- Original Message -
From: "Martin, Jeremy" <[EMAIL PROTECTED]>
To: "morning_wood" <[EMAIL PROTECTED]>
Sent: Friday, June 06, 2003 6:14 PM
Subject: "grammar"
Hi
I have never heard 0day or 0sec used the way others/you seem to use it on
Full Disclosure.. just the "traditional" use of the
Synopsis: Livejournal.com and livejournal systems are vulnerable
to remote file upload by anonymous users
Versions: all
Impact: Who cares ( maybe udp)
Description:
LiveJournal.com is a free service that allows you to create and customize
your very own "live journal" - a journal that
I recently tested an Iomega NAS A300U and discovered that it has several
security and inter-operability issues as outlined in the following.
Affected Systems:
<>
his housekeeping is leel?madsaxon <[EMAIL PROTECTED]> wrote:
At 01:17 PM 6/6/03 -0700, Matthew Kent wrote:>Keep on posting morning_wood, it's funny as hell :)>>Look I found his web cam! http://2x.x2.nu>>Maybe we can watch him write some 0sec in real-time!!!Hopefully his coding is more 7337 than his
At 01:17 PM 6/6/03 -0700, Matthew Kent wrote:
Keep on posting morning_wood, it's funny as hell :)
Look I found his web cam! http://2x.x2.nu
Maybe we can watch him write some 0sec in real-time!!!
Hopefully his coding is more 7337 than his housekeeping.
;-)
m5x
_
Then leave. No one wants you here anyway.
"fabio" is the name of a cruel dictator who got pants
before his peers by his mommy.
--- "Moraes, Fabio" <[EMAIL PROTECTED]> wrote:
>
> this list stinks.
>
> i give up.
>
> ---
> Fabio Moraes
> [EMAIL PROTECTED]
> +55 21 3088 9548
> ___
- Original Message -
From: "Len Rose" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Friday, June 06, 2003 9:28 AM
Subject: [Full-Disclosure] Administrivia: Charter Violations and
Self-Moderation
>
> We would like to ask everyone who feels the need to
> respond with one line comments t
Keep on posting morning_wood, it's funny as hell :)
Look I found his web cam! http://2x.x2.nu
Maybe we can watch him write some 0sec in real-time!!!
-mattk!
___
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-chart
On Fri, 6 Jun 2003, Zach Forsyth wrote:
> Date: Fri, 6 Jun 2003 10:20:34 +1000
> From: Zach Forsyth <[EMAIL PROTECTED]>
> To: eddie <[EMAIL PROTECTED]>, [EMAIL PROTECTED]
> Subject: RE: [Full-Disclosure] [OFFTOPIC] Zone Alarm
>
> Who are you the netiquette nazi?
>
No, the grammar nazi. You're mis
Schmehl, Paul L said:
> OK. Everyone else that feels compelled to tell the world that they are
> unsubscribing from this *unmoderated* list, please step forward and give
> your name, rank and serial number. Let's get this over with quick.
