d" legally to the state of a de-facto
secret service. And that's the point of criticism here: it mixes secret
service competences with the normal executive pillar of the state.
However, I'm not sure that belongs here.
Tonnerre
--
SyGroup GmbH
Tonnerre
Salut, Valdis,
On Fri, 17 Oct 2008 08:45:21 -0400, [EMAIL PROTECTED] wrote:
> You *really* don't want to follow that idea to its logical conclusion.
Evil bread-eating terrorists.
Tonnerre
--
SyGroup GmbH
Tonnerre Lombard
Solutions Systematiques
Tel:+4
tizenship. ;-)
Tonnerre
--
SyGroup GmbH
Tonnerre Lombard
Solutions Systematiques
Tel:+41 61 333 80 33Güterstrasse 86
Fax:+41 61 383 14 674053 Basel
Web:www.sygroup.ch [EMAIL PROTECTED]
signature.asc
Description: PGP
ot get epassports "for security reasons".
Tonnerre
--
SyGroup GmbH
Tonnerre Lombard
Solutions Systematiques
Tel:+41 61 333 80 33Güterstrasse 86
Fax:+41 61 383 14 674053 Basel
Web:www.sygroup.ch [EMAIL PROTECTED]
signature
d me, which electronic attribute tags an ePassport as
diplomatic if no diplomatic ePassports exist?
> - and I'd rather spend time in an American jail for a false
> diplomatic passport than in just about any other country for anything
> else!
You're into SM/torture? TMD.
for the
products in question, if such a thing exists. This allows you to create
a patch for the product and circulate it along with the advisory. This
minimizes the risk level for users of the product, of course.
Tonnerre
--
SyGroup GmbH
Tonnerre Lomba
who to trust pretty quickly.
--
SyGroup GmbH
Tonnerre Lombard
Solutions Systematiques
Tel:+41 61 333 80 33Güterstrasse 86
Fax:+41 61 383 14 674053 Basel
Web:www.sygroup.ch [EMAIL PROTECTED]
signature.asc
Description:
either filtering the signal or not filtering the noise to
> varying degrees.
Try a Bayesian SPAM filter; works well for my purposes.
Tonnerre
--
SyGroup GmbH
Tonnerre Lombard
Solutions Systematiques
Tel:+41 61 333 80 33Güterstrasse 86
/
> I used to purchase standards directly from them. The move to
> downloadable PDF files is a good step forward. A4 is a real nuisance
> if you are in the US instead of England.
ANSI should have US Letter format.
Tonnerre
--
SyGroup G
Tonnerre
--
SyGroup GmbH
Tonnerre Lombard
Solutions Systematiques
Tel:+41 61 333 80 33Güterstrasse 86
Fax:+41 61 383 14 674053 Basel
Web:www.sygroup.ch [EMAIL PROTECTED]
signature.asc
Description: PGP signature
__
e world usually gets better when you
learn to adjust your filters.
Tonnerre
--
SyGroup GmbH
Tonnerre Lombard
Solutions Systematiques
Tel:+41 61 333 80 33Güterstrasse 86
Fax:+41 61 383 14 674053 Basel
Web:www.sygroup.ch [EMAIL PROTECTE
e of
proof if authenticity which is executed in a way which is only ever
trustworthy to the recipient, so the recipient cannot prove anything to
others with it.
Tonnerre
--
SyGroup GmbH
Tonnerre Lombard
Solutions Systematiques
Tel:+41 61 333 80 33Güte
ctly. The plausible deniability is due to the fact that the
signature is executed using a symmetric key known to both parties, so
that either party (but noone else) could have sent the message.
Tonnerre
--
SyGroup GmbH
Tonnerre Lombard
Solutions Systematiques
T
urce, but the quality is rather poor in this case, and you should
only use it in addition to other sources.
Tonnerre
--
SyGroup GmbH
Tonnerre Lombard
Solutions Systematiques
Tel:+41 61 333 80 33Güterstrasse 86
Fax:+41 61 383 14 674053 Bas
ing with uninitialized memory and the Process ID. With the
elimination of the uninitialized memory as seed, the seed for the MAC
was entirely comprised by the PID.
