bigger buzz than blogging about "current  
issues" within the media that you currently blog about. Wheres your  
hacker stories of breaking into systems, wheres your unique/ 
original posts that haven't been seen before in public? I  
throughout the the years have been none stop telling everyone of my  
war stories of whats been happening behind the scenes at the Yahoo  
security community. I mean, which scene do you belong to, apart  
from some guy who reads FD and then blogs about whatever is on the  
list. Don't you have your own stuff thats original/unique?


On 3/29/06, xyberpix <[EMAIL PROTECTED]> wrote: -BEGIN PGP  
SIGNED MESSAGE-

Hash: SHA1

Bwahahahahahahahahahahahahahaahahahahaha.

To live in your world must be so much fun.

xyberpix

Blog: http://blogs.securiteam.com



On 29 Mar 2006, at 22:20, n3td3v wrote:

> And of course, you want to advertise that securiteam.com let you
> setup a blog on their domain because they felt sorry for you. I
> believe theres a e-mail link on the securiteam.com site for anyone
> to ask for a blog, its nothing special. How many corporate systems
> and networks have you broken into, just as I thought...none.
>
> On 3/29/06, xyberpix <[EMAIL PROTECTED]> wrote: -BEGIN PGP
> SIGNED MESSAGE-
> Hash: SHA1
>
> Seriously, this list was better with a certain someone not on it,  
can

> we please go back to that way of life again?
>
> xyberpix
>
> Blog: http://blogs.securiteam.com
>
>
>
> -BEGIN PGP SIGNATURE-
> Version: GnuPG v1.4.1 (Darwin)
>
> iD8DBQFEKvaQ2VKEoIQBZwkRAtzKAKC1Nm61nKmI+kvMO8xdWGfS3stTewCgknu/
> lmv5iUrwWtmo9VmqUH9VaT4=
> =ohry
> -END PGP SIGNATURE-
>
> ___
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/
>
> ___
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/

-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.1 (Darwin)

iD8DBQFEKwLO2VKEoIQBZwkRAhOBAJoCGou8RI/hWUqNpbcsSVZiHPhHaQCeKvI+
VQpWU9/mpZoC1LsiZl+xv/k=
=hFF7
-END PGP SIGNATURE-

___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/


-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.1 (Darwin)

iD8DBQFEKwnB2VKEoIQBZwkRAn4KAJ9c5kzK9moPBOow88A2LKGV26huigCgy6vc
4EoTjG44MUYJHjcGmodyb/U=
=ly16
-END PGP SIGNATURE-

___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Re: [Full-disclosure] Noise

[n3td3v]

Well actually breaking into systems and showing the result to Google Yahoo etc sure is a bigger buzz than blogging about "current issues" within the media that you currently blog about. Wheres your hacker stories of breaking into systems, wheres your unique/original posts that haven't been seen before in public? I throughout the the years have been none stop telling everyone of my war stories of whats been happening behind the scenes at the Yahoo security community. I mean, which scene do you belong to, apart from some guy who reads FD and then blogs about whatever is on the list. Don't you have your own stuff thats original/unique?

On 3/29/06, xyberpix <[EMAIL PROTECTED]> wrote:
-BEGIN PGP SIGNED MESSAGE-Hash: SHA1Bwahahahahahahahahahahahahahaahahahahaha.To live in your world must be so much fun.
xyberpixBlog: http://blogs.securiteam.comOn 29 Mar 2006, at 22:20, n3td3v wrote:> And of course, you want to advertise that 
securiteam.com let you> setup a blog on their domain because they felt sorry for you. I> believe theres a e-mail link on the securiteam.com site for anyone> to ask for a blog, its nothing special. How many corporate systems
> and networks have you broken into, just as I thought...none.>> On 3/29/06, xyberpix <[EMAIL PROTECTED]> wrote: -BEGIN PGP> SIGNED MESSAGE-
> Hash: SHA1>> Seriously, this list was better with a certain someone not on it, can> we please go back to that way of life again?>> xyberpix>> Blog: 
http://blogs.securiteam.com -BEGIN PGP SIGNATURE-> Version: GnuPG v1.4.1 (Darwin)>> iD8DBQFEKvaQ2VKEoIQBZwkRAtzKAKC1Nm61nKmI+kvMO8xdWGfS3stTewCgknu/> lmv5iUrwWtmo9VmqUH9VaT4=
> =ohry> -END PGP SIGNATURE->> ___> Full-Disclosure - We believe in it.> Charter: 
http://lists.grok.org.uk/full-disclosure-charter.html> Hosted and sponsored by Secunia - http://secunia.com/>> ___
> Full-Disclosure - We believe in it.> Charter: http://lists.grok.org.uk/full-disclosure-charter.html> Hosted and sponsored by Secunia - 
http://secunia.com/-BEGIN PGP SIGNATURE-Version: GnuPG v1.4.1 (Darwin)iD8DBQFEKwLO2VKEoIQBZwkRAhOBAJoCGou8RI/hWUqNpbcsSVZiHPhHaQCeKvI+VQpWU9/mpZoC1LsiZl+xv/k=
=hFF7-END PGP SIGNATURE-
___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Re: [Full-disclosure] Noise

