Yes perhaps I'm being a little close minded.
I know that WFP can be switched off and all that, but this is real life. We
don't have the luxury of 1 single domain controlling all our clients, we
are talking multiple NT/2000/2003 domains, multiple OS's, multiple Admins.
I am complaining (more the
Does anyone actually *knows* if KPF 2 and the Tiny versions are
vulnerable to this? Kerio's web page says:
...
Has anyone seen exploits for this circulating?
Just tried on my box : TPF v2.0.15A built on 22/10/2001 is not
vulnerable to the K-Otik exploit.
Curt, as XP can have its bells whistles shut
down to perform as 2K can, your preference must
be security related. Would you be spcefic, or
should I just read every advisory again? This
perplexes me as M$ at least eventually patch XP
while 2K is entering its next life.
You don't have to
- Original Message -
From: Curt Purdy [EMAIL PROTECTED]
To: [EMAIL PROTECTED]; [EMAIL PROTECTED]
Cc: [EMAIL PROTECTED]
Sent: Sunday, November 14, 2004 11:59 PM
Subject: RE: [in] Re: [Full-Disclosure] IE is just as safe as FireFox
Upgrade W2K to XP? I call that a downgrade! I won't
- Original Message -
From: Geo [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Sent: Monday, November 15, 2004 9:58 PM
Subject: Re: [Full-Disclosure] XP vs 2K
Curt, as XP can have its bells whistles shut
down to perform as 2K can, your preference must
be security related. Would you be
Hello, Curt Purdy!
Upgrade W2K to XP? I call that a downgrade! I won't allow XP (sp2 or not)
on my network.
Agreed, I feel 2K to be more reliable than XP too. But mainly this is
only my feeling, could you explain and prove it by more solid arguments
than feelings?
--
Best regards,
Raoul
May be the case, since many e-mail providers filter messages with known
worms. Personally I hate this because I always want to handle my mail
myself, but I understand it's useful for prone-to-click-attachments users.
- Original Message -
From: Andrew Smith [EMAIL PROTECTED]
To: [EMAIL
Hello, [EMAIL PROTECTED]
Can the Firefox settings be controlled centrally?
Yes, and more flexible than IE versions zoo at user computers. Download
a Firefox ZIP (not Firefox_Setup_1.0.exe but Firefox 1.0.zip), unpack it
to R/O share on file server, edit JS configuration files in
.\defaults\pref
Paul Schmehl pontificated on 11/12/2004 11:51:17 AM:
--On Thursday, November 11, 2004 02:21:23 PM -0200 [EMAIL PROTECTED]
wrote:
Depending on your state/county/whatever, your vote did count
a LOT LESS
than other votes. It all depends on how many electoral college
votes your
state has.
Clues to Gmail's future have made an appearence since the
implementation of the e-mail forwarding service. In the help section,
Gmail admits forwarding will only be free during the beta testing
period.
I feel the Gmail we have at the moment, will not be the same free
version we get once the
Ah the mind control police, we cannot discuss the security of the
voting process or the diebold machines but all other security issues
are fair game until you say its ok.
Thanks for the mind-control bs moment SS-Uber-unter-unter-Uber-unter-Uber Geek
Fuhrer.
Jan Clairmont
Firewall
I came across a useful webproxy application (for windows) that allowed
me to manipulate the headers of page requests, both plain and secure.
Now daft me has since changed machines in my office, and lost the
bookmark and the download.. Been a while since I used it, so can't even
remember it's
Sorry list, I just couldn't resist..
*Electoral votes vs. Population [1]
StatePopulation Votes Votes / M pop.
-
Alaska 648,818 34.624
Wyoming 501,242 35.985
Texas22,118,509 341.537
I guess
--- n3td3v [EMAIL PROTECTED] wrote:
Clues to Gmail's future have made an appearence
since the
implementation of the e-mail forwarding service. In
the help section,
Gmail admits forwarding will only be free during the
beta testing
period.
I feel the Gmail we have at the moment, will not
On 14 Nov 2004, at 09:19, Michael Rutledge wrote:
On Fri, 12 Nov 2004 17:50:14 -0500 (EST), Len Rose [EMAIL PROTECTED]
wrote:
I've been wanting to share this with people for a long time,
as things wind down for me, I've (finally) decided to release this.
OT. Don't want to hear it. Try Orkut or somewhere else.
G
On or about 2004.11.15 17:18:16 +, Florian Weimer ([EMAIL PROTECTED]) said:
Sorry list, I just couldn't resist..
*Electoral votes vs. Population [1]
StatePopulation Votes Votes / M pop.
SPIKE Proxy still works. :
-dave
Andrew Poodle wrote:
I came across a useful webproxy application (for windows) that allowed
me to manipulate the headers of page requests, both plain and secure.
