eh? Afterall, if the site is malicious,
better the app die and dump then allow one to prceed to inflict harm upon
ones self?
Thanks,
Ron DuFresne
--
"Sometimes you get the blues because your baby leaves you. Sometimes you get'em
'cause she comes back." --B.B. King
close4 to his vest.
One might as well post it this way:
someplace, somewhere is a pc with a vulnerable application, guess where it
is and you can own it. Oh, but, pay me big bucks first so I can eat well
for a day or two.
Thanks,
Ron DuFresne
--
"Sometimes you get the blues because yo
nger anonymous, and if you don't connect to the
> shell, you can't use the shell
>
>
Another issue to consider is that a mere user level shell likely lacks
privs to do some of the nasties referenced in some of these posts. thus,
the friend would not oonly have to allow shell
s in
daily use tend to depricate those with skills over a braoder spectrum at
an earlier point of time, let alone that CISSP is the only real
qualification for the claim.
Thanks,
Ron DuFresne
--
"Sometimes you get the blues because your baby leaves you. Sometimes you get'em
'cause
w weeks ago it was shown
that the real korn shell can play tcp and udp very sweetly and simply in
scripts. I have not the working example at hand here to demo for folks,
but, if needed can get it. I'm sure the man page and or the o'reilly's
manula documents this.
Thanks,
Ron DuFresn
heir designs, then it kinda devalues the current
tools that nasty boys are using, does it not? If their tools
reply upon poorly written code, then replacing it with far better code
makes their efforts kinda nill, yes?
Thanks,
Ron DuFresne
> Thanks..
>
> On 9/12/05, Ron DuFresne <[
sion of his and other web based scripts that can be
gotten from:
http://nms-cgi.sourceforge.net/scripts.shtml
Unless one is carefull they often get what they paid for
Thanks,
Ron DuFresne
--
"Sometimes you get the blues because your baby leaves you. Sometimes you get'em
'ca
ut and the
whole set fo nearly bi monthly threads that covers it and it's variants in
detail.
Yet, where one can limit, limiting access to sshd these days is prefered,
as openssl and the openssh code tend to be quite the problem with
maintainance, almost like the 90's with ftpd and sendmai
http://www.ranum.com/security/computer_security/papers/a1-firewall/
Thanks,
Ron DuFresne
On Sat, 27 Aug 2005, [EMAIL PROTECTED] wrote:
>
>
>
> =
> ORIGINAL MESSAGE:
> ---
additional hint: the headers for e-mails can be as vauable as the source
code of the application.
Thanks,
Ron DuFresne
On Tue, 23 Aug 2005, Justin Allen wrote:
> Well for one, it would help if you were unsubscribing to the correct list
>
> Suetterlin, Sven wrote:
>
bucks, and will continue to line
many pockets for a long time as folks play into the latest and greatest
buzzword of the week/month/year, but when it comes to security, a little
extrapolation of the basics is the real key to any small sense of secure.
Thanks,
Ron DuFresne
On Mon, 22 Aug 2005, Todd
the fear of broken programs..perhaps it was the QA group..it doesn't
> really matter. They go the worm because they were not patched.
And because they didn't properly filter port 445 is my understanding.
Unpatched systems behind FW's that fliter 445 were untouched.
Thanks,
Ron DuFr
On Fri, 19 Aug 2005, Nick FitzGerald wrote:
> [EMAIL PROTECTED] to Ron DuFresne:
>
> > > Perhaps it does realte considering the above and considering that the unix
> > > world learned many of the evils of RCP services over ten years ago that
> > > seem to
nsidering that the unix
world learned many of the evils of RCP services over ten years ago that
seem to hit the M$ realm every few months, repeatedly...
Thanks,
Ron DuFresne
--
"Sometimes you get the blues because your baby leaves you. Sometimes you get'em
'cause she comes back
it. In fact their announcemnt
came out this AM, from their multi-state vuln/sploit notification council...
There is no excuse for doing below minimum and little excuse for scrapping
along at minimum, with taxpayers footing the bill, but that's life in gov
settings and more so perhaps in state
On Mon, 1 Aug 2005, John Kinsella wrote:
> Hate having to explain a joke, but...
>
perhaps it wasn't tainted eith enough irony or cynasim and sarcasim?
Thanks,
Ron DuFresne
--
"Sometimes you get the blues because your baby leaves you. Sometimes you get'em
'cause sh
s "freely" made recent choices were
influenced, I think that is easy to read into the events as they have
progressed, do you not also?
> I ask you, how do you know it wasn't?
>
Thanks,
Ron DuFresne
> On 7/29/05, Ron DuFresne <[EMAIL PROTECTED]> wrote:
&
On Fri, 29 Jul 2005 [EMAIL PROTECTED] wrote:
> On Fri, 29 Jul 2005 16:38:26 CDT, Ron DuFresne said:
>
> > being that we'll all be retired and all this equipment replaced by the
> > time IPv6 becomes standard the threat is not as great then as it was first
> >
k from a specifically crafted IPv6 packet."
being that we'll all be retired and all this equipment replaced by the
time IPv6 becomes standard the threat is not as great then as it was first
made out to be then, correct?
Thanks,
Ron DuFresne
_
On Fri, 29 Jul 2005, KF (lists) wrote:
> Trying to Stifle information is a real dickhead thing to do also...
