Re: [Full-disclosure] Obama Order Sped Up Wave of Cyberattacks Against Iran

On 6/8/12 9:56 PM, Jason Hellenthal wrote: > Shit, Ill give the NSA a shell on any system... if it means achieving a > greater goal. Whether its wrong or not... let the bots decide who is the > better player as long as it brings the US into a primary position of > power. > > On Wed, Jun 06, 2012 at

Re: [Full-disclosure] Analysis: Vast IPv6 address space actually enables IPv6 attacks

On 06/08/2012 01:59 PM, Lee Dilkie wrote: > so you say it's not as hard to scan an IPv6 network as the raw math > would indicate but it's still a lot harder than scanning an IPv4 network. The point is that is *feasible*. -- Computers don't complain about doing "harder" work. > Still... where in

Re: [Full-disclosure] Obama Order Sped Up Wave of Cyberattacks Against Iran

Ohh... :) -Message d'origine- De:Григорий Братислава Envoyé: 08/06/2012, 19:35 A: Thor (Hammer of God) Cc: full-disclosure@lists.grok.org.uk Objet:Re: [Full-disclosure] Obama Order Sped Up Wave of Cyberattacks Against Iran "In California you can always find a party, in Soviet Russia, th

[Full-disclosure] ZDI-12-092 : RealNetworks RealPlayer QCELP Stream Parsing Remote Code Execution Vulnerability

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 ZDI-12-092 : RealNetworks RealPlayer QCELP Stream Parsing Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-12-092 June 8, 2012 - -- CVE ID: CVE-2011-4247 - -- CVSS: 7.5, AV:N/AC:L/Au:N/C:P/I:P/A:P - -- Affected

[Full-disclosure] ZDI-12-091 : Symantec Web Gateway upload_file Remote Code Execution Vulnerability

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 ZDI-12-091 : Symantec Web Gateway upload_file Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-12-091 June 8, 2012 - -- CVE ID: CVE-2012-0299 - -- CVSS: 7.5, AV:N/AC:L/Au:N/C:P/I:P/A:P - -- Affected Vendors: S

[Full-disclosure] ZDI-12-090 : Symantec Web Gateway Shell Command Injection Remote Code Execution Vulnerability

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 ZDI-12-090 : Symantec Web Gateway Shell Command Injection Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-12-090 June 8, 2012 - -- CVE ID: CVE-2012-0297 - -- CVSS: 7.5, AV:N/AC:L/Au:N/C:P/I:P/A:P - -- Affected V

Re: [Full-disclosure] Obama Order Sped Up Wave of Cyberattacks Against Iran

On Fri, Jun 8, 2012 at 3:57 PM, Laurelai wrote: > And you would be wrong. I find right term for you Wesley. Destructive Narcissist http://en.wikipedia.org/wiki/Narcissistic_leadership#Impact_of_healthy_v._destructive_narcissistic_managers ___ Full-Disc

Re: [Full-disclosure] Obama Order Sped Up Wave of Cyberattacks Against Iran

On 6/8/12 3:54 PM, Ian Hayes wrote: > On Fri, Jun 8, 2012 at 3:49 PM, Laurelai wrote: >> On 6/8/12 3:46 PM, Ian Hayes wrote: >>> On Fri, Jun 8, 2012 at 3:38 PM, Laurelai wrote: Thank you, lets now discuss how infosec experts are going to deal with the threat of state sponsored cyberwarf

Re: [Full-disclosure] Obama Order Sped Up Wave of Cyberattacks Against Iran

On Fri, Jun 8, 2012 at 3:49 PM, Laurelai wrote: > On 6/8/12 3:46 PM, Ian Hayes wrote: >> On Fri, Jun 8, 2012 at 3:38 PM, Laurelai wrote: >>> Thank you, lets now discuss how infosec experts are going to deal with >>> the threat of state sponsored cyberwarfare, and "bend over and take it" >>> is no

Re: [Full-disclosure] Obama Order Sped Up Wave of Cyberattacks Against Iran

Laurelai, you must be new in here. Welcome Laurelai to full-disclosure. Now, log out and take a nap. MemoryVandal On Fri, Jun 8, 2012 at 11:40 PM, Laurelai wrote: > On 6/8/12 2:08 PM, Григорий Братислава wrote: >> On Fri, Jun 8, 2012 at 1:58 PM, Laurelai wrote: >> >>> And that brings us back to

Re: [Full-disclosure] Obama Order Sped Up Wave of Cyberattacks Against Iran

On 6/8/12 3:46 PM, Ian Hayes wrote: > On Fri, Jun 8, 2012 at 3:38 PM, Laurelai wrote: >> Thank you, lets now discuss how infosec experts are going to deal with >> the threat of state sponsored cyberwarfare, and "bend over and take it" >> is not really a good answer. > Sure it is, it's just not the

