Re: [funsec] Rachel from Cardholder Services

[RL Vaughn]

On 4/29/15 3:51 PM, Blanchard, Michael (InfoSec) wrote:
> I've always wanted to write a set of AI type scripts that can talk back to 
> the callers...  I get a *ton* of "800 service" calls... always someone 
> looking for money for some outfit...
>   An A.I. script that would never use the word YES or OK in it... but just 
> keep talking to the person on the phone would be awesome
> 
https://www.youtube.com/results?search_query=lenny+telemarketer

> Michael P. Blanchard
> Principal Security Engineer, CISSP, GCIH, CCSA-NGX, MCSE
> Cyber Security Services
> EMC ² Corporation
> 32 Coslin Drive
> Southboro, MA 01772
> Office: (508)898-7102
> Cell: (508)958-2780
> email:  michael.blanch...@emc.com
> 
> 
> -Original Message-
> From: funsec [mailto:funsec-boun...@linuxbox.org] On Behalf Of Bruce Ediger
> Sent: Wednesday, April 29, 2015 4:30 PM
> To: funsec@linuxbox.org
> Subject: [funsec] Rachel from Cardholder Services
> 
> I get a lot of calls from "Ann" or "Rachel" from "Account Services"
> or "Cardholder Services". Aren't these folks breaking US law by spoofing
> caller ID?
> 
> Does anybody know how these underground businesses are set up?  I'm guessing
> that the actual telephone calls take place from hacked PBXs, and those
> perps hand off to a second "boiler room" outfit, because I can listen
> through all the recorded messages, but I often get hung up after that.
> 
> Third, is there any way to find out who does this, and have them prosecuted
> to the fullest extent of the law?  It's pretty clear that the FTC do-no-call
> registery complaints web page just deletes all input data. Someone must care,
> right?
> 
> Fourth, I'd like to call upone every human to NOT hang up, but rather to
> listen to the recorded scam message, and even try to talk to the human,
> to keep the PBX lines tied up as long as possible. I'm coming to believe
> that every one who can, should waste cold caller's time, run honey pots
> and generally intercept any scam communications possible. Who's with me?
> ___
> Fun and Misc security discussion for OT posts.
> https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
> Note: funsec is a public and open mailing list.
> 
> ___
> Fun and Misc security discussion for OT posts.
> https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
> Note: funsec is a public and open mailing list.
> 

___
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.

Re: [funsec] Virus that 'makes humans more stupid' discovered

[RL Vaughn]

On 11/10/14 1:52 PM, Rob, grandpa of Ryan, Trevor, Devon & Hannah wrote:
> http://www.independent.co.uk/news/science/virus-that-makes-humans-more-stupid-
> discovered-9849920.html
> 
> Should probably check for algae around all machine rooms and user work areas 
> ...
So people who swallow water while swimming in algae-infested water are dumb?
Whodathunk?
___
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.

Re: [funsec] A real Mickey Mouse of a 419...

[RL Vaughn]

You all are goofy.

On 8/17/14, 11:49 AM, David Harley wrote:
> If his name _was_ Mickey Mouse, at least you'd know he was a genuine
> Plutocrat. 
> 
> Sorry.
> 
> David Harley
> Small Blue-Green World 
> ESET Senior Research Fellow
> 
> 
> 
> 
> -Original Message-
> From: funsec [mailto:funsec-boun...@linuxbox.org] On Behalf Of Rob, grandpa
> of Ryan, Trevor, Devon & Hannah
> Sent: 17 August 2014 07:20
> To: funsec@linuxbox.org
> Subject: Re: [funsec] A real Mickey Mouse of a 419...
> 
> From: "Nick FitzGerald" 
> Date sent:Sun, 17 Aug 2014 11:52:54 +1200
> 
>> Honestly, I'm not making this up:
>>
>>REV MIKE DONALD DUCK OF
>>FIRST BANK OF NIGERIA PLC
>>35 Marina P. O. Box 5216,
>>LAGOS- NIGERIA
>>EMAIL: firstbank...@gmail.com
> 
> Honestly, given some of the people I met in Lagos, the name isn't that
> strange ...
> 
> ==  (quote inserted randomly by Pegasus Mailer)
> rsl...@vcn.bc.ca sl...@victoria.tc.ca rsl...@computercrime.org
> You were there, you had the hat, you did the job.  That was a basic rule of
> witchery: It's up to you.
>   - `A Hat Full of Sky', Terry Pratchett
> victoria.tc.ca/techrev/rms.htm http://www.infosecbc.org/links
> http://blogs.securiteam.com/index.php/archives/author/p1/
> http://twitter.com/rslade
> ___
> Fun and Misc security discussion for OT posts.
> https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
> Note: funsec is a public and open mailing list.
> 
> ___
> Fun and Misc security discussion for OT posts.
> https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
> Note: funsec is a public and open mailing list.
> 

___
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.

Re: [funsec] Windows 8 and wifi

[RL Vaughn]

On 1/23/14, 8:01 PM, Paul Ferguson wrote:
> What is this "Windows 8" you speak of?
> 
> - ferg
> 
It is DOS 2.0 with everything you liked about DOS2.0 taken out.  Whoops!
 That was DOS2.1.