[Valdis . Kletnieks]

On Wed, 29 Mar 2006 22:20:22 +0100, n3td3v said:
> nothing special. How many corporate systems and networks have you broken
> into, just as I thought...none.

But as a Big-Phallused Expert that hangs with all these Important D00dz from
Yahoo and Microsoft, you probably haven't broken into all that many computer
systems yourself.

Remember - there's a severely limited number of ex-blackhats that have gone
straight and are taken seriously by the people you claim to hang with.  Usually,
those felony convictions really spork up your employment chances.  Fortunately,
all those ones from your juvie record will hopefully evaporate

Also fortunately for the security scene, some of us still rate people on the
basis of demonstrated clue, not on the size of their "I hacked into NNN poorly
configured webservers" phallus enhancer.



pgpyWvk8uxYXe.pgp
Description: PGP signature
___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Re: [Full-disclosure] Noise

[xyberpix]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

Bwahahahahahahahahahahahahahaahahahahaha.

To live in your world must be so much fun.

xyberpix

Blog: http://blogs.securiteam.com



On 29 Mar 2006, at 22:20, n3td3v wrote:

And of course, you want to advertise that securiteam.com let you  
setup a blog on their domain because they felt sorry for you. I  
believe theres a e-mail link on the securiteam.com site for anyone  
to ask for a blog, its nothing special. How many corporate systems  
and networks have you broken into, just as I thought...none.


On 3/29/06, xyberpix <[EMAIL PROTECTED]> wrote: -BEGIN PGP  
SIGNED MESSAGE-

Hash: SHA1

Seriously, this list was better with a certain someone not on it, can
we please go back to that way of life again?

xyberpix

Blog: http://blogs.securiteam.com



-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.1 (Darwin)

iD8DBQFEKvaQ2VKEoIQBZwkRAtzKAKC1Nm61nKmI+kvMO8xdWGfS3stTewCgknu/
lmv5iUrwWtmo9VmqUH9VaT4=
=ohry
-END PGP SIGNATURE-

___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/


-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.1 (Darwin)

iD8DBQFEKwLO2VKEoIQBZwkRAhOBAJoCGou8RI/hWUqNpbcsSVZiHPhHaQCeKvI+
VQpWU9/mpZoC1LsiZl+xv/k=
=hFF7
-END PGP SIGNATURE-

___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Re: [Full-disclosure] Noise

[n3td3v]

And of course, you want to advertise that securiteam.com let you setup a blog on their domain because they felt sorry for you. I believe theres a e-mail link on the 
securiteam.com site for anyone to ask for a blog, its nothing special. How many corporate systems and networks have you broken into, just as I thought...none.
On 3/29/06, xyberpix <[EMAIL PROTECTED]> wrote:
-BEGIN PGP SIGNED MESSAGE-Hash: SHA1Seriously, this list was better with a certain someone not on it, can
we please go back to that way of life again?xyberpixBlog: http://blogs.securiteam.com-BEGIN PGP SIGNATURE-Version: GnuPG v1.4.1 (Darwin)
iD8DBQFEKvaQ2VKEoIQBZwkRAtzKAKC1Nm61nKmI+kvMO8xdWGfS3stTewCgknu/lmv5iUrwWtmo9VmqUH9VaT4==ohry-END PGP SIGNATURE-___Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.htmlHosted and sponsored by Secunia - http://secunia.com/

___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

[Full-disclosure] Noise

[xyberpix]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

Seriously, this list was better with a certain someone not on it, can  
we please go back to that way of life again?