Now daft me has since changed machines in my office, and lost the
bookmark and the download.. Been a
Burp proxy is one I like using for this kind of stuff.
http://www.portswigger.net/proxy/
On Mon, 15 Nov 2004 15:38:21 -, Andrew Poodle [EMAIL PROTECTED] wrote:
I came across a useful webproxy application (for windows) that allowed
me to manipulate the headers of page requests, both plain
* Paul Schmehl:
--On Monday, November 15, 2004 05:18:16 PM +0100 Florian Weimer
[EMAIL PROTECTED] wrote:
The problem isn't so much the weighting (it's even more extreme in the
senate), but the the winner gets it all principle adopted in most
states. This means that both election campaigns
Good Morning Everyone,
Ha! I'd like to add my two cents to this discussion.
with XP, I sometimes get the feeling like the OS (get
this) doesn't trust me to config the system the way
*I* want. For example, I decided one day to disable
some services (server, messenger, etc) for security,
the same
I think that this corporate policy will have far more impact on your company
than on Microsoft. As more and more people and companies deploy XP2, it
makes me wonder if you should just consider leaving the Microsoft market
entirely.
As to why it isn't on Windows Update... I would guess that is
it's clean :-)
-Original Message-
From: Michael Rutledge [mailto:[EMAIL PROTECTED]
Sent: Sunday, November 14, 2004 12:19 PM
To: [EMAIL PROTECTED]
Subject: Re: [Full-Disclosure] Administrivia: Fool Disclosure
Anyone check this image for GDI+ exploit? lol
-Michael
On Fri, 12 Nov 2004
--On Sunday, November 14, 2004 06:02:41 PM +1100 Dave Horsfall
[EMAIL PROTECTED] wrote:
Let me see if I have this right, as this could well be a computer
security issue (the reported discrepancies between the exit polls and
the actual vote, with an interesting correlation to the actual
Can anyone suggest a free/opensource/shareware app that can do this, as
I'm doing some testing on our new corporate website before it goes live.
Plenty of stuff available for that - if you want a native win32 app, try
Odysseus:
www.wastelands.gen.nz/odysseus/index.php
If you don't mind Java,
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Why should we feel any better...
What about the libpng exploit... :)
/gerry
Andrew Farmer wrote:
| On 14 Nov 2004, at 09:19, Michael Rutledge wrote:
|
| On Fri, 12 Nov 2004 17:50:14 -0500 (EST), Len Rose [EMAIL PROTECTED]
| wrote:
|
| I've been wanting
--On Monday, November 15, 2004 05:18:16 PM +0100 Florian Weimer
[EMAIL PROTECTED] wrote:
The problem isn't so much the weighting (it's even more extreme in the
senate), but the the winner gets it all principle adopted in most
states. This means that both election campaigns do not care a bit
anyone familiar with this group (media-motor.net/Roings.com) ? they
seem to be sending downloader.trojan files to unsuspecting people
using everyone.net webmail accounts.
http://mmm.media-motor.net/soft/default.exe
the webmail i discovered it on was from sunguru.com
tries to download that file
How is it an example?
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Dave Aitel
Sent: Monday, November 08, 2004 9:49 AM
To: Michal Zalewski
Cc: Berend-Jan Wever; [EMAIL PROTECTED];
[EMAIL PROTECTED]
Subject: Re: [Full-Disclosure] MSIE srcname property
-Original Message-
From: [EMAIL PROTECTED] [mailto:full-disclosure-
[EMAIL PROTECTED] On Behalf Of Ag. System Administrator
Sent: Sunday, November 14, 2004 7:47 AM
To: Rafel Ivgi, The-Insider
Cc: [EMAIL PROTECTED]
Subject: Re: [in] Re: [Full-Disclosure] IE is just as safe as
I don't know how your club works.
Do you report to MS as well or just within your club that you charge people
to be part of? Has MS responded to you if you did report it? What was their
response that makes WINS a classic example?
joe
-Original Message-
From: Dave Aitel
__
SUSE Security Announcement
Package:samba
Announcement-ID:SUSE-SA:2004:040
Date: Monday, Nov 15th 2004 18:00 MEST
What in the event log is telling you Server service not running is causing
your BSDs? I run that way on 4 out 6 XP machines here at home.
joe
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of
[EMAIL PROTECTED]
Sent: Monday, November 15, 2004 11:47 AM
Everytime a Firefox exploit comes out..there is already a fix...
is that magic? No..it is good coding...
What?
Having a quick fix out is due to low complexity of issue and assisted by a
lack of dependencies so you have reduced time for patching and testing. It
has nothing to do with code
Did anyone war drive on election day? Wonder if any of the facilities
were THAT dumb...