In that case, it is Window Millennium with everything you liked about
Windows ME taken out.

> 
> On 1/23/2014 4:50 PM, Rob, grandpa of Ryan, Trevor, Devon & Hannah wrote:
> 
>> Discovered today that, once you turn wifi off on a Windows 8 (or 8.1) 
>> machine, it 
>> is almost impossible to turn it back on.  For example, on a laptop with a 
>> wifi 
>> toggle key (toggling the key off to save power or stop broadcasting on a 
>> plane), 
>> toggling the key back on doesn't necessarily re-enble the wireless network 
>>
>> In fact, initially I couldn't even remember how I eventually did it.  (And 
>> Windows 
>> Help was, as usual, no help.)
>>
>> (And, yes, I know that Win8 has an "airplane mode" setting, but that isn't 
>> immediately accessible all the time.)
>>
>> Finally found that if you go to "Network and Sharing Center," then choose 
>> "Change adapter settings," then the "Wi-fi" will show up, and if you 
>> right/information/context menu-click on the *icon* (not the box), then you 
>> can 
>> get to re-enable wifi.
>>
> 

___
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.

Re: [funsec] Texting via vodka

[RL Vaughn]

On 12/20/13 12:59 PM, Rob, grandpa of Ryan, Trevor, Devon & Hannah wrote:
> In an important breakthrough in communications technology, researchers have 
> managed to transmit data without using wires. light, or radio waves.
> 
> http://www.ecanadanow.com/science/2013/12/20/researchers-successfully-send-
> text-using-vodka/
> 
> http://timesofindia.indiatimes.com/home/science/In-a-first-text-message-using-
> vodka-sent/articleshow/27669583.cms
> 
> (Please note that this research does not appear to advocate texting while 
> drunk.)
> 
> (Given that Canadian researchers were involved, one wonders why they did not 
> use 
> beer, eh?[1])
> 
> 
> [1] - Linguistic research [2] is apparently indicating that youngers 
> Canadians are 
> no longer using "eh," but ending sentences with "right."  Since there is no 
> way 
> anyone can call me young, I can continue to use "eh" , eh.
  There  
Fixed it for you, right, eh?

> 
> [2] - 
> http://www.vancouversun.com/quintessential+Canadianism+dying/9304088/story.ht
> ml
> 
> ==  (quote inserted randomly by Pegasus Mailer)
> rsl...@vcn.bc.ca sl...@victoria.tc.ca rsl...@computercrime.org
> I agree [that if Mitnick paid dues to society he is entitled to a
> fresh start].  And I think the fresh start should be as a used
> car salesman or whatever, not a trusted information security
> consultant   - Donn Parker, 20090414 #121472
> victoria.tc.ca/techrev/rms.htm http://www.infosecbc.org/links
> http://blogs.securiteam.com/index.php/archives/author/p1/
> http://twitter.com/rslade
> ___
> Fun and Misc security discussion for OT posts.
> https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
> Note: funsec is a public and open mailing list.
> 

___
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.

Re: [funsec] The ultimate illegible PowerPoint slide!

[RL Vaughn]

On 6/20/13 5:45 PM, valdis.kletni...@vt.edu wrote:
> On Thu, 20 Jun 2013 11:49:46 -0700, "Rob, grandpa of Ryan, Trevor,
> Devon & Hannah" said:
>> http://www.gartner.com/technology/research/digital-marketing/transit-map.jsp
>
>> 
> Am I the only one bothered by the fact there's a Pink Line that's
> unidentified?
> 
I am color blind.  Are you talking about the pink line labeled
"Commerce" or the pink line labeled "MKTG MGMT"?
___
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.

Re: [funsec] SatckOverflow => www.doioig.gov/

[RL Vaughn]

On 3/2/13 10:24 PM, Jeffrey Walton wrote:
> On Sat, Mar 2, 2013 at 11:12 PM, Les Bell  wrote:
>> On 3/03/2013 2:54 PM, Jeffrey Walton wrote:
>>> Can anyone do a Google search of Stack Overflow and see if they get
>>> back a link to www.doioig.gov/?
>>
>> Worked that way for me, using a right-click Google search from within
>> Thunderbird.
>>
> http://meta.stackoverflow.com/questions/169405/google-indexing-issue-for-keyword-stackoverflow
> ___
> Fun and Misc security discussion for OT posts.
> https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
> Note: funsec is a public and open mailing list.
> 
Symptomatically, a PICNIC problem.
___
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.