xyberpix

Blog: http://blogs.securiteam.com



-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.1 (Darwin)

iD8DBQFEKvaQ2VKEoIQBZwkRAtzKAKC1Nm61nKmI+kvMO8xdWGfS3stTewCgknu/
lmv5iUrwWtmo9VmqUH9VaT4=
=ohry
-END PGP SIGNATURE-

___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Re: [Full-disclosure] Noise on the list

[n3td3v]

I am unsubscribing from the list now,
 
I know when i'm not wanted :-)
 
ENJOY 
On 3/21/06, Jason <[EMAIL PROTECTED]> wrote:
netdev,That you inferred from my mail that I called you and idiot says a lot.Those are not my words and I did not call you an idiot. I did call out
that there is a netdev in every crowd with netdev == undesirable in thiscase. I also opined that FD is a great training ground for learning howto deal with idiots, this does not necessarily make you one. I
personally think you are in need of attention and/or have an undisclosedagenda.All,I think that it is foolish to expect anything else from a segment of thepopulation subscribed to the list. If the signal to noise ratio is too
high there is the excellent aggregated list without the noise run bySeifried and it can be found over here =>https://lists.seifried.org/mailman/listinfo/security
Fortunately most people have learned how to filter mail involving netdevso the noise ratio for them is pretty low these days. I don't have tofeel bad for adding to it. At least I'm adding some alternative forum in
my post instead of complaining.n3td3v wrote:> The only people driving off quality discussion and people are the folks> complaining that posters don't meet their standard of intellect and> disclosure policy and presentation of vulnerabilities.
>> But keep calling netdev an idiot, you'll go far in your career.>>> On 3/21/06, *Jason* <[EMAIL PROTECTED] 
[EMAIL PROTECTED]>>> wrote:>> Frederic,>> Your reaction is the intent of the spam and porn and trolling. It is in> an attempt to drive off quality discussion and people. If you cannot
> keep up with it we all understand.>> I personally consider this list great training for handling the idiots> that exist in every day life. There is a netdev in every crowd.>

___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Re: [Full-disclosure] Noise on the list

[Jason]

netdev,

That you inferred from my mail that I called you and idiot says a lot.
Those are not my words and I did not call you an idiot. I did call out
that there is a netdev in every crowd with netdev == undesirable in this
case. I also opined that FD is a great training ground for learning how
to deal with idiots, this does not necessarily make you one. I
personally think you are in need of attention and/or have an undisclosed
agenda.

All,

I think that it is foolish to expect anything else from a segment of the
population subscribed to the list. If the signal to noise ratio is too
high there is the excellent aggregated list without the noise run by
Seifried and it can be found over here =>
https://lists.seifried.org/mailman/listinfo/security

Fortunately most people have learned how to filter mail involving netdev
so the noise ratio for them is pretty low these days. I don't have to
feel bad for adding to it. At least I'm adding some alternative forum in
my post instead of complaining.


n3td3v wrote:
> The only people driving off quality discussion and people are the folks
> complaining that posters don't meet their standard of intellect and
> disclosure policy and presentation of vulnerabilities.
>  
> But keep calling netdev an idiot, you'll go far in your career.
>  
>  
> On 3/21/06, *Jason* <[EMAIL PROTECTED] >
> wrote:
> 
> Frederic,
> 
> Your reaction is the intent of the spam and porn and trolling. It is in
> an attempt to drive off quality discussion and people. If you cannot
> keep up with it we all understand.
> 
> I personally consider this list great training for handling the idiots
> that exist in every day life. There is a netdev in every crowd.
> 

___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Re: [Full-disclosure] Noise on the list

[Valdis . Kletnieks]

On Tue, 21 Mar 2006 19:12:56 GMT, n3td3v said:
> But keep calling netdev an idiot, you'll go far in your career.

It's sad when somebody gets 2 out of 6 letters wrong in their own name.


pgp3EGoysF7r1.pgp
Description: PGP signature
___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Re: FW: [Full-disclosure] Noise on the list

[Alexander Hristov]

Its hard to be guy ah n3tshit ?