-KF
___
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
can you convert it to plaintext for us please? I think that would work
nicely no plain text vulns that I can think of...
- Original Message -
From: Gerry Eisenhaur [EMAIL PROTECTED]
To: Andrew Farmer [EMAIL PROTECTED]
Cc: Michael Rutledge [EMAIL PROTECTED];
[EMAIL PROTECTED]
Sent:
How to Hack the Vote
http://www.chuckherrin.com/hackthevote.htm
I am going to show you, step by step and with screenshots, how an attack
against our election system could very easily steal a Statewide or even a
National election without leaving a trace. This attack would be easy to
carry
On Mon, 2004-11-15 at 11:46, Andrew Farmer wrote:
It's clean. Here's a PNG version, if you're still feeling paranoid.
Is *that* clean of the last PNG overflow exploit? (Aug 10, 2004)
Which leads to the question, which is a safe graphics file format? BMP
perhaps?
Cheers,
Frank
signature.asc
A nice movie indeed. =) I'd have to agree that it is certainly a
problem/limitation that they should address.
One program I've used for years (freeware) is from Mark over at
AnalogX.com - called ScriptDefender. Google it for more info or pop
over and see it at www.analogx.com. Good stuff!
I think we should keep this discussion going as long as
we are able, just to frustrate the thought police Nazi's
on this group. It is really ironic that a legitimate discussion
of electronic voting and Diebold and other voting systems, that
are not secure, is considered off-limits by some
On Sun, Nov 14, 2004 at 11:53:46PM -0600, JxT wrote:
The BSD layer is based on the BSD kernel, primarily FreeBSD. That
information is available on Apple's Developer Site.
OSX is based on the Mach kernel, not the bsd kernel.
Apple selected OPENSTEP to be the basis for the successor of the
If you guys are serious about finding out how and who is screwing up the
voting process I suggest you start here (cuyahoga county ohio)
http://www.boe.cuyahogacounty.us/boe/results/currentresults1.htm
a quick look at how the total votes outnumber the registered voters for
ORANGE CSD
WOODMERE
i don't suppose you noticed 3do has been gone from the gaming scene for
years, did you?
should we expect any buffer overflow in wolf3d/spear of destiny any time
soon?
have a nice day.
- Original Message -
From: Luigi Auriemma [EMAIL PROTECTED]
To: [EMAIL PROTECTED]; [EMAIL PROTECTED];
- Original Message -
From: joe [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Sent: Tuesday, November 16, 2004 5:37 AM
Subject: RE: [in] Re: [Full-Disclosure] IE is just as safe as FireFox
I think that this corporate policy will have far more impact on your company
than on Microsoft. As more
###
Luigi Auriemma
Application: Hired Team: Trial
http://eng.nmg.ru/rubrs.asp?rubr_id=165
and probably also the Shine engine on which it is based
Sorry list, I just couldn't resist..
*Electoral votes vs. Population [1]
StatePopulation Votes Votes / M pop.
-
Alaska 648,818 34.624
Wyoming 501,242 35.985
Texas22,118,509 341.537
I guess
Why use Gmail?
A HREF=http://www.omnilect.com; TARGET=_blankhttp://www.omnilect.com/A
offers 2GB for free (with
Windows use a HOSTS file to block the banner ad
servers) or for about $2 a month you can do what you
like with it (POP3/SMTP etc etc)
Regards
Steve
Want more?
On Mon, Nov 15, 2004 at 12:02:16PM -0600, Paul Schmehl wrote:
Instead, you vote for a bunch of people who will vote on your behalf,
usually by ignoring the popular vote and casting it 100% for their party.
No. The problem with the system is that the relation between the votes a
state has in
-BEGIN PGP SIGNED MESSAGE-
__
SUSE Security Announcement
Package:samba
Announcement-ID:SUSE-SA:2004:040
Date: Monday,
* Paul Schmehl:
--On Monday, November 15, 2004 07:25:58 PM +0100 Florian Weimer
[EMAIL PROTECTED] wrote:
http://www.sbe.state.va.us/Election/Electoral_College.htm
http://www.usconstitution.net/consttop_elec.html
http://www.spies.com/Forums/showthread.php?threadid=404
And what's your
On Sun, 14 Nov 2004, Gregory Gilliss wrote:
One comment about XP2 - the company where I work (which produces
security networking appliances) has a corporate policy - we do not
support XP2. Sales hates this (because all the numbnuts out there
are pulling SP2 down with autoupdate and they have
Anyone ever check out the way AIM stores passwords?