But what fun is that? I mean, while it is patently moron
There are many reports, threads I do not read on here as well, simply
because they are of no intrest. Im not going to read a detailed report of
some gentooo local exploit under a,b,c conditions in x,y,z module. So I skim
it, glean info if its there and dump it. One line comments... sometimes
peopl
For those interested, this is a exerpt of a conversation from a good
meaning,
but very misguided "professional"
note: there is no flaming here, just some mild shock in my reactions and
expressions
*** lamehat ([EMAIL PROTECTED]) has joined #0sec
<@morning_wood> hi
Why would I be getting port sca
yer speshul :)
- Original Message -
From: "eddie" <[EMAIL PROTECTED]>
To: "Zach Forsyth" <[EMAIL PROTECTED]>
Cc: <[EMAIL PROTECTED]>
Sent: Thursday, June 05, 2003 5:28 PM
Subject: RE: [Full-Disclosure] [OFFTOPIC] Zone Alarm
> On Fri, 6 Jun 2003, Zach Forsyth wrote:
>
> > Date: Fri, 6 Jun
On Fri, 6 Jun 2003, Zach Forsyth wrote:
> Date: Fri, 6 Jun 2003 10:42:21 +1000
> From: Zach Forsyth <[EMAIL PROTECTED]>
> To: eddie <[EMAIL PROTECTED]>
> Cc: [EMAIL PROTECTED]
> Subject: RE: [Full-Disclosure] [OFFTOPIC] Zone Alarm
>
> Thanks for playing:
>
> > However, Quirk's Exception: Intention
On Thu, 5 Jun 2003, Anne Carasik wrote:
> Date: Thu, 5 Jun 2003 15:48:32 -0700
> From: Anne Carasik <[EMAIL PROTECTED]>
> To: Ed Carp <[EMAIL PROTECTED]>
> Cc: [EMAIL PROTECTED], [EMAIL PROTECTED],
> [EMAIL PROTECTED]
> Subject: Re: [Full-Disclosure] impending 0day
>
> Wow. This is as much fu
-
-
EXPL-A-2003-003 exploitlabs.com Advisory 003
-
-
-=- newsphp -=-
Thursday Jun
This is a dead thread to me. I am replying to list because it adds a
little value to the already OFF TOPIC discussion.
Ron DuFresne wrote:
[SNIP]
'A HW firewall can only block at the protocol level for an entire
machine but can not reliably deny access for one program and allow
access for anot
On Thu, 05 Jun 2003, Chris Garrett wrote:
> I've had enough, and sending a single message to the offenders via personal
> e-mail is far from sufficient, at this point. On various ocassions I have sent
> personal emails to those who are pushing off-topic discussions, amongst several
> other somewha
- Original Message -
From: <[EMAIL PROTECTED]>
Sent: Thursday, June 05, 2003 5:24 PM
Subject: Re: Cracking preshared keys
> In-Reply-To: <[EMAIL PROTECTED]>
>
> A friend of mine from Checkpoint has told me that this is not tota
>
WARNING THIS SENT SOME FORM OF VIRUS
http://www.nsfoc
On Thu, 5 Jun 2003, Ben Tyson-Norrman wrote:
> Date: Thu, 5 Jun 2003 18:11:07 +0100
> From: Ben Tyson-Norrman <[EMAIL PROTECTED]>
> To: [EMAIL PROTECTED]
> Subject: RE: [Full-Disclosure] [OFFTOPIC] Zone Alarm
>
> As I started this one - can I put a stop to it...
>
> What was it I read the other da
> The users bought a car. Is it too much to expect that they
> drop some cash to buy bumpers, seat belts, and air bags to
> protect their investment? They don't have understand HOW
> those work(*), only that it does.
>
> Like it or not, the computer industry has collectively
> avoided any sort
Paul Schmehl wrote:
> Off course you're right. My point, which I obviously made ineptly, is
> that *everything* must be patched at some point, so the idea that you
> install a DSL router and just forget about it was what I was trying to
> get at. There *is* no panacea for security. It's an ongo
We would like to ask everyone who feels the need to
respond with one line comments to someone elses
inflammtory message to try to restrain themselves
because you are becoming part of the problem.
Those who feel the need to respond to a particularly
stupid or offensive post please only respond t
[SNIP]
>
> 'A HW firewall can only block at the protocol level for an entire
> machine but can not reliably deny access for one program and allow
> access for another program when they are using like protocols from the
> same machine.'
>
Still incorrect, as it seems folks are talking abo
this list stinks.
i give up.
---
Fabio Moraes
[EMAIL PROTECTED]
+55 21 3088 9548
___
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
Hi all,
The second issue in this advisory is the same as reported by Nesumin.
However, Secunia has been waiting for Opera Software to fix these
vulnerabilities and therefore, we have not released our research until
now.
Unfortunately, while we were waiting for the vendor fix, the second
vulnerab
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Mandrake Linux Security Update Advisory
Package name: kon2
Advisory ID:
hopefully opensource :-)
- Original Message -
From: "Doug Stewart" <[EMAIL PROTECTED]>
To: "André Luís Quintaes Guimarães" <[EMAIL PROTECTED]>
Cc: <[EMAIL PROTECTED]>
Sent: Thursday, June 05, 2003 3:00 PM
Subject: Re: [Full-Disclosure] Blackhats of the World Unite!