Bob Hacker wrote:

> i need help with resume for monster if gobbles out there plz send
> resume in sparc 64 asm !!!
> !Z
> n3tdev is my her0 with a zer0 !! YAY !! YAY ! LOOK IM ON FD AND YOUR
> READING THIS YAY !
> YAY ! YAY ! YAY YAY YAY YAY YAY YAY Leave the list alone you predator
> you !! YAY YAY
> this is alex's list he will morderate you with tcp wrappers YAY 
> he will filter his incoming subscriotion lists of 12 to 11 yay !
> n3td3v is my her0 YAY ! !! !! !Z !Z
> !Z !
> !Z
> !Z
>
>  
> On 3/21/06, *Alexander Hristov* <[EMAIL PROTECTED]
> > wrote:
>
> NETSHITDEV OR WHATEVER JUST SHUT THE FUCK UP URE A STUPID ASSHOLE SHUT
> THE FUCK UP AND LEAVE THE LIST ALONE
>
> n3td3v wrote:
>
> > And the "experts" come on FD insulting the people who post info, and
> > then expect us to post more for you to learn about? Why don't
> you just
> > get back to your ac or maybe people will stop posting to FD.
> >
> > If you bite the hand that feeds you, you know what will happen.
> >
> >
> > On 3/21/06, *Michael Tewner* <[EMAIL PROTECTED]
> 
> > mailto:[EMAIL PROTECTED]>>> wrote:
> >
> > Ummm... This list is as much learning of vulnerabilities as
> posting
> > them. This is DISCLOSURE.
> >
> > n3td3v wrote:
> > > You've never released any vulnerabilities for Google,
> Yahoo, or any
> > > other vendor, yet you think you have more right to be here
> than the
> > > people you class as the "idiots".
> > >
> > > n3td3v
> > >
> > > On 3/21/06, *Edward Pearson* < [EMAIL PROTECTED]
> 
> >  >
> > >  
> >   > >
> > > My friend,
> > > I posted an e-mail about this kind of thing a few months
> > back. I was
> > > saddened to see no effect. I have something like 600
> unread
> > e-mail
> > > in my
> > > FD box, I'd say around 200 of them MAY be worth reading.
> > >
> > > I used to love this list, I subscribe to Bugtraq now.
> Nuff said.
> > >
> > > Ed
> > >
> > >
> > >
> >
> 
>
> > >
> > > ___
> > > Full-Disclosure - We believe in it.
> > > Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> > > Hosted and sponsored by Secunia - http://secunia.com/
> >
> >
> >
>
> >
> >___
> >Full-Disclosure - We believe in it.
> >Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> 
> >Hosted and sponsored by Secunia - http://secunia.com/
> >
>
> ___
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/
>
>

___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Re: FW: [Full-disclosure] Noise on the list

[Bob Hacker]

i need help with resume for monster if gobbles out there plz send resume in sparc 64 asm Z
n3tdev is my her0 with a zer0 !! YAY !! YAY ! LOOK IM ON FD AND YOUR READING THIS YAY !
YAY ! YAY ! YAY YAY YAY YAY YAY YAY Leave the list alone you predator you !! YAY YAY 
this is alex's list he will morderate you with tcp wrappers YAY  he will filter his incoming subscriotion lists of 12 to 11 yay ! n3td3v is my her0 YAY ! !! !! !Z !Z!Z !!Z!Z 
On 3/21/06, Alexander Hristov <[EMAIL PROTECTED]> wrote:
NETSHITDEV OR WHATEVER JUST SHUT THE FUCK UP URE A STUPID ASSHOLE SHUTTHE FUCK UP AND LEAVE THE LIST ALONE
n3td3v wrote:> And the "experts" come on FD insulting the people who post info, and> then expect us to post more for you to learn about? Why don't you just> get back to your ac or maybe people will stop posting to FD.
>> If you bite the hand that feeds you, you know what will happen.>>> On 3/21/06, *Michael Tewner* <[EMAIL PROTECTED]> 
[EMAIL PROTECTED]>> wrote:>> Ummm... This list is as much learning of vulnerabilities as posting> them. This is DISCLOSURE.>> n3td3v wrote:> > You've never released any vulnerabilities for Google, Yahoo, or any
> > other vendor, yet you think you have more right to be here than the> > people you class as the "idiots".> >> > n3td3v> >> > On 3/21/06, *Edward Pearson* <
[EMAIL PROTECTED]> [EMAIL PROTECTED]>> > 
[EMAIL PROTECTED]> [EMAIL PROTECTED]>>> wrote:> >> > My friend,> > I posted an e-mail about this kind of thing a few months
> back. I was> > saddened to see no effect. I have something like 600 unread> e-mail> > in my> > FD box, I'd say around 200 of them MAY be worth reading.
> >> > I used to love this list, I subscribe to Bugtraq now. Nuff said.> >> > Ed> >> >> >> 
> >> > ___> > Full-Disclosure - We believe in it.> > Charter: 
http://lists.grok.org.uk/full-disclosure-charter.html> > Hosted and sponsored by Secunia - http://secunia.com/>>>
>>___>Full-Disclosure - We believe in it.>Charter: http://lists.grok.org.uk/full-disclosure-charter.html
>Hosted and sponsored by Secunia - http://secunia.com/>___Full-Disclosure - We believe in it.Charter: 
http://lists.grok.org.uk/full-disclosure-charter.htmlHosted and sponsored by Secunia - http://secunia.com/
___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Re: [Full-disclosure] Noise on the list