Re: [funsec] Black Swans and the Challenge of Mitigating the Unknown

[RL Vaughn]

On 12/24/12 12:44 PM, Paul Ferguson wrote:
> On Mon, Dec 24, 2012 at 9:56 AM, Conrad Constantine  wrote:
> 
>>>
>>> http://securitymanagement.com/article/black-swans-and-challenge-mitigating-unknown-0011332?page=0%2C1
>>
>>
>> [In the interest of putting the 'Fun' back into this 'Sec' thread.]
>>
>> The author of the linked article keeps talking about this dude called Nissan
>> Taleb - is that Nassim's brother? Sounds like he owns a car dealership.
>>
> 
> Yep -- Nassim has two brothers -- Nissan and Toyota. :-)
> 
> - ferg
> 
You certainly answered Datsun.
___
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.

Re: [funsec] REVIEW: "Good Night Old Man", George Campbell

[RL Vaughn]

... --- .-. .-. -.--   -  .- -   ..   -... .-. --- ..- --.  -
-  .   -.. .- -- -.   -  .. -. --.   ..- .--. .-.-.- 
--- .-- . ...- . .-. --..--   .-- . .-. .   -- --- .-. ... .   -.-. ---
-.. .   -. --- -   ... - .. .-.. .-..   .. -.   ..- ... . --..--   ..
-.-. --- ..- .-.. -..   ... - .. .-.. .-..   -... .   .-.. --- ... -
.. -.   .-- . ... -   - . -..- .- ...   .-.. --- --- -.- .. -. --.
..-. --- .-.   -  .   .-- .-. --- -. --.   .- .. .-. .--. --- .-. -
.-.-.-

I agree that the review is a really enjoyable read.

On 12/14/11 10:33 PM, Gadi Evron wrote:
> While I sympathize with the hobbyists on the list who do ham radio and 
> speak Morse code, and I am certain there are probably some odd systems 
> around the world who make regular use of it, I unfortunately agree that 
> as a language it is dead.
> 
> Unlike other dead languages though, with some people here and there who 
> strive to keep dead languages alive - this language has a niche with 
> people who will keep it undead even a thousand years from now. Even if 
> only for tacky entertainment shows and some branches of the military. :)
> 
> Some might compare ham radio hobbyists to Latin or ancient Greek studies 
> in academia - they would be wrong, but only in quantity.
> 
> Anyway - I really enjoyed reading this review. You made it alive for me.
> 
> Gadi.
> 
> 
> On 12/14/11 2:19 AM, Rob, grandpa of Ryan, Trevor, Devon & Hannah wrote:
>> BKGNOM.RVW   2028
>>
>> "Good Night Old Man", George Campbell, 2011, 978-9878319-0-3, C$19.95
>> %A   George Campbell georg...@telus.net http://is.gd/x28QRz
>> %C   PO Box 57083 RPO Eastgate, Sherwood Park, AB Canada T8A 5L7
>> %D   2011
>> %G   978-9878319-0-3
>> %I   Dream Write Publishing dreamwrit...@hotmail.com
>> %O   C$19.95 http://www.dreamwritepublishing.ca  780-445-0991
>> %O http://www.dreamwritepublishing.ca/retail/books/good-night-old-man
>> %O   Audience i+ Tech 2 Writing 3 (see revfaq.htm for explanation)
>> %P   342 p.
>> %T   "Good Night Old Man"
>>
>> On page 114 the author asserts that even learning to use Morse code
>> "bestowed on us instant acceptance into a society whose members
>> regularly performed tasks too difficult for most others to even
>> attempt."  This statement will be instantly recognizable by anyone in
>> any technical field.  This is because in the beginning was the
>> telegraph.  And the telegraph begat teletype (and baudot code) and the
>> telephone.  And telephone company research labs (in large measure)
>> begat computers.  And teletype begat the Internet.  And wireless
>> telegraphy begat radio.  And radio and the telephone and the Internet
>> and computers begat 4G.  (Or, at least, it will begat it once they get
>> it right.)  But it all started with the telegraph.
>>
>> As the author states, any communications textbook will mention the
>> telegraph.  Most will tell you Morse code began on May 24th, 1844.
>> Some might mention that it isn't in use anymore.  A few crypto books
>> might let you know that commercial nomenklators were used not just for
>> confidentiality, but to reduce word counts (and thus costs) when
>> sending telegrams.  (The odd data representation text might relay the
>> trivium that Morse code is not a binary code of dots and dashes, but a
>> trinary code of dots, dashes, and silence.)
>>
>> But they won't tell you anything about what it was like to be a
>> telegrapher, to actually communicate, and help other people
>> communicate with Morse code.  How you got started, what the work was,
>> and what your career might be like.  This book does.
>>
>> I am not going to pretend to be objective with this review.  George
>> Campbell is my wife's (favourite) uncle.  He's always liked telling
>> stories, has a fund of stories to tell, and tells them well.  For
>> example, he was the first person in North America to know about the
>> German surrender in Europe, since he was the (Royal Canadian Naval
>> Volunteer Reserve) telegrapher who received the message from Europe
>> and passed it on.  Of course, the message was in code.  But everyone
>> knew it was coming, and he knew who the message was from, and who it
>> was going to.  You can learn a lot with simple traffic analysis.
>>
>> There are lots of good stories in the book.  There are lots of funny
>> stories in the book.  If you know technology, it is intriguing to see
>> the beginnings of all kinds of things we use today.  Standard
>> protocols, flow control, error correction, and data compression.  Oh,
>> and script kiddies, too.  (Well, I don't know what else you would call
>> people who don't understand what they are working with, but do know
>> that if you follow *this* script, then *that* will happen.)  It is
>> fascinating to see all of this being developed in an informal fashion
>> by people who are just trying to get on with their jobs.
>>
>> The title, "Good Night Old Man," comes from a code the telegraphers
>> themselves used.  "GN" (and a "call sign") was sent