> Let's all chip in an
As of 9am June 06, 2003 the newsPHP vulnerability I reported in
EXPL-A-2003-003 has been corrected, verified
and no longer poses a security threat as reported.
Donnie Werner and exploitlabs.com express their thanks and kudos to newsPHP
for a very prompt resolve.
Full Disclosure works, have your s
Zone alarm has quite a history on the bugtraq archives. It's something
folks should check into when considering most products/applications.
As for personal 'windows' based firewalls, I have other favorites over
zone alarm and not all tied to a history of problems. Ease of use and how
well the
What about the odd SNMP buffer overflow? Even if they can't get control
they can DOS you. Depending on the hardware I might be able to download
the config and crack any configuration passwords you have.
If it doesn't provide a service needed by public addresses, why expose
yourself? I see the ques
-BEGIN PGP SIGNED MESSAGE-
__
SuSE Security Announcement
Package:cups
Announcement-ID:SuSE-SA:2003:028
Date: Fri Jun 6 1
The terminology might be suspect. perhaps rather then using the term
hardware firewalls those devices that have hit the market in full the past
few years might be better deemed blackboxes, sine few allow one to get to
the real OS to 'tweak'. Afterallthey do have an OS, it';s just kept out
of the
Wow. This is as much fun as watching my adolescent brothers fight. :)
-Anne
Ed Carp grabbed a keyboard and typed...
> > Shut up, ed.
>
> No, *you* shut up. Stay out of something that's none of your business.
> ___
> Full-Disclosure - We believe in it.
There are no Greyhats!
Only Blackhats and Whitehats. If you think you are a Greyhat, you are probably a Blackhat in heart.
This is a holy call for the destruction of all WHITEHATS!
Magenta
"Magenta's coming over, Magenta's coming over. Magenta's coming over, and we gonna have a lot of fun!"
Shawn McMahon <[EMAIL PROTECTED]> wrote:
<>
> There are people on the Internet for whom their PC represents a year's
> labor, and a new router represents months. ...
Which rather neatly sums the whole problem up in one sentence.
Odd as this will seem to many of today's (relative) youth, there w
Let's all chip in and get him a dictionary. It's the kind thing to do in this
situation.
- Original Message -
From: morning_wood
To: Blue Blue ; [EMAIL PROTECTED]
Sent: Thursday, June 05, 2003 3:48 PM
Subject: Re: [Full-Disclosure] Blackhats of the World Unite!
al
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
All good points, but irrelevant in the face of an OpenBSD firewall
solution.
- - Brad Bemis
- -Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]
Sent: Thursday, June 05, 2003 2:09 PM
To: Schmehl, Paul L
Cc: [EMAIL PROT
Please admin rule the list it's getting more and more lam'
I don't think the aim of the list is to replace "firewall for dummies"
books, or I discovered 0d4y'z it's l33t.
Let me know (off list) if I'm wrong , and I'll sign off, but those past 40's
mails are getting under the level of the real FD m
On Thu, 05 Jun 2003 10:17:57 CDT, "Schmehl, Paul L" <[EMAIL PROTECTED]> said:
> I wasn't going to respond to that because it was so patently obvious,
> but since you did, I'll append this note - I have flashed my DSL router
> three times since I bought it. I've had it for about a year. (It's not
Title: RE: [Full-Disclosure] impending 0day
Okay - I'll say it...