[n3td3v]

The only people driving off quality discussion and people are the folks complaining that posters don't meet their standard of intellect and disclosure policy and presentation of vulnerabilities.

 
But keep calling netdev an idiot, you'll go far in your career.
 
 
On 3/21/06, Jason <[EMAIL PROTECTED]> wrote:
Frederic,Your reaction is the intent of the spam and porn and trolling. It is inan attempt to drive off quality discussion and people. If you cannot
keep up with it we all understand.I personally consider this list great training for handling the idiotsthat exist in every day life. There is a netdev in every crowd.Frederic Pasteleurs wrote:
> Hello everybody,>> I subscribed to this mailing list in 2004 just to keep me informed about> some useful tips and the latest issues/problems in the software packages> i'm using for my everyday computing habits.
>> I had a hard time to keep up with the flow of mails in the beginning,> but it was still manageable.> The n3td3v trolling case several months ago was annoying, but still okay.> Then came the fake advisories spamming, i was a bit pissed by the
> ammount of mails to delete, but didn't care much more than that.> Then the  animal porn drawings spamming: this time, i was seriously> considering leaving the list and i felt sorry for the huge waste of
> valuable bandwidth and disk space.>> Now, i'm afraid to read any mail with the [Full-disclosure] header,> because nowadays you have to dig through childish and> mine-is-bigger-than-yours messages to actually find some interesting and
> valuable information.>> I know that's the price to pay for an unmoderated list, but the noise> level reached a level i could not tolerate and i will leave this list by> the end of the week.
>> It seems that unmoderated list works only for mature people and those> that keep silent when they have nothing to say...>> Come on people, how old are you ??>> ___
> Full-Disclosure - We believe in it.> Charter: http://lists.grok.org.uk/full-disclosure-charter.html> Hosted and sponsored by Secunia - 
http://secunia.com/>___Full-Disclosure - We believe in it.Charter: 
http://lists.grok.org.uk/full-disclosure-charter.htmlHosted and sponsored by Secunia - http://secunia.com/
___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Re: FW: [Full-disclosure] Noise on the list

[Alexander Hristov]

NETSHITDEV OR WHATEVER JUST SHUT THE FUCK UP URE A STUPID ASSHOLE SHUT
THE FUCK UP AND LEAVE THE LIST ALONE

n3td3v wrote:

> And the "experts" come on FD insulting the people who post info, and
> then expect us to post more for you to learn about? Why don't you just
> get back to your ac or maybe people will stop posting to FD.
>  
> If you bite the hand that feeds you, you know what will happen.
>
>  
> On 3/21/06, *Michael Tewner* <[EMAIL PROTECTED]
> > wrote:
>
> Ummm... This list is as much learning of vulnerabilities as posting
> them. This is DISCLOSURE.
>
> n3td3v wrote:
> > You've never released any vulnerabilities for Google, Yahoo, or any
> > other vendor, yet you think you have more right to be here than the
> > people you class as the "idiots".
> >
> > n3td3v
> >
> > On 3/21/06, *Edward Pearson* <[EMAIL PROTECTED]
> 
> >  >> wrote:
> >
> > My friend,
> > I posted an e-mail about this kind of thing a few months
> back. I was
> > saddened to see no effect. I have something like 600 unread
> e-mail
> > in my
> > FD box, I'd say around 200 of them MAY be worth reading.
> >
> > I used to love this list, I subscribe to Bugtraq now. Nuff said.
> >
> > Ed
> >
> >
> >
> 
> >
> > ___
> > Full-Disclosure - We believe in it.
> > Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> > Hosted and sponsored by Secunia - http://secunia.com/
>
>
>
>
>___
>Full-Disclosure - We believe in it.
>Charter: http://lists.grok.org.uk/full-disclosure-charter.html
>Hosted and sponsored by Secunia - http://secunia.com/
>

___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

RE: FW: [Full-disclosure] Noise on the list

[Grant Rietze]

I’m going to try to be VERY clear,
so bear with me.