So we're not debating a weakness in the PRNG here at all, which is a
_very_ delicate subject.
Tonnerr
rashing, but with a scheduler as bad as this, I
wouldn't dare letting the users run without rlimits.
Tonnerre
--
SyGroup GmbH
Tonnerre Lombard
Solutions Systematiques
Tel:+41 61 333 80 33Güterstrasse 86
Fax:+41 61 383 14 674053
-time Microsoft employee.]
Hi there. ;-)
Tonnerre
--
SyGroup GmbH
Tonnerre Lombard
Solutions Systematiques
Tel:+41 61 333 80 33Güterstrasse 86
Fax:+41 61 383 14 674053 Basel
Web:www.sygroup.ch [EMAIL PROTECTED]
sig
ged to be about a week late. Congratulations.
Tonnerre
--
SyGroup GmbH
Tonnerre Lombard
Solutions Systematiques
Tel:+41 61 333 80 33Güterstrasse 86
Fax:+41 61 383 14 674053 Basel
Web:www.sygroup.ch [EMAIL PROTECTED]
sign
o; there are e.g. scripts which evaluate failed logins from syslog
and ban them. Thus the mention of the user name with spaces, some of
these scripts fall for that trick.
Tonnerre
--
SyGroup GmbH
Tonnerre Lombard
Solutions Systematiques
Tel:+41 61 333 80 33
e with spaces). You clearly
don't want your DNS server blacklisted, for example.
Tonnerre
[1]: No, a RAID1 is not a backup.
--
SyGroup GmbH
Tonnerre Lombard
Solutions Systematiques
Tel:+41 61 333 80 33Güterstrasse 86
Fax:+41 61 383
number generator to generate cryptographic keys!)
Tonnerre
--
SyGroup GmbH
Tonnerre Lombard
Solutions Systematiques
Tel:+41 61 333 80 33Güterstrasse 86
Fax:+41 61 383 14 674053 Basel
Web:www.sygroup.ch [EMAIL PROTE
7;s people like spamcop who think that RFCs are ok for some
> things but not for others :-(
I think I'm not going to be able to resist the temptation to use
rfc-ignorant.org as a blacklist on a massive amount of mail servers so
much longer...
Tonnerre
--
f the sort process which is not already known to the
user executing it anyway. It is clearly a bug though, and wants to be
fixed. So congratulations to a working, though overdramatizised,
discovered format string vulnerability.
Tonnerre
--
SyGroup GmbH
Tonnerre Lombard
them now too.
No, if you use a GUI, you are not going to get very far in your
pentest, that's all.
Tonnerre
--
SyGroup GmbH
Tonnerre Lombard
Solutions Systematiques
Tel:+41 61 333 80 33Güterstrasse 86
Fax:+41 61 383 14 674053 Basel
Salut,
On Tue, 8 Jan 2008 03:30:13 -0600 reepex <[EMAIL PROTECTED]> wrote:
> he is a 'point and click' hacker .. do not confuse him
Oh, oh, I'm sorry, I keep forgetting that Point'n'Hack interfaces are
the future.
Tonnerre
n a remote pentest? Try to install a VNC
server on the server in order to be able to start the GUI?
Tonnerre
--
SyGroup GmbH
Tonnerre Lombard
Solutions Systematiques
Tel:+41 61 333 80 33Güterstrasse 86
Fax:+41 61 383 14 674053 Basel
W
Salut,
On Wed, 28 Nov 2007 13:16:34 +0100 "KJK::Hyperion" <[EMAIL PROTECTED]> wrote:
> Tonnerre Lombard ha scritto:
> >>> Microsoft FTP Client Multiple Bufferoverflow
> >>> Vulnerability
> >> Isn't the FTP client compiled with stack ove
tion?
If so, how is that supposed to help?