>
> I'm just waiting for someone to toss the DMCA into all of this. =]
CERT and DHS are bigger cards in the game then DMCA.
Thanks,
Ron DuFresne
--
"Sometime
ites you in the arse.
>
Was it free will, or the threat of jail and other difficulties?
Afterall, employment was not a show stopper for him, he quit to release
his findings and gain glory in the crowds at hacker fests. so was it
really free will I ask again?
Thanks,
Ron DuFresne
--
&quo
ar - is mine or yours in
> error?
>
cal reports it as a Friday here also, damn, now I have to drive the 45
miles in for sure!
Thanks,
Ron DuFresne
--
"Sometimes you get the blues because your baby leaves you. Sometimes you get'em
'cause she comes back." --B.B. King
ne, though states tend to view weekends as merely an extension
to the week and I'm likely going to have to be doing maintainance or
working indirectly from home as usual
Thanks,
Ron DuFresne
"Sometimes you get the blues because your baby leaves you. Sometimes you get'em
'ca
Of course, this is not a bug, but bad admin/dbadmin practise, for which
there are no patches available.
thanks,
Ron DuFresne
On Mon, 4 Jul 2005, lsi wrote:
> platforms affected: all
> distribution of threat: wide
> severity of threat: potentially serious
> leadtime: 6.3 ye
nt, and NO, you can't put
> handicap placards on computers used by those with IQs below 90, sorry.
>
if this was true, then educating would not be a full time thing making
some companies tons of cash as they come into an org and do it over and
over and over
Thanks,
Ron DuFresne
--
he type tp kick crutches out from under handicapped folks and the
like. Do as the rest of us tend to and add em to yer procmail filters to
dead end em, why even waste the time hitting delete?
Thanks,
Ron DuFresne
--
"Sometimes you get the blues because your baby leaves you. Sometimes you g
x27;s illegal,
> they need to test it.
>
Actually, at least in the US, there is a law that would make this illegal and subject one to prison time...
Thanks,
Ron DuFresne
--
"Sometimes you get the blues because your baby leaves you. Sometimes you get'em
'cause she comes back.&
ing methodology has any tendency to soundness?
Thanks,
Ron DuFresne
--
"Sometimes you get the blues because your baby leaves you. Sometimes you get'em
'cause she comes back." --B.B. King
***testing, only testing, and damn good at it too!***
OK, so you
ed mailing list for the discussion of security issues
Thanks,
Ron DuFresne
--
"Sometimes you get the blues because your baby leaves you. Sometimes you get'em
'cause she comes back." --B.B. King
***testing, only testing, and damn good at it too!***
OK,
know which companies trade and buy personal data from your bank,
insurance company, the utilities , your city and
county, your ISP, ...?
How many people new of let alone knew/know which comapnies choice-point
obatined their data from? Quite often putting pressure on company C is
not a strai
s to drive these
> companies to better security.
>
Let alone the fact that peopoe, individuals, tend to ahve very short term
memories of such events, unless directly affected by the event.
Thanks,
Ron DuFresne
--
"Sometimes you get the blues because your baby leaves you. Sometimes y
On Fri, 18 Mar 2005, dk wrote:
> Ron DuFresne wrote:
>
> > If the kernel is modified, on a windows or *nix system, you are going to
> > have a clear clue upfront; the system will have rebooted. Course, a
>
> That's a dangerous position to believe, at least with t
ostly hypothetical as
I'm unaware of rootkits that can accomplish that.
The poster talking about alternate data streams on ntfs systems , that's a problem to get around still on those
platforms.
To the original reply and other poster, thanks for the links to alternate
URL's for the o
are floating around.
>
> More: http://castlecops.com/article-5807-nested-0-0.html
>
>
gov workers do even need to be bribed with chocolate;
http://www.securityfocus.com/news/10708?ref=rss
Thanks,
Ron DuFresne
--
"Sometimes you get the blues because your baby leaves you. Someti
modified, on a windows or *nix system, you are going to
have a clear clue upfront; the system will have rebooted. Course, a
failing system that reboots or blue screens every few weeks rather then
runs stable unless there is a total power outage or a maint window when such
things are done is another
ms to be able to segment the wLAN into
locations and determine a sense of perimiter limits and location sense.
Of course, I'm trying to give the benefit of the doubt and read that they
actually sell what they are claiming in marketing lit.
Thanks,
Ron DuFresne
--
"Sometimes
>From what little I read on their site, it seems to be a radius auth mech
based upon MAC addresses.
Thanks,
Ron DuFresne
On Tue, 15 Mar 2005, KF (Lists) wrote:
> hrmm... is that based on signal strength or something?
> -KF
>
> Ryan Sumida wrote:
> >
> > As a
the nice glossy marekting
pamphlets and power point presentations that mgt loves. Course as a
techie, I'd want to see the product working in a live setup prior to
making a perhaps costly blunder.
Thanks,
Ron DuFresne
--
"Sometimes you get the blues because your baby leaves you. Sometim
Nor to read the whole annoucement Administrivia about the change in
hosting sites and how to change your passwd and how to fix you settings
for the list. The reading impaired should just unsubscribe.
Thanks,
Ron DuFresne
On Wed, 9 Mar 2005 [EMAIL PROTECTED] wrote:
>
> I tend to agree
39 matches
Mail list logo