 





Why don't you just get back to your ac or maybe people will stop
posting to FD.





 

I need to know exactly what it is that we can do that will make you stop posting to FD so I can begin the
initiative.

 

Please be thorough and concise. Clearly
outline steps and procedures for action items as well as a rough time-table if necessary.

 

Thank-you.

 

-Wt






___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Re: [Full-disclosure] Noise on the list

[Jason]

Frederic,

Your reaction is the intent of the spam and porn and trolling. It is in
an attempt to drive off quality discussion and people. If you cannot
keep up with it we all understand.

I personally consider this list great training for handling the idiots
that exist in every day life. There is a netdev in every crowd.

Frederic Pasteleurs wrote:
> Hello everybody,
> 
> I subscribed to this mailing list in 2004 just to keep me informed about
> some useful tips and the latest issues/problems in the software packages
> i'm using for my everyday computing habits.
> 
> I had a hard time to keep up with the flow of mails in the beginning,
> but it was still manageable.
> The n3td3v trolling case several months ago was annoying, but still okay.
> Then came the fake advisories spamming, i was a bit pissed by the
> ammount of mails to delete, but didn't care much more than that.
> Then the  animal porn drawings spamming: this time, i was seriously
> considering leaving the list and i felt sorry for the huge waste of
> valuable bandwidth and disk space.
> 
> Now, i'm afraid to read any mail with the [Full-disclosure] header,
> because nowadays you have to dig through childish and
> mine-is-bigger-than-yours messages to actually find some interesting and
> valuable information.
> 
> I know that's the price to pay for an unmoderated list, but the noise
> level reached a level i could not tolerate and i will leave this list by
> the end of the week.
> 
> It seems that unmoderated list works only for mature people and those
> that keep silent when they have nothing to say...
> 
> Come on people, how old are you ??
> 
> ___
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/
> 

___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Re: FW: [Full-disclosure] Noise on the list

[n3td3v]

And the "experts" come on FD insulting the people who post info, and then expect us to post more for you to learn about? Why don't you just get back to your ac or maybe people will stop posting to FD.
 
If you bite the hand that feeds you, you know what will happen. 
On 3/21/06, Michael Tewner <[EMAIL PROTECTED]> wrote:
Ummm... This list is as much learning of vulnerabilities as postingthem. This is DISCLOSURE.n3td3v wrote:
> You've never released any vulnerabilities for Google, Yahoo, or any> other vendor, yet you think you have more right to be here than the> people you class as the "idiots".>> n3td3v
>> On 3/21/06, *Edward Pearson* <[EMAIL PROTECTED]> [EMAIL PROTECTED]>> wrote:
>> My friend,> I posted an e-mail about this kind of thing a few months back. I was> saddened to see no effect. I have something like 600 unread e-mail> in my> FD box, I'd say around 200 of them MAY be worth reading.
>> I used to love this list, I subscribe to Bugtraq now. Nuff said.>> Ed>>> >> ___
> Full-Disclosure - We believe in it.> Charter: http://lists.grok.org.uk/full-disclosure-charter.html> Hosted and sponsored by Secunia - 
http://secunia.com/
___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Re: FW: [Full-disclosure] Noise on the list

[Michael Tewner]

Ummm... This list is as much learning of vulnerabilities as posting 
them. This is DISCLOSURE.


n3td3v wrote:
You've never released any vulnerabilities for Google, Yahoo, or any 
other vendor, yet you think you have more right to be here than the 
people you class as the "idiots".
 
n3td3v
 
On 3/21/06, *Edward Pearson* <[EMAIL PROTECTED] 
> wrote:


My friend,
I posted an e-mail about this kind of thing a few months back. I was
saddened to see no effect. I have something like 600 unread e-mail
in my
FD box, I'd say around 200 of them MAY be worth reading.

I used to love this list, I subscribe to Bugtraq now. Nuff said.

Ed




___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/


___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Re: FW: [Full-disclosure] Noise on the list

[n3td3v]

You've never released any vulnerabilities for Google, Yahoo, or any other vendor, yet you think you have more right to be here than the people you class as the "idiots".

 
n3td3v
 
On 3/21/06, Edward Pearson <[EMAIL PROTECTED]> wrote:
My friend,I posted an e-mail about this kind of thing a few months back. I wassaddened to see no effect. I have something like 600 unread e-mail in my
FD box, I'd say around 200 of them MAY be worth reading.I used to love this list, I subscribe to Bugtraq now. Nuff said.Ed
___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Re: FW: [Full-disclosure] Noise on the list

[KF (lists)]

Aww. I think I may shed a tear for you all. Don't 
fret... I will be releasing an actual advisory later today.


