Hello list,
Note about the original script/script being used..
Just for anyone out there wishing to make this exploit 'useful' , as it
says, this has nothing todo with the 'testapache' used in that code, as this
involves checking on mod_deflate, wich is useless, so instead of that if ($x
=
Ummm ok, lets see, i tried to use this, it keeps giving me 'usage' abit to
much :P , even when i have read thru the code and seen an example/would make
example but seems it is not being nice, unless i have perhaps made the
error.. or it is not pasted in correctly,... i will try again but, i
in the server (i.e. index.php for
Joomla! CMS).
Remember the http://; :P
2011/8/25 -= Glowing Sex =- doo...@gmail.com
Ummm ok, lets see, i tried to use this, it keeps giving me 'usage' abit to
much :P , even when i have read thru the code and seen an example/would make
example but seems
).
Remember the http://; :P
2011/8/25 -= Glowing Sex =- doo...@gmail.com
Ummm ok, lets see, i tried to use this, it keeps giving me 'usage' abit
to much :P , even when i have read thru the code and seen an example/would
make example but seems it is not being nice, unless i have
This has yes, 2 sides to it, range accept and then another issue with
doc_size, but i believe this one patch addresses both, atleast, the advisory
that kcope just showed me put me onto the correct patch... tested, same
httpd after patches applied thru freebsd-update,it appied the patches for
This is handy to read for anyone who runs apache... its worth a look... thx
kcope ;
xd
On 24 August 2011 13:26, HI-TECH .
isowarez.isowarez.isowa...@googlemail.com wrote:
Hello list,
oops looks like this bug has nothing to do with mod_deflate/mod_gzip,
read on here where the apache team is
:01, -= Glowing Sex =- wrote:
This is handy to read for anyone who runs apache... its worth a look...
thx kcope ;
xd
On 24 August 2011 13:26, HI-TECH .
isowarez.isowarez.isowa...@googlemail.com wrote:
Hello list,
oops looks like this bug has nothing to do with mod_deflate/mod_gzip
oops, did it again... forgot to cc the list :s
On 25 August 2011 06:25, -= Glowing Sex =- doo...@gmail.com wrote:
Very nice stuff!
I think kcope did grab the idea from something you actually mentioned once
davide, lol,a reference to a website i think and mentioning the byte range.
I played
Reagrding this bug,
The release should have also specified a bugfix / workaround, ofcourse
usually this is the case, altho the one i have seen, does not work on all
boxes.
On a BSD 8.0 box, it killed eveything, swap/ram, eveything died/needed
reboot. now, what is quite annoying, i guess is that i
Yea, i think only way to get around it is to upgrade httpd versions.. I
tried it on freeBSD8.2 standard default settings and httpd devel and that
seems fine, even standard httpd alone on another box, again running 8.2, is
fine.
Some boxes also seem to only consume ram, when it is swap that is the
want to reinstall even if i can avoid it.
On 24 August 2011 11:01, -= Glowing Sex =- doo...@gmail.com wrote:
Hello,
Thanks, I will try this, and also disabling gzip compression, i dont
have mod_deflate on this particular 8.0 bsd production box, so i will run
with the gzip and, try to add
Hello,
Doesnt maybe some config changes could probably assist in this. also you
do NOT need to use mod-deflate, to deflate packages, there is other
alternatives... anti_attack.rb is same thing but, designed for floods in
mind, here is something, one of many things i think wich if done right,
android exploit attached to bad html file (alot like the myspace
hacking)...so whats s new... same methods, and same bs...
i just dont see any usefulness to what could be done anytime, and if you
were silly enough to accept ASNY files direct dl at ANY **COn, expect it
:P~
but the method, is
days
nice writeup tho coderman, well researched article wich i even have to re
read :)
cheers
xd
On 10 August 2011 20:07, coderman coder...@gmail.com wrote:
On Wed, Aug 10, 2011 at 2:55 AM, -= Glowing Sex =- doo...@gmail.com
wrote:
...so whats s new... same methods, and same bs...
i
Hello j lfl
m
err... and, in english... this would say ??? id like to know,
because i am curious why this would be in spanish, ther is somany eng
speaking spaniards now, so idk.
it is just, abit rude, when peiioke want to read things in english, like
most ppl in melb do :P,
anyhow, if
Very nice to see, and very resourceful website, thanks! This is, a very nice
tool for those who have problems with Linux, and it seems to run Ok, i am
playing with the sdk atm but, only thing i dislike, is .net code,but i
assume with time, and, for such a great first rls, this tool can go far :-)
No.
But thanks for asking, and i dont have a 'sig'.
On 5 August 2011 01:13, tandernam tander...@gmail.com wrote:
10001000100000 +1 = omg i just found oprah winfrey!
mind explaining your signature?
___
Full-Disclosure - We believe in it.
Haha
Again, this ridiculous tool comes to our lives :-) , hey i am all for
it, but not when ya see 'trial' , on a FD list :P~~ just bit 'wrong'.
Anyhow it speaks for itself.. ;
* Run Faster: Because to make a good security testing is not enough
--- Because,obviously the
hello,
- nothing ,is about the best explanation for this rubbish i have seen, and,
I have atleast 4 other tools wich can atleast be modified,exploits added,and
anything would b free ofc...why would i want to waste on something, wich
could even contain , a backdoor.
I know if someone backdoors a
Hello Jeremy,
i would suggest looking up T-Hub ,also this is Telstras new system wich is
basically a little box that sits in your house and you can control alot
through this system,I am not to sure if it affects this and I also noticed
that the characters needed were stripped in the first posting
So... advanced...
So, you could maybe have to think if the router has port 80 open and i
assume a remote-service,most isp's would have the port 80 remote-assist open
for possibly helping a customer,I know that is the first thing i switch to
'off' ,and actually, my isp went thru that with me on
Hello noptrix,
I did not know of this one, but if you want to know one more, wich i
can credit one of #haxnet members ( dzl ) , for showing me , as follows :
You start a chatroom, you then set the TOPIC to some funny character i
believe it is (m) ,it produces a 'muscle' symbol anyhow, set
Woahh... nicely picked mate...
Then, they dare to then market it, (with or even withut that guys lib), i
mean pros would have theyre OWn lib if they were that serious...also, somany
bugs in theyre own website picked out by a...@papsy.net.. i think FD just
'opened' theyre whole setup to being
OK, now this is just blatant sales spam. This list isn't your market -
can't you just move on?
^^ thats the poor state of FD nowdays :P people do not even realise, i
think, what the thing means :P lol... i think this maybe either due to
language,simply not knowing english.. or, pure spam of an
all i can say to this is hahahahahaha , this is what FD has become, why are
you all so surpirsed?? lol... elfius, good stuff :)
On 18 June 2011 00:45, Ray Jertop secli...@aussievapers.com wrote:
Hi,
I would think that the behaviour is slightly odd.
His first communication started out
25 matches
Mail list logo