"no *you* shut up"
"make me"
"I will, so"
"you do my bruver will duff you up"
"Well my bruver is bigger than your bruver, so he'll duff you up, and your bruver as well"
"Well my dad will kick your bruver and you right into nex
If you follow Cisco's suggested work-around for SNMP causes high CPU
utilization you might be exposing the write community string.
http://www.cisco.com/en/US/tech/tk648/tk362/technologies_tech_note09186a00800948e6.shtml
has the following instructions:
To avoid performance issues, force the rou
-BEGIN PGP SIGNED MESSAGE-
__
SuSE Security Announcement
Package:pptpd
Announcement-ID:SuSE-SA:2003:029
Date: Fri Jun 6
OK. Everyone else that feels compelled to tell the world that they are
unsubscribing from this *unmoderated* list, please step forward and give
your name, rank and serial number. Let's get this over with quick.
Paul Schmehl ([EMAIL PROTECTED])
Adjunct Information Security Officer
The University
Off course you're right. My point, which I obviously made ineptly, is
that *everything* must be patched at some point, so the idea that you
install a DSL router and just forget about it was what I was trying to
get at. There *is* no panacea for security. It's an ongoing,
never-ending process of
How old are you? 10?
- Original Message -
From:
morning_wood
To: Blue Blue ; [EMAIL PROTECTED]
Sent: Thursday, June 05, 2003 3:48
PM
Subject: Re: [Full-Disclosure] Blackhats
of the World Unite!
along the lines of what im feeling... [EMAIL PROTECTED]
do
On Thu, 05 Jun 2003 08:49:20 PDT, "Robert J. Liebsch" said:
> The users bought a computer, they bought broadband. Is it too much to expect
> that they drop some cash to protect their investment. They don't have to
> understand HOW it works, only that it does.
The users bought a car. Is it too mu
> Shut up, ed.
No, *you* shut up. Stay out of something that's none of your business.
___
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
I am glad I will not see you on the founding charter section on 0day / 0sec
to answer your very rude comments.
1. My email address is not relevant to my capacity as a thinker or a human.
2. I only have the use of one hand, and tend to type fast on a bad
keyboard.
I do not use a spellchecker, and
Title: RE: [Full-Disclosure] List Direction and Future
My apologies to all but I am unsubscribing due to the S/N ratio on this list.
I do wish you all luck 'tho.
-Original Message-
From: morning_wood [mailto:[EMAIL PROTECTED]]
Sent: Friday, June 06, 2003 12:55 AM
To: [EMAIL PROTECTED
Glad your done, hopefully, there's someone close to them to get hardware.
But your assumption that you need to install hardware THEN install software
is wrong. Not every one requires this, the linksys being one that requires 0
software. Also, most people who are ALREADY on the net are there via DHC
Hi,
Regardless of what security researchers may do, I was wondering if the
vendors which make up OIS are willing to lead by example by immediately
practicing their proposed guidelines? If they walk the talk, there
could be a bit more confidence that the OIS is not just in the business
of issuing
Title: RE: [Full-Disclosure] [OFFTOPIC] Zone Alarm
Zone
alarm works, but the free version tends to eat processor and memory because of
the "learning" of the software. So while its not really a hole, it can be
cumbersome and negatively affect performance of the host PC. This is a known
featur
boo fucking hoo.Earl Keyser <[EMAIL PROTECTED]> wrote:
Reply to: Wood - language6/5/03I, for one, am sick and tired of Wood's snotty attitude and foul mouth.Wood, if you want to be accepted and listened to, learn some good manners.This message has been scanned for viruses. ISD#284__
Title: Message
What about Grey
hat's (if there is such a thing, Sorry I am new to the "security"
world)? Oh, and because I have posted this I expect to get
flamed just like everyone else that posts to this list as
well.
Jonathan Grotegut
-Original Message-From: Blue Blue
Do you realize how hard it is to take you seriously? Get a real email
address instead of a hotmail account, learn to spell, cut out the childish
profanity, and TURN YOUR HTML OFF!
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] Behalf Of morning_wood
Sent: Thursday, J
On Thu, Jun 05, 2003 at 01:54:49PM -0400, JT said:
> order to support your argument. How many people have a BEST BUY near them??!