Re: [funsec] REVIEW: "Good Night Old Man", George Campbell

[RL Vaughn]

On 12/13/11 6:19 PM, Rob, grandpa of Ryan, Trevor, Devon & Hannah wrote:
> Some might mention that it isn't in use anymore.
Actually, it is.
___
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.

Re: [funsec] Windows 7 (Pro) password aging security policy

[RL Vaughn]

On 9/2/11 1:47 PM, Rob, grandpa of Ryan, Trevor, Devon & Hannah wrote:
> Microsoft, you've got to be kidding.  If an attacker has enough access to 
> your 
> system in order to start cracking your passwords, then they'll almost 
> certainly 
> succeed within a few days.  Unless you've chosen a really, really good 
> password, in 
> which case it might be some years.  So 30 to 90 days makes very little sense. 
>  
> (And, if you're really serious about the maximum of 90 days, how come the 
> entry 
> box allows up to 999?)
> 
> But then, right down at the bottom, it tells me that "Default: 42."

But, but, but, isn't that The Answer to the Ultimate Question of Life,
the Universe, and Everything?

___
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.

Re: [funsec] Cybercrime Targets Revealed

[RL Vaughn]

On 8/4/11 2:48 PM, Paul Ferguson wrote:
> On Thu, Aug 4, 2011 at 12:17 PM,   wrote:
> 
>> So, how many requests have you guys received that sounded like this:
>>
>>   "Does our antivirus software cover this new Shady Rat virus?"
>>
> 
> Lots. ;-)
> 
> - ferg
> 
I am waiting for Sunny Cat AV to pop up.

___
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.

Re: [funsec] Citibank hacked by URL fuzzing?

[RL Vaughn]

On 6/14/11 5:01 PM, Peter Kosinar wrote:
>> It's called "sarcasm".  No security professional could have *possibly*
>> predicted that using a URL that looks like
>>
>> https://www.big-bank.com/account=134233433
>>
>> could possibly be attacked, and it's *so* hard to design your web
>> interface to prepare for that sort of session hijacking
> 
> What are you talking about?! It has the magic "s" after "http", 
> which means "Secure".
> 
> Peter
> ___
> Fun and Misc security discussion for OT posts.
> https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
> Note: funsec is a public and open mailing list.

Indeed.  That final s makes all the difference

Randys:://

-- 
.::.::.::.
   :: :.
-:.' :
::   :.
   .::   ::
   .:.   ::
   .:.   ::
   . :.
  ;.;;,,.;;;.,,
  ;.
  ;.
  :.
  ::=!:=!!=:!=:==:=!:=!!=:==:==.
  ::.::.:: :::.:: :: ::
  ::.::.:: ::.:.::.::.::.:.::.:
  ::.:: :: :: :.::.:: :: :: :.:
  :.
  :.
  :.

This lock means you can trust me with
  your credit card
___
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.

Re: [funsec] California block on Credit Card purchases

[RL Vaughn]

On 6/2/11 9:09 AM, RandallM wrote:

> seem to be the only one. I cant even update my iphone due to itunes wanting 
> my 
> card security code and master card refusing it!
> 
> -- 
> been great, thanks
> RandyM
> a.k.a System

Whazzat?  I have never had to supply credit card information to iTunes
for a phone update.  But, I just plop down 30 bucks or so for an iTunes
card and use it for iTunes purchases.

Randy



___
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.

Re: [funsec] OK, now *this* is majorly depressing ...

[RL Vaughn]

On 5/24/11 3:31 PM, Jeffrey Walton wrote:
> On Tue, May 24, 2011 at 3:55 PM,   wrote:

> What's really sad: 100 million were affected. If the layers take 30%,
> that leaves about $1.05 (USD) for each account. I think that buys
> about 3 days worth of credit monitoring on the open market. +1 to the
> legislature, which accepts brides
You got a shipping address?  Just asking.