Tonnerre
--
SyGroup GmbH
Tonnerre Lombard
Solutions Systematiques
Tel:+41 61 333 80 33Güterstrasse 86
Fax:+41 61 383 14 674053 Basel
Web:www.sygroup.ch [EMAIL PROTECTED]
can
help you there.
> Perhaps I should re-write TCP into the script to ensure no one ever
> spoofs again.
That wouldn't be very useful since the L4Addr doesn't matter much here,
as we're dealing with L3addrs...
Tonnerre
--
SyGrou
rgument $9 is "from" (which it is). So it
takes $10 and prints it (in this case, mars.)
If you check $10 to look like an IP address, I set my username to
"bikermice from 217.14.64.1", you're going to blacklist 217.14.64.1
because it is a valid IP.
;bikermice from mars"? Are you going to
blacklist mars then?
Tonnerre
--
SyGroup GmbH
Tonnerre Lombard
Solutions Systematiques
Tel:+41 61 333 80 33Roeschenzerstrasse 9
Fax:+41 61 383 14 674153 Reinach BL
Web:www.sygroup.ch [EMAIL PROTECTED]
si
your local
names, or mDNS, you can e.g. blacklist the workstation of the admin so
he can't log in anymore)
Tonnerre
--
SyGroup GmbH
Tonnerre Lombard
Lösungen mit System
Tel:+41 61 333 80 33Röschenzerstrasse 9
Fax:+41 61 383 14 674153 Reinach BL
Web:www.syg
physical access, just plug in your iPod with UNIX and enjoy
full memory access to the host machine...
Tonnerre
--
SyGroup GmbH
Tonnerre Lombard
Lösungen mit System
Tel:+41 61 333 80 33Röschenzerstrasse 9
Fax:+41 61 383 14 674153 Reinach BL
Web:www.syg
Tonnerre
--
SyGroup GmbH
Tonnerre Lombard
Loesungen mit System
Tel:+41 61 333 80 33Roeschenzerstrasse 9
Fax:+41 61 383 14 674153 Reinach BL
Web:www.sygroup.ch [EMAIL PROTECTED]
signature.asc
Description: This is a digitally
Tonnerre
--
SyGroup GmbH
Tonnerre Lombard
Loesungen mit System
Tel:+41 61 333 80 33Roeschenzerstrasse 9
Fax:+41 61 383 14 674153 Reinach BL
Web:www.sygroup.ch [EMAIL PROTECTED]
signature.asc
Description: This is a digitally signed message part
_
usual
directory traversal vulnerability. Yes, they also exist, but if so, it
needs to be fixed inside your tar program.
NetBSD and Solaris tar for example don't seem to have this
vulnerability. Nor does the dreaded GNU tar.
Tonnerre
--
SyGroup GmbH
Tonne
function was last
touched in 5.1.4.
Tonnerre
--
SyGroup GmbH
Tonnerre Lombard
Loesungen mit System
Tel:+41 61 333 80 33Roeschenzerstrasse 9
Fax:+41 61 383 14 674153 Reinach BL
Web:www.sygroup.ch [EMAIL PROTECTED]
signature.asc
Description: This
ing your build.
Binary patches, like with xdelta, don't share these problems. They do
have a whole lot of different problems though which invalidate the
measurement as well.
Tonnerre
--
SyGroup GmbH
Tonnerre Lombard
Loesungen mit System
Tel:+41 61 333 80 33Roe
e and caused a lot of amusement along us UNIX admins.
Tonnerre
--
SyGroup GmbH
Tonnerre Lombard
Loesungen mit System
Tel:+41 61 333 80 33Roeschenzerstrasse 9
Fax:+41 61 383 14 674153 Reinach BL
Web:www.sygroup.ch [EMAIL PROTECTED]
signature.asc
three-digit one.
So if the majority of people with an IQ higher than 100 have an IQ which
is a _lot_ above 100, this would mean that the amount of 419 victims is
actually _higher_ than 50% of the humanity.