The hash is in the registry and reusable. I'm not sure there's a good way to
save the passwords but by copying the hash and making the proper registry keys
you can use the hash on any other computer. I had some code to do this that
would
Why would/should forwarding (for gmail) be free? If you are
forwarding the mail, then Google gets no way to incorporate Sponsored
Links.
I'd rather have the Sponsored Links on the page were they are right
now (at the bottom), then ads embedded into the message itself.
On Mon, 15 Nov 2004
===
Ubuntu Security Notice USN-25-1 November 15, 2004
libgd2 vulnerability
CAN-2004-0941
===
A security issue affects the following Ubuntu releases:
Ubuntu 4.10 (Warty
That's a good question for your Microsoft sales rep. If you want
technical details, Immunity has a working and reliable Wins exploit in
the Vulnerability Sharing Club version of CANVAS. I think there's an
interesting difference between how the Linux community handled the
recent kernel bugs,
Joe,
http://www.immunitysec.com/services-sharing.shtml has the answers to
your questions about the Immunity VSC, but my point was specifically
about bugs that Microsoft knew about, but didn't think the public did.
In Linux's case, said bugs would have a detailed advisory. In
Microsoft's case,
Rafel Ivgi, The-Insider wrote:
Firefox is not intgrated to the OS, because it doesn't have an OS.
Its just a trimmed Mozilla for windows..
Not exactly... it's a mozilla core in a native application, as opposed
to an interpreted XUL front-end. It's a bit faster in both GNU/Linux
and Windows.
file is a MSVB exe, here are some fun strings from the binary...
( spyware, but not a trojan )
http://www.maxmind.com:8010/a?l=PeAyF1sgrZYwi=\tempf.txt
\usta32.ini
http://mmm.media-motor.net/bundle.php?aff=\affbun.txt
phases
sewers
outers
c:\asdf.txt
randomdll
mydll
randomocx
\regsvr32 /s
Multiple Security Vulnerabilities in Fcron
iDEFENSE Security Advisory 11.15.04
www.idefense.com/application/poi/display?id=157type=vulnerabilities
November 15, 2004
I. BACKGROUND
Fcron is a periodical command scheduler which aims at replacing Vixie
Cron, and implements most of its
- Original Message -
From: [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Sent: Tuesday, November 16, 2004 12:34 AM
Subject: Re: [in] Re: [Full-Disclosure] IE is just as safe as FireFox
Quoting Raoul Nakhmanson-Kulish [EMAIL PROTECTED]:
Hello, Curt Purdy!
Upgrade W2K to XP? I call
bkfsec wrote:
Rafel Ivgi, The-Insider wrote:
Firefox is not intgrated to the OS, because it doesn't have an OS.
Its just a trimmed Mozilla for windows..
Not exactly... it's a mozilla core in a native application, as opposed
to an interpreted XUL front-end. It's a bit faster in both GNU/Linux
I'm going to take a moment here to feel sorry for Windows users who even
have to be worried about looking at an image.
Ron Bowes
-Original Message-
From: Andrew Farmer [mailto:[EMAIL PROTECTED]
Sent: Monday, November 15, 2004 11:46 AM
To: Michael Rutledge
Cc: [EMAIL PROTECTED]
Subject:
Professional responses like that *really* make me wanna go
out and pay for Eudora.
-KF
Steve Dorner wrote:
At 5:23 AM +1100 11/14/04, Paul Szabo wrote:
Some cases remain un-fixed, as Eudora developers know and admit
privately.
We knew nothing of the kind, nor did we admit anything
At 5:23 AM +1100 11/14/04, Paul Szabo wrote:
Some cases remain un-fixed, as Eudora developers know and admit privately.
We knew nothing of the kind, nor did we admit anything of the kind.
You simply decided you wanted to interpret what I said to you that
way.
Your issue is obscure and difficult
So move out of the country. Like someone said before, IF john kerry even had
the inclination that he could have one, you know they would have sued, and
vise versa, and to my current knowledge the ONLY talk of any of this is
right here on this message list, I have not seen it on TV, or the news
Title: Re: [Full-Disclosure] IE is just as safe as FireFox
Can the Firefox settings be controlled
centrally?Yes, and more flexible than IE versions zoo at user computers.
Downloada Firefox ZIP (not Firefox_Setup_1.0.exe but Firefox 1.0.zip),
unpack itto R/O share on file server, edit JS
This looks like a new version of what was mentioned in Follow The
Bouncing Malware, Part III
(http://isc.sans.org/diary.php?date=2004-11-04). The main thing it
installs appears to be the 180solutions spyware.
AnthraX101
On Mon, 15 Nov 2004 13:06:22 -0500, Brandy Simon [EMAIL PROTECTED] wrote:
66 matches
Mail list logo