> No, they'd "order" it the same way they "order" ZA, by clicking some links
> and providing some info. After that, the setup is easier, please show me
Exactly; and if
Sigh.. Thanx for your contribution..-Original Message-From: Martin Ekendahl [mailto:[EMAIL PROTECTED] Sent: Friday, June 06, 2003 2:32 PMTo: [EMAIL PROTECTED]This list has too much Jibba, and not enough JABBA!--/*"To avoid all evil, to cultivate good,and to cleanse one's mindthis is the
Here's a question for you. Which would you prefer?
1) An uninformed user plugs in a router and thinks they are now safe
from any and all exploits without having to do anything else - ever.
2) An uninformed user who downloads and installs a PFW and then
discovers that all sorts of applications he'
along the lines of what im feeling... [EMAIL PROTECTED]
dont ask, dont tell, dont ridicule the poster... interested? seems alot are.
Real 0sec for real info, whitehat collegeboy fullof sarcasim from disconjointed
fragment of a reply or obvious "bents" "IM RIGHT DAMIT SEE MY POINT" where a
I know you are speaking primarily about ZoneAlarm Pro, Plus and any other
single user ZoneAlarm that Zone Labs has, but, you are missing their
enterprise product - ZoneAlarm Integrity. If your users can't be trusted or
handle a SW Firewall why not use one that you can remotely manage. You can
set u
Do any of you realize how hard it is to investigate
a 0day im realasing today??? ( hell I discovered it 20 minuts ago )
DONT FRET YOUL GET 1 OUT OF THE 3 REAL INFO
TODAY
http://exploitlabs.com "saving Full
Disclosure'a ass from boredom"
One other thing, SW firewalls are necessary in addition to HW firewalls not
instead of either of them alone. What do you do when you are in a hotel
room? I'm not carrying a HW firewall. Next time you are staying a hotel try
a ping scan. I've done it twice one time I found a couple dozen machines
This list has too much Jibba, and not enough JABBA!
--
/*
"To avoid all evil, to cultivate good,
and to cleanse one's mind
this is the teaching of the Buddhas."
Martin Ekendahl
http://www.hardlined.com
[EMAIL PROTECTED]
*/
___
Full-Disclosure - We b
This is in reference to: http://news.com.com/2100-1002_3-1013423.html
- Forwarded message from Len Rose <[EMAIL PROTECTED]> -
Date: Thu, 5 Jun 2003 13:13:48 -0400
From: Len Rose <[EMAIL PROTECTED]>
To: [EMAIL PROTECTED]
Subject: pseudo-authoritative disclosure guidelines
Message-ID: <[EMA
This just came in. It seems like a virus, if you ask me, there was
a file application/ms-download attached, named photo.exe. My virus
scanners did not detect anything, but since I haven't seen this
before, I thought I'd let you know.
Original attachment attached as encrypted ZIP file with p/w
'dan
Hey, I totally agree that some security is better than none at all. But I
also have yet to have a problem getting a person to get a routerif they
have an issue, then by all means, I'd rather go PFW than nothing at all.
Apparently YOU would have us believe a user would GO TO BEST BUY vs just
ord
Please stop adding me as first recipient and do not send me a copy.
It is some how annoying to receive 2 copies of the same email with lame
content.
So, your wise solution:
Unplug everything until users RTFM and/or spend another 70 dollars on a
simple LinkSys NAT device.
No. You ?
The users boug
Hello morning_wood,
FIXED!
thanks
please change the story as issue is - FIXED
regads
George Dougla
NewsPHP.com
Friday, June 6, 2003, 5:05:51 AM, you wrote:
m>-
m> -
m> EXPL-A-2003-003 exploitlab
- Original Message -
From: "Shawn McMahon" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Thursday, June 05, 2003 6:22 AM
Subject: Re: [Full-Disclosure] [OFFTOPIC] Zone Alarm
>> Theres nowhere for the packets to go.. and please, when was the last time
> >anyone here had to flash a perso
ROCK ON WOOD!
This message has NOT been scanned for viruses.