___
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.

Re: [funsec] APT definition

[RL Vaughn]

On 4/11/11 7:20 PM, Paul Ferguson wrote:
> On Mon, Apr 11, 2011 at 5:19 PM, security curmudgeon
>   wrote:
>
>>
>> On Mon, 11 Apr 2011, Paul Ferguson wrote:
>>
>> : On Mon, Apr 11, 2011 at 4:24 PM, Rob, grandpa of Ryan, Trevor, Devon&
>> : Hannah  wrote:
>> :
>> :>  APT relativity is such that for any attacker there exists a victim for 
>> whom the
>> :>  attacker is more advanced and/or persistent
>> :>
>> :>  https://twitter.com/#!/imaguid/status/57522111857700864
>> :
>> : Ha! I like that one.
>> :
>> : Generally I hate the term "APT" because the definition of "Advanced" is
>> : misleading.
>>
>> As is "persistent".. sending a couple PDFs to employees over a one day
>> period got the foot in the door of RSA. That is not "persistent" as far as
>> anything I have seen or done.
>>
>
> Yes, but it *is* persistent as we have seen these same targeted,
> socially-engineered attacks for years now.
>
> - ferg
>

So, repeating the same message over and over again may eventually
build up an undeserved perception of trust?

It'll never work.

Randy
  _---_
/ _---_ \
   | | | |
   |_|-|_|
 / \
|  ( )  |
|  | |  |
|  |_|  |
 \_/

  This lock means you can
trust me with your
  credit card


___
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.

Re: [funsec] Steve Jobs' Official Biography Arrives in Early 2012

[RL Vaughn]

On 4/11/11 1:12 PM, Robert Slade wrote:
> Wasn't that supposed to be the year the world ended?
> ___
> Fun and Misc security discussion for OT posts.
> https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
> Note: funsec is a public and open mailing list.
Yes.  The world officially ends on 12/21/2012†.  Sorry for the 
inconvenience.

†Your actual world ending date may vary depending on conditions and habits.
___
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.

[funsec] Bzzzzzzzt

[RL Vaughn]

http://bit.ly/i8r5Gt+

===
Are U.S. government microwave mind-control tests causing TV presenters' 
brains to melt down?

A bizarre spate of television presenters dissolving into on-air 
gibberish has sparked claims that the U.S. military could be to blame.

In four high-profile cases, the latest involving fast-talking Judge 
Judy, the presenters have started off speaking properly but have then 
descended into undecipherable nonsense - looking confused and unstable.
===

This explains my lectures


___
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.

Re: [funsec] Fwd: [Infowarrior] - In cyberspace, a war over names

[RL Vaughn]

On 3/15/11 7:18 PM, Rob, grandpa of Ryan, Trevor, Devon & Hannah wrote:
> From: David M Chess
> Date sent:Mon, 14 Mar 2011 15:21:29 -0400
>
>> There Is No Cabal! (tm)
>
> Then why on earth have I been paying my annual "Cabal Membership Fee" all
> these years?
>
That explains why you haven't been getting the invitations to our^h^h^h 
the annual Cabal Chili Cook-off and BBQ.

> ==  (quote inserted randomly by Pegasus Mailer)
> rsl...@vcn.bc.ca sl...@victoria.tc.ca rsl...@computercrime.org
> Do the ones who make this madness have no babies to hold?
>- Connie Kaldor, `Mother's Prayer'
> victoria.tc.ca/techrev/rms.htm http://www.infosecbc.org/links
> http://blogs.securiteam.com/index.php/archives/author/p1/
> http://twitter.com/rslade
> ___
> Fun and Misc security discussion for OT posts.
> https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
> Note: funsec is a public and open mailing list.

___
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.

Re: [funsec] Firefox slow?

[RL Vaughn]

Can't we all just
echo -e "GET /content/home.aspx HTTP/1.0\n\n" | nc www.websense.com 80
along?

On 1/13/11 8:34 PM, Hubbard, Dan wrote:
> Lynx is the only option ;-).
>
>
> 
> From: funsec-boun...@linuxbox.org [funsec-boun...@linuxbox.org] On Behalf Of 
> Randal T. Rioux [ra...@procyonlabs.com]
> Sent: Thursday, January 13, 2011 5:13 PM
> To: funsec@linuxbox.org
> Subject: Re: [funsec] Firefox slow?
>
> On 1/13/2011 5:37 PM, Rob, grandpa of Ryan, Trevor, Devon&  Hannah wrote:
>> Date sent:Thu, 13 Jan 2011 17:16:55 -0500
>> From: Larry Seltzer
>>
>>> Chrome is the only way to go.
>>
>> I will have to try Chrome again some time.  Last version I tried was 
>> incredibly
>> slow ...
>
> Because Google can only collect so much behavioral data without your help!
>
> Use Chrome. Feed the beast.
>
> Because I'm talking out my ass here, I'll pose a question. Has there
> been any study done on what data Chrome collects and passes along to Google?
>
> Randy
>
>
> --
> Disclaimer:
>
> By sending an email to ANY of my addresses you are agreeing that:
>
> 1. I am, by definition, "the intended recipient"
> 2. All information in the email is mine to do with as I see fit
> 3. I will take the contents as representing the views of your company
> 4. If your email is an "Out of Office" reply on a mailing list, I will
> social engineer your company
> 5. This notification overrides any disclaimer or statement of
> confidentiality that may be included on your message
>
> Further, you understand that if any of the following conditions are met
> that you are indeed, a bag of douche:
>
> 1. Your message identifies the device you sent it from
> 2. You messed up the thread by top-posting
> ___
> Fun and Misc security discussion for OT posts.
> https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
> Note: funsec is a public and open mailing list.
>
>
>   To report this as spam, please forward to s...@websense.com.  Thank you.
>
>
>   Protected by Websense Hosted Email Security -- www.websense.com
>
> ___
> Fun and Misc security discussion for OT posts.
> https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
> Note: funsec is a public and open mailing list.