Re: [Full-disclosure] Obama Order Sped Up Wave of Cyberattacks Against Iran

On Fri, Jun 8, 2012 at 3:38 PM, Laurelai wrote: > Thank you, lets now discuss how infosec experts are going to deal with > the threat of state sponsored cyberwarfare, and "bend over and take it" > is not really a good answer. Sure it is, it's just not the answer you want. http://www.theonion.com

Re: [Full-disclosure] Obama Order Sped Up Wave of Cyberattacks Against Iran

On Fri, 08 Jun 2012 12:04:11 -0400, Laurelai said: > I think the real question we should all think on is what are we going to > do about this kind of thing? > > Because the way I see it, the infosec industry is part of this problem > until it finds a way to be a part of the solution, if you all eve

Re: [Full-disclosure] Obama Order Sped Up Wave of Cyberattacks Against Iran

On 6/8/12 3:33 PM, James Condron wrote: > Aand now we degenerate into a political argument nobody but the poster > gives a fuck about. > > Ta for that, maybe take it elsewhere. Let's keep on topic (though we may be > several posts behind) > > Sent using BlackBerry® from Orange > > -Origin

Re: [Full-disclosure] Obama Order Sped Up Wave of Cyberattacks Against Iran

On Fri, Jun 8, 2012 at 3:18 PM, Laurelai wrote: > I don't see how Iran developing nuclear power is a threat, I'm sorry to > me this just seems like more fear mongering. And is this how you fail. There is no problem is in developing nuclear POWER there is problem when you is weaponize it. You nee

Re: [Full-disclosure] Obama Order Sped Up Wave of Cyberattacks Against Iran

Aand now we degenerate into a political argument nobody but the poster gives a fuck about. Ta for that, maybe take it elsewhere. Let's keep on topic (though we may be several posts behind) Sent using BlackBerry® from Orange -Original Message- From: Bzzz Sender: full-disclosure-bou

Re: [Full-disclosure] Obama Order Sped Up Wave of Cyberattacks Against Iran

On Fri, 08 Jun 2012 13:36:07 -0400 Laurelai wrote: > Excuse me but im a veteran who served 10 years in the Army and I > damn well earned my right to complain about how broken the system > is, myself and the soldiers around me sacrificed so that we could > all have a free country and that yes I co

Re: [Full-disclosure] Obama Order Sped Up Wave of Cyberattacks Against Iran

On 6/8/12 3:12 PM, Ian Hayes wrote: > On Fri, Jun 8, 2012 at 2:41 PM, Christian Sciberras wrote: >> Perhaps the US Government would gain better results by mass protests and >> chanting peace songs. >> >> Or perhaps it just doesn't work this way. >> >> They shouldn't be blamed, everyone knows fight

Re: [Full-disclosure] Obama Order Sped Up Wave of Cyberattacks Against Iran

On Fri, Jun 8, 2012 at 2:41 PM, Christian Sciberras wrote: > Perhaps the US Government would gain better results by mass protests and > chanting peace songs. > > Or perhaps it just doesn't work this way. > > They shouldn't be blamed, everyone knows fighting fire with fire is very > effective, just

Re: [Full-disclosure] Obama Order Sped Up Wave of Cyberattacks Against Iran

On 6/8/12 3:09 PM, Григорий Братислава wrote: > On Fri, Jun 8, 2012 at 3:02 PM, Laurelai wrote: > >> You mean where i publicly called out the people selling zero days to the >> US gov? > No I is meant where you allow is your narcissism is permeate in conversation. > http://www.youtube.com/watch?v=

Re: [Full-disclosure] Obama Order Sped Up Wave of Cyberattacks Against Iran

On Fri, Jun 8, 2012 at 3:02 PM, Laurelai wrote: > You mean where i publicly called out the people selling zero days to the > US gov? No I is meant where you allow is your narcissism is permeate in conversation. -- `Wherever I is go - there am I routed` ___

Re: [Full-disclosure] Obama Order Sped Up Wave of Cyberattacks Against Iran

On 6/8/12 2:56 PM, Григорий Братислава wrote: > On Fri, Jun 8, 2012 at 2:52 PM, Laurelai wrote: >> *adds names to a list of people likely selling zero days* > Is not surprise me. Is you need know, national security trumps FBI CIS > http://www.fbi.gov/news/testimony/improving-our-confidential-human

Re: [Full-disclosure] Obama Order Sped Up Wave of Cyberattacks Against Iran

On Fri, Jun 8, 2012 at 2:52 PM, Laurelai wrote: > *adds names to a list of people likely selling zero days* Is not surprise me. Is you need know, national security trumps FBI CIS http://www.fbi.gov/news/testimony/improving-our-confidential-human-source-program every times. You could not is even t