BS#90210
--- Earl Keyser <[EMAIL PROTECTED]> wrote:
> Reply to: Wood - language
>
>
>
>
>
>
>
> 6/5/03
> I, for one, am sick and tired of Wood's sno
I wasn't going to respond to that because it was so patently obvious,
but since you did, I'll append this note - I have flashed my DSL router
three times since I bought it. I've had it for about a year. (It's not
a LinkSys or a NetGear router. It's an SMC Barricade.)
In case anyone hasn't notic
>- Original Message -
>From: "Shawn McMahon" <[EMAIL PROTECTED]>
>To: "Full-Disclosure" <[EMAIL PROTECTED]>
>Sent: Thursday, June 05, 2003 6:31 AM
>Subject: Re: AW: [Full-Disclosure] Zone Alarm
>
>How much time do
>you spend monitoring your grandmother's computer for suspicious
>processes?
Title: RE: [Full-Disclosure] [OFFTOPIC] Zone Alarm
As I started this one - can I put a stop to it...
What was it I read the other day, if you call someone a Nazi then officially that's the end of the thread...
Okay I'm going to call me, [EMAIL PROTECTED], erstwhile postee in html, user of
- -
- APPLAUSE -
- -
- Original Message -
From: "JT" <[EMAIL PROTECTED]>
To: "'Shawn McMahon'" <[EMAIL PROTECTED]>; <[EMAIL PROTECTED]
Blackhats of the world must unite to destroy all whitehats who continue to oppress everyone.
Destroy them! Destroy them!
Whitehats must CEASE and DESIST all activity relating to security.
Love,
Blue's Clue's
(Magenta's coming for you!)
Do you Yahoo!?
Free online calendar with sync to Ou
Title: RE: [Full-Disclosure] Zone Alarm
My statement was not that
HW firewall are useless and that everyone should switch from HW Firewalls to SW
Firewalls. Of course HW Firewalls are a strong protection for any corporate
network. In our Network we also have a HW Firewall and the Internet S
It is worth noting that the application filtering of zone alarm and
other such "personal firewalls" is trivial to work around. There have
been a number of articles on it (google for them). One brief example:
Hostile process spawns iexplore.exe with a URL that "phones home".
iexplore.exe is almost
http://www.secnetops.biz/research
Secure Network Operations, Inc. http://www.secnetops.com
Strategic Reconnaissance Team [EMAIL PROTECTED]
Team Lead Contact [EMAIL PROTECTED]
Our Mission:
**
Title: Re: [Full-Disclosure] [OFFTOPIC] Zone Alarm
So, your wise solution:
Unplug everything until users RTFM and/or spend another 70 dollars on a simple LinkSys NAT device.
The users bought a computer, they bought broadband. Is it too much to expect that they drop some cash to protect their
On Thu, Jun 05, 2003 at 11:13:04AM -0400, JT said:
> This is a lame basis for your argument. You provide 2 vulnerabilities that
> are old. Everything has vulnerabilities, I will not waste my time search ZA
It wasn't a basis for my argument. It was a specific answer to a
specific assertion, which
Wow, if everyone's $0.02 on this issue were put in a pot and shipped off to Africa, I
think we'd buy a lot of little home firewalls for the folks NOT in South Africa where
they can apparently afford them.
Here's my $0.02.
Buying a dedicated firewall appliance is my first recommendation. This
Release Date: 06.06.2003
Application:Synkron.web 3
Vendor: http://www.synkron.com/
Category: XSS
Risk: Low
Vendor Status: Absend
Author: Torben 'Gyrniff' Frohn
Intro
Synkron.web 3 is a module based CMS
From: "Robert J. Liebsch" <[EMAIL PROTECTED]>
To: "Michael Reilly" <[EMAIL PROTECTED]>, "Schmehl, Paul L"
<[EMAIL PROTECTED]>, "Kurt Seifried" <[EMAIL PROTECTED]>
CC: "Ben Tyson-Norrman" <[EMAIL PROTECTED]>,
<[EMAIL PROTECTED]>
Subject: RE: [Full-Disclosure] [OFFTOPIC] Zone Alarm
Date: Wed,
Reply to: Wood - language
6/5/03
I, for one, am sick and tired of Wood's snotty attitude and foul mouth.