___
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.

Re: [funsec] Dear asshole...

[RL Vaughn]

On 12/31/10 12:26 PM, Larry Seltzer wrote:
> …who keeps trying to SQL-inject my blog comments: It’s not fucking
> working and it’s not going to. You’re just generating a bunch of
> annoying error messages.
>
> Happy Fucking New Year. Go get a fucking job.
>

Perhaps, they should read xkcd. com/ 327/ before attempting another 
injection ? ;)


___
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.

Re: [funsec] Evil supervillian reduced to bank robbery ...

[RL Vaughn]

Rob, grandpa of Ryan, Trevor, Devon & Hannah wrote:
> Date sent:Fri, 23 Jul 2010 15:54:18 -0700
> From: robert_mcmil...@idg.com
> 
>> The Daily Mail had the best headline on this: "The Empire Strikes Bank"
>>
>> http://www.dailymail.co.uk/news/worldnews/article-1297087/The-Empire-Strikes-Ban
>> k-Armed-robber-dressed-Darth-Vader-demands-cash-daring-raid.html?ito=feeds-newsx
>> ml
> 
> He'd been *Lord* Vader, once, feared by all who had even heard of him.  As
> feared as that other lord, whose name started with V, but who was so feared 
> that
> people would even use his name when they talked about him.  He'd even played 
> the
> reformed villian, once, killing the evil emperor.  Heck, he'd even been the 
> hero
> a couple of times.  Had a franchise.
> 
> It'd all gone wrong since his lightsaber had run out of power, and the AAA
> batteries on this backwater planet weren't Imperial standard.  And now he was
> reduced to busking on the streets of Victoria, with a fiddle. 
> http://craigmacbride.wordpress.com/2008/07/13/and-on-violin-darth-vader/ 
> http://www.flickr.com/photos/cinderellas_blog/tags/darthvader/
> Or robbing banks.  It was degrading ...
> 

And included a rather embarrassing stint as a performer:
http://www.youtube.com/watch#!v=vIRQf0S3oD0&feature=related


___
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.

Re: [funsec] decode

[RL Vaughn]

defanged:



RandallM wrote:
> a secretary received an email with an "html" attachment with this code
> in it...can some decode for me...no tool here at work
> 
> 
> 
> 
> 
> 
> 
> --
> been great, thanks
> RandyM
> a.k.a System
> 
> ___
> Fun and Misc security discussion for OT posts.
> https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
> Note: funsec is a public and open mailing list.

___
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.

Re: [funsec] PA school district snapped 'thousands' of student images, claims lawyer

[RL Vaughn]

At least the iPad printing problem has been solved:
http://www.devicemag.com/2010/04/15/ipad-printing-problems-solved-dyi-workaround/

Maybe similar approach would be applicable for tracking lost iPads?

Rob, grandpa of Ryan, Trevor, Devon & Hannah wrote:
> Date sent:Wed, 21 Apr 2010 20:06:27 +0900
> From: Peter Evans 
> 
>>  Now, when your kids school offers you free macs, will your kids
>>  be telling them where to shove it?
> 
> How about free iPads?
> 
> (Ah.  You had to think about that one, didn't you?  :-)


___
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.

Re: [funsec] Apple owns "Pad"

[RL Vaughn]

And I was hoping for some Pad™ Thai :(



Rob, grandpa of Ryan, Trevor, Devon & Hannah wrote:
> http://www.9to5mac.com/steve-jobs-pad-trademark-app-3450386433
> 
> In other news, Apple is suing Kotex, anyone in informal living situations, 
> and 
> every recreational gym program, everywhere.  Also a certain text editor 
> included 
> with the Windows operating system.
> 
> (I'd have made a note of this, but my block of scrap paper has been seized by 
> the 
> trademark police.)
> 
> ==  (quote inserted randomly by Pegasus Mailer)
> rsl...@vcn.bc.ca sl...@victoria.tc.ca rsl...@computercrime.org
> It is a very sad thing that nowadays there is so little useless
> information.   - Oscar Wilde
> victoria.tc.ca/techrev/rms.htm blog.isc2.org/isc2_blog/slade/index.html
> http://blogs.securiteam.com/index.php/archives/author/p1/
> http://twitter.com/NoticeBored http://twitter.com/rslade
> ___
> Fun and Misc security discussion for OT posts.
> https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
> Note: funsec is a public and open mailing list.