Re: [Full-disclosure] Obama Order Sped Up Wave of Cyberattacks Against Iran

On 6/8/12 2:41 PM, Christian Sciberras wrote: > Perhaps the US Government would gain better results by mass protests > and chanting peace songs. > > Or perhaps it just doesn't work this way. > > They shouldn't be blamed, everyone knows fighting fire with fire is > very effective, just as everyone >

Re: [Full-disclosure] Flame= cyberwar - tech details on sKyWIper [Full-Disclosure Digest, Vol 88, Issue 12]

From: full-disclosure-requ...@lists.grok.org.uk To: full-disclosure@lists.grok.org.uk Date: 06/08/2012 01:41 PM Subject:Full-Disclosure Digest, Vol 88, Issue 12 Sent by:full-disclosure-boun...@lists.grok.org.uk LUA and SQLite? Interesting. I have no direct experience with L

Re: [Full-disclosure] Obama Order Sped Up Wave of Cyberattacks Against Iran

On Fri, Jun 8, 2012 at 2:41 PM, Christian Sciberras wrote: > Perhaps the US Government would gain better results by mass protests and > chanting peace songs. > > Or perhaps it just doesn't work this way. > Good plan! Bring is hot cocoa and marshmallows. Then we is sing: http://www.youtube.com/wat

Re: [Full-disclosure] Obama Order Sped Up Wave of Cyberattacks Against Iran

On Fri, Jun 8, 2012 at 2:20 PM, Laurelai wrote > There you have it folks, the best argument the so called experts could > come up with as to why we shouldn't do anything about this is name > calling and half baked attempts at derailing the conversation and more > spelling errors than a 5th grader

Re: [Full-disclosure] Obama Order Sped Up Wave of Cyberattacks Against Iran

On 6/8/12 2:08 PM, Григорий Братислава wrote: > On Fri, Jun 8, 2012 at 1:58 PM, Laurelai wrote: > >> And that brings us back to what are we going to do about the US Gov laying >> down in the same mud as the bad guys > I is detect narcissism Wesley. "what are we" is you ask. Define we. Is > you has

Re: [Full-disclosure] Obama Order Sped Up Wave of Cyberattacks Against Iran

On 6/8/12 1:51 PM, Григорий Братислава wrote: > On Fri, Jun 8, 2012 at 1:47 PM, Laurelai wrote: > >> Congress shall make no law respecting an establishment of religion, or >> prohibiting the free exercise thereof; or abridging the freedom of speech, >> or of the press; or the right of the people p

Re: [Full-disclosure] Obama Order Sped Up Wave of Cyberattacks Against Iran

On Fri, Jun 8, 2012 at 1:58 PM, Laurelai wrote: > And that brings us back to what are we going to do about the US Gov laying > down in the same mud as the bad guys I is detect narcissism Wesley. "what are we" is you ask. Define we. Is you has gang behind you? (I is not mean for those actions is

Re: [Full-disclosure] Obama Order Sped Up Wave of Cyberattacks Against Iran

On 6/8/12 1:48 PM, Ian Hayes wrote: > On Fri, Jun 8, 2012 at 1:36 PM, Laurelai > wrote: > > > All that is necessary /for evil to triumph/ is for good people to > do nothing. > > > The corollary to that argument is that *good people* must not resort > to the sa

Re: [Full-disclosure] Obama Order Sped Up Wave of Cyberattacks Against Iran

On Fri, Jun 8, 2012 at 1:47 PM, Laurelai wrote: > Congress shall make no law respecting an establishment of religion, or > prohibiting the free exercise thereof; or abridging the freedom of speech, > or of the press; or the right of the people peaceably to assemble, and to > petition the Governme

Re: [Full-disclosure] Obama Order Sped Up Wave of Cyberattacks Against Iran

On Fri, Jun 8, 2012 at 1:47 PM, Laurelai wrote: > Congress shall make no law respecting an establishment of religion, or > prohibiting the free exercise thereof; or abridging the freedom of speech, > or of the press; or the right of the people peaceably to assemble, and to > petition the Governme

Re: [Full-disclosure] Obama Order Sped Up Wave of Cyberattacks Against Iran

On Fri, Jun 8, 2012 at 1:36 PM, Laurelai wrote: > > All that is necessary *for evil to triumph* is for good people to do > nothing. > The corollary to that argument is that *good people* must not resort to the same tactics as the people they are fighting. To lie down in the same mud makes you ju

Re: [Full-disclosure] Obama Order Sped Up Wave of Cyberattacks Against Iran

On 6/8/12 1:41 PM, Григорий Братислава wrote: > On Fri, Jun 8, 2012 at 1:36 PM, Laurelai > wrote: > > Excuse me but im a veteran who served 10 years in the Army and I > damn well earned my right to complain about how broken the system > is, myself and the

