-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hi
It gives me great pleasure to announce that I have secured a new home
for the Full-Disclosure mailing list. The list will now be hosted at
lists.grok.org.uk with immediate effect.
I'll post a new list charter soon to confirm addresses, bu
hting
___
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
___
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
like license.
http://creativecommons.org/licenses/by-sa/2.0
signature.asc
Description: OpenPGP digital signature
_______
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
Any idea if the hashcash plugin for spamassassin is affected?
___
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
like license.
http://creativecommons.org/licenses/by-sa/2.0
signature.asc
Description: OpenPGP digital signature
_______
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
Or is this
> because I have been playing around with the bulzano2.jpg!!!
>
>
> thank you
> Randall M
>
> "If we ever forget that we're one nation under God, then we will be a nation
> gone under."
> - Ronald Reagan
> _____
hints on searching ARIN's
WHOIS database.
Send instant messages to your online friends http://uk.messenger.yahoo.com
___
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
t; thank you
> Randall M
>
> "If we ever forget that we're one nation under God, then we will be a
> nation gone under."
> - Ronald Reagan
> _
>
>
>
>
> ___
> Full-Disclosure - We believe in it.
> Charter: http://lists.netsys.com/fu
thank you
Randall M
"If we ever forget that we're one nation under God, then we will be a nation
gone under."
- Ronald Reagan
_
_______
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
-
Message: 8
Date: Fri, 4 Mar 2005 15:03:10 -0600
From: Andrey Bayora <[EMAIL PROTECTED]>
Subject: [Full-Disclosure] Bypass of 22 Antivirus software with GDI+
bug exploit Mutations - part 2
To: full-disclosure@lists.netsys.com
Cc: bugtraq@securityfocus.com
M
-
___
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
ra.
CISSP, GCIH
___
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
I will be out of the office starting 19.02.2005 and will not return until
16.03.2005.
Verð kominn aftur 16. mars.
___
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
Dear Full-Disclosure readers,
Bellua Cyber Security Asia 2005 early bird registrations are about to
close, you can save 40% if you register this week.
Due to unforeseen circumstances, Black Hat Asia 2005 has been
cancelled. Don't despair,
BCS2005 in Jakarta is just one hour away from Sing
ntelligible text ;)
Yes but win2k / winxp regedit can export both ASCII as well as UNICODE -
aditya
Delivered using the Free Personal Edition of Mailtraq (www.mailtraq.com)
_______
Hello,
I'd like to know if there are any sites with forensic challenges like
those from http://project.honeynet.org/misc/chall.html , but a little
more active ;-)
Thanks
___
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com
-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
within. Though I like how you softly framed the statement to
reinforce that speaking implied ignorance. I'm rather surprised you've
the gall to actually type this on a Full-Disclosure list.
Whether this is an "epidemic" as you call it, is debatable as well. This
just smells like mor
iQA/AwUBQikAPJVtI2Y58IG/EQJbjQCfe0KzZvFRQhzIImxBsbaOBvmQOTcAoIwk
0mFNuwmsx2F3efahYd3bU3mT
=yPeF
-END PGP SIGNATURE-
_______
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
> the future.
D> To cut a long story short, the term spyware is basically a marketing
D> gimmick: just to separate new ersatz-security products from
D> traditional ones, just to push almost zero-value products to the
D> security market.
D> We need to a
t;addiction" takes on a different expressive form; or...
Personally I find outrageous that we continually mis-classify and over
simplify cultural problems and try to devise such technological
solutions to limit human behavior. The fact that this was honestly
posted to Full-Disclosure as a ser
TURE-
___
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
-
___
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
2000-07-10 Linux Mandrake Security Team
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.2.4 (GNU/Linux)
iD8DBQFCKNKgmqjQ0CJFipgRAgTYAKCmLxHBXnqa0eGv2NVSsBpVy2wAQQCg5OEb
JvZp2gvYfJQ6y+ZoNMMaqfo=
=t+kW
-END PGP SIGNATURE-
___
Full-Disclosure - We
y than false alarms and/or users with a misplaced
sense of safety."
___
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
(GNU/Linux)
iD8DBQFCKNGmmqjQ0CJFipgRAkkuAJ9JhXEDunqTrXkT0BARjvvrjHEMZwCgxI+w
3REK8OF4tdIuoEGrIsguS2k=
=N53O
-END PGP SIGNATURE-
___
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
Dh+b9YfE=
=OWdi
-END PGP SIGNATURE-
___
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
___
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
er on the lid to only provide H20 when
drank? AA would be cheaper and more effective.
--
dk
___
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
and who is slashdotted." - David Brandt
_______
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
s more up-front, and possibly more effective, than the spyware you
were originally proposing (yes, it is spyware. Your goals may be considered
noble by some, but it would still be spyware).