I am deeply saddened by your sob stories now quit your sniveling and 
post some bugs you chumps!


We could care less about how depressed you are about the list content.
-KF


Edward Pearson wrote:


My friend,
I posted an e-mail about this kind of thing a few months back. I was
saddened to see no effect. I have something like 600 unread e-mail in my
FD box, I'd say around 200 of them MAY be worth reading.

I used to love this list, I subscribe to Bugtraq now. Nuff said.

Ed

-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Frederic
Pasteleurs
Sent: 21 March 2006 16:48
To: full-disclosure@lists.grok.org.uk
Subject: [Full-disclosure] Noise on the list

Hello everybody,

I subscribed to this mailing list in 2004 just to keep me informed about
some useful tips and the latest issues/problems in the software packages
i'm using for my everyday computing habits.

I had a hard time to keep up with the flow of mails in the beginning,
but it was still manageable.
The n3td3v trolling case several months ago was annoying, but still
okay.
Then came the fake advisories spamming, i was a bit pissed by the
ammount of mails to delete, but didn't care much more than that.
Then the  animal porn drawings spamming: this time, i was seriously
considering leaving the list and i felt sorry for the huge waste of
valuable bandwidth and disk space.

Now, i'm afraid to read any mail with the [Full-disclosure] header,
because nowadays you have to dig through childish and
mine-is-bigger-than-yours messages to actually find some interesting and
valuable information.

I know that's the price to pay for an unmoderated list, but the noise
level reached a level i could not tolerate and i will leave this list by
the end of the week.

It seems that unmoderated list works only for mature people and those
that keep silent when they have nothing to say...

Come on people, how old are you ??

___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/



 



___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

FW: [Full-disclosure] Noise on the list

[Edward Pearson]

I shouldn't have to get the fucking spamfilter involved when we're
talking about a mailing list. Seriously, it takes the piss. What you
said about idiots reponding to idiots is a very good point however.

Ed

-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Anders B
Jansson
Sent: 21 March 2006 17:13
To: full-disclosure@lists.grok.org.uk
Subject: Re: [Full-disclosure] Noise on the list

Frederic Pasteleurs wrote:
> Hello everybody,
> 
> I subscribed to this mailing list in 2004 just to keep me informed 
> about some useful tips and the latest issues/problems in the software 
> packages i'm using for my everyday computing habits.
> 
> I had a hard time to keep up with the flow of mails in the beginning, 
> but it was still manageable.
> The n3td3v trolling case several months ago was annoying, but still
okay.
> Then came the fake advisories spamming, i was a bit pissed by the

> Come on people, how old are you ??
43 1/2

And the spamming isn't that bad, 3-4 filter rules is needed but that's
about it.

The problem, if any, isn't the trolling but the moronic replies from
people who should know better than responding to morons.

Hello? If someone writes something stupid/silly/moronic then
killfile/filter and/or ignore.
Don't respond to it, you'll only make it worse.

Or to quote ye olde proverb:
"Never argue with idiots, they'll just drag the discussion down to their
own level and beat you with experience."
 
--
// hdw

___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

FW: [Full-disclosure] Noise on the list

[Edward Pearson]

My friend,
I posted an e-mail about this kind of thing a few months back. I was
saddened to see no effect. I have something like 600 unread e-mail in my
FD box, I'd say around 200 of them MAY be worth reading.

I used to love this list, I subscribe to Bugtraq now. Nuff said.

Ed

-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Frederic
Pasteleurs
Sent: 21 March 2006 16:48
To: full-disclosure@lists.grok.org.uk
Subject: [Full-disclosure] Noise on the list

Hello everybody,

I subscribed to this mailing list in 2004 just to keep me informed about
some useful tips and the latest issues/problems in the software packages
i'm using for my everyday computing habits.

I had a hard time to keep up with the flow of mails in the beginning,
but it was still manageable.
The n3td3v trolling case several months ago was annoying, but still
okay.
Then came the fake advisories spamming, i was a bit pissed by the
ammount of mails to delete, but didn't care much more than that.
Then the  animal porn drawings spamming: this time, i was seriously
considering leaving the list and i felt sorry for the huge waste of
valuable bandwidth and disk space.