Tonnerre
--
SyGroup GmbH
Tonnerre Lombard
Loesungen mit
whole thing cracked
open wide and Microsoft is still there and all well.
A few companies list a lot of equipment, but well. Why should Microsoft
be affected at all?
Anyway.
Tonnerre
--
SyGroup GmbH
Tonnerre Lombard
Loesungen mit System
Tel:+41 61 333
mply time out though.
Tonnerre
--
SyGroup GmbH
Tonnerre Lombard
Loesungen mit System
Tel:+41 61 333 80 33Roeschenzerstrasse 9
Fax:+41 61 383 14 674153 Reinach BL
Web:www.sygroup.ch [EMAIL PROTECTED]
signature.asc
Description: This is a digitally signe
--+
> 1 row in set (0.00 sec)
ASL? (Architecture, System, Live version)
Tonnerre
--
SyGroup GmbH
Tonnerre Lombard
Loesungen mit System
Tel:+41 61 333 80 33Roeschenzerstrasse 9
Fax:+41 61 383 14 674153 Reinach
Web:www.sygroup.ch [EM
ing readline 5.1
-> affected
mysql Ver 12.22 Distrib 4.0.18, for mandrake-linux-gnu (i586)
-> affected
Tonnerre
--
SyGroup GmbH
Tonnerre Lombard
Loesungen mit System
Tel:+41 61 333 80 33Roeschenzerstrasse 9
Fax:+41 61 383 14 674153 Reinach
Web:www.
Tonnerre
--
SyGroup GmbH
Tonnerre Lombard
Loesungen mit System
Tel:+41 61 333 80 33Roeschenzerstrasse 9
Fax:+41 61 383 14 674153 Reinach
Web:www.sygroup.ch [EMAIL PROTECTED]
signature.asc
Description: This is a digitally signed message part
s however a number of hacks around this, such as the elgooG
mirror...
Tonnerre
--
SyGroup GmbH
Tonnerre Lombard
Loesungen mit System
Tel:+41 61 333 80 33Roeschenzerstrasse 9
Fax:+41 61 383 14 674153 Reinach
Web:www.sygroup.ch [EMAIL PROTECTED]
sign
be handling the case has even the slightest idea
of the matter, usually. So if you have one index.html moved to
index.html.bak and a new index.html reading 'pwned', some companies are
already in the ten thousands of damages.
Tonnerre
--
SyGroup GmbH
Tonnerr
o bite Jason surely was one.
Wrong end, people...
Tonnerre
--
SyGroup GmbH
Tonnerre Lombard
Loesungen mit System
Tel:+41 61 333 80 33Roeschenzerstrasse 9
Fax:+41 61 383 14 674153 Reinach
Web:www.sygroup.ch [EMAIL PROTECTED]
signature.asc
Descr
-- Linus Benedict Torvalds
Tonnerre
--
SyGroup GmbH
Tonnerre Lombard
Loesungen mit System
Tel:+41 61 333 80 33Roeschenzerstrasse 9
Fax:+41 61 383 14 674153 Reinach
Web:www.sygroup.ch [EMAIL PROTECTED]
signature.asc
Description: This is
s is comparable in any way. Or are you aware
of any other security problems in the mainland right now?
Oh well, right, the charta. I'm sorry.
Tonnerre
--
SyGroup GmbH
Tonnerre Lombard
Loesungen mit System
Tel:+41 61 333 80 33Roeschenzerstr
rk and nearly 80% of the traffic are
actually legitimate. Why not block the Internet then? Most of the time
you don't get the bastard spamass anyway.
Tonnerre
--
SyGroup GmbH
Tonnerre Lombard
Loesungen mit System
Tel:+41 61 333 80 33Roeschenzerstrasse 9
tml
This is due to IP based defaults. Google looks different from different
countries. Walk around in the world with your laptop and you'll see what
I mean.
This is not a Tor vulnerability.
Tonnerre
--
SyGroup GmbH
Tonnerre Lombard
Loesungen mit
52 matches
Mail list logo