Also note that the whole idea may, depending on who you ask, be technically
flawed and morally wrong.
ature.asc
Description: OpenPGP digital signature
___
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
ure.asc
Description: OpenPGP digital signature
_______
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
that it would be nice if we could schedule and plan all of our
> emergencies according to policy. :-)
>
> Cheers,
>
> Jason Coombs
> [EMAIL PROTECTED]
>
___
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
ignature.asc
Description: OpenPGP digital signature
_______
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
nux)
Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org
iD8DBQFCJ5TFeRy7HWZxjWERAsIwAKDBSx8NYcLqnZp2CT5PbNZrWA7JtACeJAOF
yeFe14aXtMfbp/oA6c9cWTY=
=kdrl
-END PGP SIGNATURE-
___
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
when it comes to hatred of spy ware. I've been
making a pretty decent living for years securing people's computers.
--
Matt
_______
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
arch 03, 2005 2:40 PM
To: full-disclosure@lists.netsys.com
Subject: Re: [Full-Disclosure] Bios programming...
On Thu, Mar 03, 2005 at 01:44:39PM -0500, Matt Marooney wrote:
>I am trying to write a program to help people who are addicted to
internet
>pornography.
That is very ni
way to figure out "bad" requests on a packet level.
You're lucky!
Yes, this can be done on TCP Level, I suggest to read RFC 3514.
Libpcap is your friend.
I really appreciate any help with these questions! Thank you all,
-- Matt
Happy coding!
-phil
Regsnap does the pre and post scan
http://lastbit.com/regsnap/default.asp
regards
-Original Message-
From: Cassidy Macfarlane [mailto:[EMAIL PROTECTED]
Sent: 03 March 2005 16:14
To: Danny
Cc: full-disclosure@lists.netsys.com
Subject: RE: [Full-Disclosure] Windows Registry Analzyer
follow.
>
> I agree that it would be nice if we could schedule and plan all of our
> emergencies according to policy. :-)
>
> Cheers,
>
> Jason Coombs
> [EMAIL PROTECTED]
> ___
> Full-Disclosure - We believe in it.
> Charter:
)
--
Best regards,
Raoul Nakhmanson-Kulish
Elfor Soft Ltd.,
IT Department
http://www.elforsoft.ru/
___
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
ith such features
anyhow ) other than missuse of the harvested information.
-d.
___
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
se Firefox.
VIII. Credit
Discovery: upken
Additional Research: bitlance winter
BEST REGARDS.
--
bitlance winter
_
Dont just search. Find. Check out the new MSN Search!
http://search.msn.click-url.com/go/onm00200636ave/direct/01/
___
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
al instrctions on the net.
Delivered using the Free Personal Edition of Mailtraq (www.mailtraq.com)
_______
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/ful
Hello full-disclosure,
I want to implement function in my security program to enumerate all
dll's that windows will load and attach to processes using
keyboard/mouse Hook method.
Windows does not have functions to do this by legal API.
So my question is maybe someone already engineered str
he two files
>
> Mark Handy
>
> -Original Message-
> From: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED] On Behalf Of Eric
> Windisch
> Sent: 03 March 2005 21:48
> To: Dave Korn
> Cc: full-disclosure@lists.netsys.com
> Subject: Re: [Full-Disclosure] R
so. Ever since then,
there's only been one vendor of multi-user operating systems that thought that
running with "more than usual" privs is a sane way to do things.
pgpJ56w2NzMYL.pgp
Description: PGP signature
___
Full-Disclosure -
trctions on the net.
Delivered using the Free Personal Edition of Mailtraq (www.mailtraq.com)
_______
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
up and other
> tools like this do this job very nicely - aditya
>
>
>
> Delivered using the Free Personal Edition of Mailtraq (www.mailtraq.com)
> ___
> Full-Disclosure
(without the admin password, of course), and invisble to
>operate.
tell me how me people are going to use a guest accont on their own computer
and then be able to use the computer normally ?
-aditya
_______
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
Surely you can simply export before and after your action and use
windiff on the two files
Mark Handy
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Eric
Windisch
Sent: 03 March 2005 21:48
To: Dave Korn
Cc: full-disclosure@lists.netsys.com
Subject
look like u want to hook your girl friend's or bosses
computer. better watch where u are asking question :)
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Matt
MarooneySent: Friday, March 04, 2005 12:15 AMTo:
full-disclosure@lists.netsys.comSubject:
mailto:[EMAIL PROTECTED]
Sent: Thursday, March 03, 2005 3:57 PM
To: Matt Marooney
Cc: full-disclosure@lists.netsys.com
Subject: Re: [Full-Disclosure] Bios programming...