Now, i'm afraid to read any mail with the [Full-disclosure] header,
because nowadays you have to dig through childish and
mine-is-bigger-than-yours messages to actually find some interesting and
valuable information.

I know that's the price to pay for an unmoderated list, but the noise
level reached a level i could not tolerate and i will leave this list by
the end of the week.

It seems that unmoderated list works only for mature people and those
that keep silent when they have nothing to say...

Come on people, how old are you ??

___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Re: [Full-disclosure] Noise on the list

[Anders B Jansson]

Frederic Pasteleurs wrote:

Hello everybody,

I subscribed to this mailing list in 2004 just to keep me informed about
some useful tips and the latest issues/problems in the software packages
i'm using for my everyday computing habits.

I had a hard time to keep up with the flow of mails in the beginning,
but it was still manageable.
The n3td3v trolling case several months ago was annoying, but still okay.
Then came the fake advisories spamming, i was a bit pissed by the



Come on people, how old are you ??

43 1/2

And the spamming isn't that bad, 3-4 filter rules is needed but that's about it.

The problem, if any, isn't the trolling but the moronic replies from people who 
should know better than responding to morons.

Hello? If someone writes something stupid/silly/moronic then killfile/filter 
and/or ignore.
Don't respond to it, you'll only make it worse.

Or to quote ye olde proverb:
"Never argue with idiots, they'll just drag the discussion down to their own level 
and beat you with experience."

--
// hdw

___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Re: [Full-disclosure] Noise on the list

[FistFucker]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

Hello Frederic Pasteleurs,

thanks for your question. I'm 16 years old but still old enough to set
email filter rules and ignore a group of people. ;-)


- -Manuel Santamarina Suarez aka 'FistFuXXer'



Frederic Pasteleurs wrote:
> Hello everybody,
> 
> I subscribed to this mailing list in 2004 just to keep me informed about
> some useful tips and the latest issues/problems in the software packages
> i'm using for my everyday computing habits.
> 
> I had a hard time to keep up with the flow of mails in the beginning,
> but it was still manageable.
> The n3td3v trolling case several months ago was annoying, but still okay.
> Then came the fake advisories spamming, i was a bit pissed by the
> ammount of mails to delete, but didn't care much more than that.
> Then the  animal porn drawings spamming: this time, i was seriously
> considering leaving the list and i felt sorry for the huge waste of
> valuable bandwidth and disk space.
> 
> Now, i'm afraid to read any mail with the [Full-disclosure] header,
> because nowadays you have to dig through childish and
> mine-is-bigger-than-yours messages to actually find some interesting and
> valuable information.
> 
> I know that's the price to pay for an unmoderated list, but the noise
> level reached a level i could not tolerate and i will leave this list by
> the end of the week.
> 
> It seems that unmoderated list works only for mature people and those
> that keep silent when they have nothing to say...
> 
> Come on people, how old are you ??
> 
> ___
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/
> 
> 
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.2.2 (MingW32)

iD8DBQFEIDGXPF/cBnCBnL0RAgC4AJ4qTGdsqbFzG1eK/3VOCF6Rm5vLzACfbnbr
3OYqb2SKgHNR8KDytrSkaoc=
=YnpB
-END PGP SIGNATURE-

___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

[Full-disclosure] Noise on the list

[Frederic Pasteleurs]

Hello everybody,

I subscribed to this mailing list in 2004 just to keep me informed about
some useful tips and the latest issues/problems in the software packages
i'm using for my everyday computing habits.

I had a hard time to keep up with the flow of mails in the beginning,
but it was still manageable.
The n3td3v trolling case several months ago was annoying, but still okay.
Then came the fake advisories spamming, i was a bit pissed by the
ammount of mails to delete, but didn't care much more than that.
Then the  animal porn drawings spamming: this time, i was seriously
considering leaving the list and i felt sorry for the huge waste of
valuable bandwidth and disk space.

Now, i'm afraid to read any mail with the [Full-disclosure] header,
because nowadays you have to dig through childish and
mine-is-bigger-than-yours messages to actually find some interesting and
valuable information.

I know that's the price to pay for an unmoderated list, but the noise
level reached a level i could not tolerate and i will leave this list by
the end of the week.

It seems that unmoderated list works only for mature people and those
that keep silent when they have nothing to say...

Come on people, how old are you ??

___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/