Re: [Full-disclosure] Obama Order Sped Up Wave of Cyberattacks Against Iran

On Fri, Jun 8, 2012 at 1:36 PM, Laurelai wrote: > Excuse me but im a veteran who served 10 years in the Army and I damn well > earned my right to complain about how broken the system is, myself and the > soldiers around me sacrificed so that we could all have a free country and > that yes I could

Re: [Full-disclosure] Obama Order Sped Up Wave of Cyberattacks Against Iran

On Fri, Jun 8, 2012 at 1:36 PM, Laurelai wrote: > Excuse me but im a veteran who served 10 years in the Army and I damn well > earned my right to complain about how broken the system is, myself and the > soldiers around me sacrificed so that we could all have a free country and > that yes I could

Re: [Full-disclosure] Obama Order Sped Up Wave of Cyberattacks Against Iran

On 6/8/12 1:03 PM, Thor (Hammer of God) wrote: >> finding solutions to countries using cyberwar and using innocent peoples machines to carry it out, >>  invading peoples privacy and generally doing terr

Re: [Full-disclosure] Obama Order Sped Up Wave of Cyberattacks Against Iran

"In California you can always find a party, in Soviet Russia, the Party can always is find you!" -- `Wherever I is go - there am I routed` ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and

Re: [Full-disclosure] Obama Order Sped Up Wave of Cyberattacks Against Iran

++Thor !! On Fri, Jun 8, 2012 at 1:03 PM, Thor (Hammer of God) wrote: > >> finding solutions to countries using cyberwar and using innocent > peoples machines to carry it out, > > >> invading peoples privacy and generally doing terrible stuff in the > name of god and country. > > > >

Re: [Full-disclosure] Obama Order Sped Up Wave of Cyberattacks Against Iran

>> finding solutions to countries using cyberwar and using innocent peoples >> machines to carry it out, >> invading peoples privacy and generally doing terrible stuff in the name of >> god and country. What solution? And who exactly is going to "find" it? The entire history of mankind is ba

Re: [Full-disclosure] Obama Order Sped Up Wave of Cyberattacks Against Iran

On 6/8/12 11:38 AM, valdis.kletni...@vt.edu wrote: > On Thu, 07 Jun 2012 13:48:33 -0400, Ian Hayes said: >> On Thu, Jun 7, 2012 at 1:40 PM, andrew.wallace >> wrote: >>> On Tue, Jun 5, 2012 at 8:43 PM, wrote: One could equally well read that as "We're fed up and about to pound North Ko

Re: [Full-disclosure] Obama Order Sped Up Wave of Cyberattacks Against Iran

On Thu, 07 Jun 2012 13:48:33 -0400, Ian Hayes said: > On Thu, Jun 7, 2012 at 1:40 PM, andrew.wallace > wrote: > > On Tue, Jun 5, 2012 at 8:43 PM,  wrote: > >> One could equally well read that as "We're fed up and about to > >> pound North Korea even further back into the Stone Age". > > > > With

Re: [Full-disclosure] Full-Disclosure Digest, Vol 88, Issue 11:

My 10 cents: I'm glad that such discussions happen on this list. I would not consider that as "out of topic", because Information Security, and security in general, did/do include significant political component, and we cannot avoid or ignore it. Plus, and it is important as well, it gives as a

[Full-disclosure] Germany reveals secret techie soldier unit, new cyberweapons

http://www.theregister.co.uk/2012/06/08/germany_cyber_offensive_capability/ Germany reveals secret techie soldier unit, new cyberweapons We have ways of making you pwned CyCon 2012 Germany has confirmed that its military maintains an operational cyberwarfare unit with offensive capabilities. _

Re: [Full-disclosure] Flame= cyberwar - tech details on sKyWIper

Our report with technical details is available at http://www.crysys.hu/skywiper/skywiper.pdf Note, we called it sKyWIper. Boldizsár 2012.05.28. 17:34 keltezéssel, Peter Dawson írta: > > is FLAME is actually a cyberweapon ? > > > > ___ > Full-Disclosure

Re: [Full-disclosure] Analysis: Vast IPv6 address space actually enables IPv6 attacks

Folks, FWIW, the full article is available at the URL below (you don't need to subscribe... just scroll the window down). CHeers, Fernando On 06/08/2012 07:32 AM, Fernando Gont wrote: > Folks, > > TechTarget has published an article I've authored for them, entitled > "Analysis: Vast IPv6 add

[Full-disclosure] Analysis: Vast IPv6 address space actually enables IPv6 attacks

Folks, TechTarget has published an article I've authored for them, entitled "Analysis: Vast IPv6 address space actually enables IPv6 attacks". The aforementioned article is available at: (FW