___
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.

Re: [funsec] Comics...

[RL Vaughn]

On 4/1/10 10:22 PM, Peter Evans wrote:
> On Thu, Apr 01, 2010 at 08:34:13PM -0500, RL Vaughn wrote:
>   I said:
>>> Would you like some comic recommendations to read?
>> Yes, I would please.  Thanks!
>
>   Ok, now it's time to help me to help you, what sort of genre,
>   style, how well can you read? eg, kanji without litte rubi to
>   explain are straight out.

I basically struggle:)  I was beginning to make progress on JLPT level 4
a few months ago but the old neurons are obviously slipping.  (BTW, if
anyone else is on this road, a FireFox plugin, Rikaichan, is really
helpful.)

>
>   Note, I don't read translated stuff, so I don't actually know if
>   anything I read is available in English. (It's usually more expensive,
>   ie, 10$ vs 600y, and covers aren't as nice.

I see some translated stuff here but I much prefer doing my own heavy 
lifting.  The translated stuff also can mess up the illustrations.

>
>   Here's just a few.
>
>   Vietnam War -- Cat Shit One series, Vets would probably recognise the 
> hardware.
>   The good guys are bunnies, japanese are monkeys, 
> russians are bears,
>   vietcong are cats, etc.

:)  Heh. I remember hardware.

>
>   Gintama -- SF anything goes silliness.
>
>   Psychic Detective Yakumo -- (NHK anime soon!) novellas ->  shojo manga, 
> quite interesting.
>
>   Ryoko's Case Files -- Slightly supernatural police drama. art by 
> kakinouchi.
>   
Thanks.  I will go to the big city and chase these down.

>
>>> ps: golgo 13's office is just up the road.
>> I missed that when I was there.  Guess I will have to come over again;)
>
>   He's quite an old man now, been drawing golgo 13 for what, 40 years.
>
>   P
>
> ___
> Fun and Misc security discussion for OT posts.
> https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
> Note: funsec is a public and open mailing list.

___
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.

Re: [funsec] Google Voice Search for animals launched

[RL Vaughn]

On 4/1/10 8:05 PM, Peter Evans wrote:
> On Thu, Apr 01, 2010 at 04:09:14PM -0500, RL Vaughn wrote:
>> On 4/1/10 3:27 PM, Juha-Matti Laurio wrote:
>>> http://www.google.co.jp/intl/ja/landing/animaru/
>
>> Thank goodness that I have spent the last two years
>> studying Japanese.  The Pigeon rank system is quite
>> extraordinary.  Those not so linguistically gifted
>> (yeah right) might find the video on
>> http://www.google.co.uk/intl/en/landing/translateforanimals/index.html
>> to be somewhat more suitable.
>
>   Would you like some comic recommendations to read?
>
>
Yes, I would please.  Thanks!

>   I find it interesting that Angel Heart has now got more
>   volumes than City Hunter. And that Takahashi's jokes get
>   old by volume 3 (rinne) rather than 10.
>
>   Practically the only funny comics worth following are
>   Gintama and Kochikame. Bonus points if you have copies of
>   the latter that are _not_ written by Akimoto Osamu.
>
>   P
>
>
> ps: golgo 13's office is just up the road.
>

I missed that when I was there.  Guess I will have to come over again;)

___
> Fun and Misc security discussion for OT posts.
> https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
> Note: funsec is a public and open mailing list.

___
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.

Re: [funsec] Google Voice Search for animals launched

[RL Vaughn]

On 4/1/10 3:27 PM, Juha-Matti Laurio wrote:
> http://www.google.co.jp/intl/ja/landing/animaru/
>
> :)
>
> Juha-Matti
> ___
> Fun and Misc security discussion for OT posts.
> https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
> Note: funsec is a public and open mailing list.


Thank goodness that I have spent the last two years
studying Japanese.  The Pigeon rank system is quite
extraordinary.  Those not so linguistically gifted
(yeah right) might find the video on
http://www.google.co.uk/intl/en/landing/translateforanimals/index.html
to be somewhat more suitable.
___
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.