Wood, if you want to be accepted and listened to, learn some good manners.
This message has been scann
79657865786535
after this crap message
From: Paul Ottar Tornes
[mailto:[EMAIL PROTECTED] Sent: Friday, June 06, 2003 8:51
AMTo: [EMAIL PROTECTED]
Jibberi bjabbiry dabbiry jabb
jabb babb bnlaa
Why not start a web forum? You have 79657865786534
new mails!
The information in this
From: "Robert J. Liebsch" <[EMAIL PROTECTED]>
To: "Schmehl, Paul L" <[EMAIL PROTECTED]>
CC: <[EMAIL PROTECTED]>
Subject: RE: [Full-Disclosure] [OFFTOPIC] Zone Alarm
Date: Wed, 4 Jun 2003 18:57:12 -0700
worse than HTML email... Exchange
worse than Exange... it's Users.
*eep*
Please continue.
I hav
This is a lame basis for your argument. You provide 2 vulnerabilities that
are old. Everything has vulnerabilities, I will not waste my time search ZA
for one, it's in there, it's a proven statistic. Now, explain to me how
having one of your uninformed users make a decision for every app that wants
Again, using ZA puts the choices in the uninformed users hands, they decide
whether to use it or not, give them the router and you have taken that
choice away.
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Shawn McMahon
Sent: Thursday, June 05, 2003 9:3
On Thu, Jun 05, 2003 at 12:07:45AM -0400, JT said:
> I don't quite understand here. A user generally has WAY more options/ways to
> make a mistake interacting with Zone Alarm vs say, a Linksys firewall. Yes,
> the user will not know how to flash it, and will not stay up to date with
> any updates,
Hi,
On 05 Jun 2003 at 20:04 +0200, Jonathan Grotegut wrote:
> What about Grey hat's (if there is such a thing, Sorry I am new to
> the "security" world)?
In the real world "white" and "black" are just oversimplications of
"grey". Those who fall for simple classifications usually fell for
other
Hey I resent that.. " Do you honestly expect the six million in Africa to all go out and buyrouters?"I love in south africa and we propably have better equipment than u willever have :PRegards S-Original Message-From: Shawn McMahon [mailto:[EMAIL PROTECTED] Sent: Thursday, June 05, 2003 3
On Wed, Jun 04, 2003 at 08:35:05PM -0700, morning_wood said:
>
> Theres nowhere for the packets to go.. and please, when was the last time
> anyone here had to flash a personal style router / switch
> within the past 2 years... dont go esoteric on us now..
Perhaps you should read security bulleti
-
Red Hat Security Advisory
Synopsis: Updated hanterm packages provide security fixes
Advisory ID: RHSA-2003:070-01
Issue date:2003-06-06
Updated on:2003-06-06
Product: R
On Wed, Jun 04, 2003 at 08:37:50PM -0700, morning_wood said:
>
> you must have really crappy admin if you need per application blocking
> ( hint: kill the process )
hint: most people on the Internet don't have admins. How much time do
you spend monitoring your grandmother's computer for suspici
Jibberi bjabbiry dabbiry jabb jabb babb
bnlaa
Why not start a web forum? You have 79657865786534
new mails!
On Wed, Jun 04, 2003 at 04:03:57PM -0500, Schmehl, Paul L said:
>
> There *are* cases where "not so great" security is better than "really
> great" simply because "really great" won't get used and "not so great"
> is therefore better (than nothing.) It's all well and good that experts
And I woul
> Comments to that draft (sent to [EMAIL PROTECTED]) will be
> accepted for 30 days.
Am I right in reading this paper that it shall basically do
zero-disclosure until the vendor had enough time to fix the problem
before a single, coordinated release?
--
martin; (greetings from the
On Wed, Jun 04, 2003 at 10:30:15PM -0400, JT said:
> I always thought it was illogical to let packets reach the machine I'm
> trying to protect. I'd rather pass through a dedicated machine. Are there
> any advantages TO using a production machine as a firewall??
Well, 80% of attacks are internal,
99 matches
Mail list logo