Re: [funsec] [Infowarrior] - China's Great Firewall spreads overseas

[RL Vaughn]

On 3/29/10 11:54 AM, Danny McPherson wrote:
>
> On Mar 29, 2010, at 10:16 AM, RL Vaughn wrote:
>
>> On 3/29/10 9:53 AM, valdis.kletni...@vt.edu wrote:
>>> http://www.computerworld.com/s/article/9174132/China_s_Great_Firewall_spreads_overseas
>>>
>>> So was this a DNS or BGP issue? The reporter appears to be confused, or
>>> was it the Arbor Networks talking head?
>> It was a DNS issue.  One host in i-root was providing incorrect answers.
>> The reason for those incorrect answers is unknown but the solution was
>> to remove the responsible host from the i-root anycast.
>
> Are you certain of this Randy?  There are at least two questions:

Hmmm.  Perhaps I am reading too much into Kurtis Lindqvist's note on 
dns-operation.  In fact, in that note, Kurtis says they are still 
investigating the issue and, pending the results of that investigation,
they have:
"withdrawn the route announcements from one of our anycast nodes for 
i.root-servers.net"

But that certain seems like a 'fix' albeit the permanency of the fix
is not mentioned.


The dig output provided was:
$ dig @i.root-servers.net www.facebook.com A

; <<>> DiG 9.6.1-P3 <<>> @i.root-servers.net www.facebook.com A
; (1 server found)
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 7448
;; flags: qr aa rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 0

;; QUESTION SECTION:
;www.facebook.com.  IN  A

;; ANSWER SECTION:
www.facebook.com.   86400   IN  A   8.7.198.45

;; Query time: 444 msec
;; SERVER: 192.36.148.17#53(192.36.148.17)
;; WHEN: Wed Mar 24 14:21:54 2010
;; MSG SIZE  rcvd: 66




>
> 1) Why was someone in Chile using that server (i.e., the routing bit)
Good question.  I can imagine, of course, how someone in Chile can end 
up using i-root.


>
> 2) Why were the responses they were getting "incorrect"
>

The original report, again on dns-operations, mentions that when 
querying one of the i-root-server's nodes that node responds with an IP 
instead of a referral.

> Regarding the latter, just because a client receives an "incorrect
> answer" doesn't necessarily mean it's what the server ("i-root") was
> transmitting.
>
Exactly, other things can cause this symptom and I give those equal
weight as having a rogue node.  Still, the reported response appears
to identify a DNS issue.


> Removing the anycast instance from the i-root cluster means the
> ingress path towards i-root was withdraw, so that instance, and anything
> on the return path towards the client, are no longer an issue.  I think
> the latter set of my comments in the article from last week allude to
> this (i.e., potential middleboxen manipulation).


> That said, I do eagerly await an authoritative postmortem from
> the relevant parties.  But if you have data that suggests that
> "i-root was providing incorrect answers", I suspect folks would
> be quite interested in that.
>

Me too.  The only evidence I have is i-root has taken steps to avoid
producing the reportedly incorrect answers which does not imply they 
were the ones providing incorrect answers.

> -danny

___
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.

Re: [funsec] [Infowarrior] - China's Great Firewall spreads overseas

[RL Vaughn]

On 3/29/10 9:53 AM, valdis.kletni...@vt.edu wrote:
> http://www.computerworld.com/s/article/9174132/China_s_Great_Firewall_spreads_overseas
>
> So was this a DNS or BGP issue? The reporter appears to be confused, or
> was it the Arbor Networks talking head?
It was a DNS issue.  One host in i-root was providing incorrect answers.
The reason for those incorrect answers is unknown but the solution was
to remove the responsible host from the i-root anycast.
___
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.

[funsec] ReoffLurk

[RL Vaughn]

Penalty for unwrapping gifts early: Arrest
After boy, 12, hides his Game Boy, his mom calls police

A mother convinced Rock Hill police to arrest her 12-year-old son after he
unwrapped a Christmas present early.

.

The mother told police officers that she would have the boy placed with the
state Department of Juvenile Justice in Columbia at his court appearance.

Waldrop said he was not aware if Rock Hill police have ever arrested a child for
unwrapping Christmas presents early.

"Yeah, it's strange," he said of the case.


reonlurk
___
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.

[funsec] Off lurq

[RL Vaughn]

Flatulence brought 99 passengers on an American Airlines flight to an
unscheduled visit to Nashville early Monday morning.
Advertisement


American Flight 1053, from Washington Reagan National Airport and bound for
Dallas/Fort Worth, made an emergency landing here after passengers reported
smelling struck matches, said Lynne Lowrance, a spokeswoman for the Nashville
International Airport Authority.

The plane landed safely. The FBI, Transportation Safety Administration and
airport authority responded to the emergency, Lowrance said.

The passengers and five crew members were brought off the plane, together with
all the luggage, to go through security checks again. Bomb-sniffing dogs found
spent matches.

The FBI questioned a passenger who admitted she struck the matches in an attempt
to conceal body odor, Lowrance said. The woman lives near Dallas and has a
medical condition.

The flight took off again, but the woman was not allowed back on the plane.

"American has banned her for a long time," Lowrance said.

She was not charged but could have been. While it is legal to bring as many as
four books of paper safety matches onto an aircraft, it is illegal to strike a
match in an airplane, Lowrance said.

On lurq
___
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.