On Thu, 03 Mar 2005 15:33:09 EST, Matt Marooney said:
The intent of the BIOS portion of the program was just to have a small
ying to
curb their own behavior". Seems like this list needs more people like
that! ;)
-- Matt
-Original Message-
From: Randall Perry [mailto:[EMAIL PROTECTED]
Sent: Thursday, March 03, 2005 4:17 PM
To: full-disclosure@lists.netsys.com
Cc: Matt Marooney
Subject: RE: [Full-Disclosure]
f a free tool like this exist but norton cleanup and other
tools like this do this job very nicely - aditya
Delivered using the Free Personal Edition of Mailtraq (www.mailtraq.com)
______
be they should seek out a mental health
professional, cleric, or trusted friend. They are less likely to be
abused or exploited.
In short, don't create new problems trying to solve old ones.
I doubt this will change your course, but now I've said my piece on it.
Cheers,
-- whump
___
ltraq.com)
_______
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
____
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
inconclusive results.
[1] http://bugs.gentoo.org/show_bug.cgi?id=81958
// Ulf Härnhammar
bufoflow1.ace
Description: Binary data
___
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
-imported.
Have you ever opened a .reg file?
--
Eric Windisch <[EMAIL PROTECTED]>
_______
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
oombs
[EMAIL PROTECTED]
_______
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
plant
___
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
/licenses/by-sa/2.0
pgp808kLumHZd.pgp
Description: PGP signature
___
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
help with these questions! Thank you all,
-- Matt
_______
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
ssage-
From: Randall Perry [mailto:[EMAIL PROTECTED]
Sent: Thursday, March 03, 2005 4:17 PM
To: full-disclosure@lists.netsys.com
Cc: Matt Marooney
Subject: RE: [Full-Disclosure] Bios programming...
The program in question is quite legitimate in nature and already exists
in several forms.
In
nd in this outgoing message.
Checked by AVG Anti-Virus.
Version: 7.0.308 / Virus Database: 266.6.0 - Release Date: 3/2/2005
___
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
of this document are licensed under the
Creative Commons - Attribution / Share Alike license.
http://creativecommons.org/licenses/by-sa/2.0
pgpDtvxUY4Pxo.pgp
Description: PGP signature
_______
Full-Disclosure - We believe in it.
Charter: http://lis
e project,
it sounds noble at root.
RP
--
No virus found in this outgoing message.
Checked by AVG Anti-Virus.
Version: 7.0.300 / Virus Database: 266.5.1 - Release Date: 2/27/2005
_______
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
e of a deterrent than anything
else.
I know that I have had a bear of a time removing spyware in the past,
maybe we can leverage that technology for good somehow.
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]
Sent: Thursday, March 03, 2005 3:57 PM
To: Mat
it somehow.
>
> The main program would run from the disk, not the BIOS.
>
>
> -Original Message-
> From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]
> Sent: Thursday, March 03, 2005 3:19 PM
> To: Matt Marooney
> Cc: full-disclosure@lists.netsys.com
> Subject
ojects/tlr-regedit
~Mike.
___
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
will almost certainly use it
*itself*
to stop people from doing exactly the sort of code insertion you're trying to
do.
So you're *still* screwed. :)
pgpMUByEipWpC.pgp
Description: PGP signature
___
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
Christian
Leber
Sent: Thursday, March 03, 2005 2:40 PM
To: full-disclosure@lists.netsys.com
Subject: Re: [Full-Disclosure] Bios programming...
On Thu, Mar 03, 2005 at 01:44:39PM -0500, Matt Marooney wrote:
>I am trying to write a program to help people who are addicted to
internet
>pornogra
ctually signs up for the service. If
they
don't, the usual name for this sort of thing is "spyware". :)
pgpv8ysUb1gja.pgp
Description: PGP signature
_______
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
raid by installing the retail BIOS for the RAID version of the same chipset.
~Mike.
_______
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
mp
___
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
rab
a snapshot, do (x), and grab a comparison snapshot agian under BART --
thus avoiding all the other volitle crud that changes between Windows
reboots).
~Mike.
___
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
le
to delete (without the admin password, of course), and invisble to
operate.
Thanks for the comments!
-- Matt
-Original Message-
From: Paul J. Morris [mailto:[EMAIL PROTECTED]
Sent: Thursday, March 03, 2005 8:46 PM
To: [EMAIL PROTECTED]
Subject: Re: [Full-Disclosure] Bios progra
r IDS, that tries to do that - particularly
in terms of the size of the binary, and the system load impact. And then ask
yourself if something that big is easily hidden inside the BIOS functionality
(and consider carefully how many vendors ship totally borked ACPI DSDT's or
just bro
Internet more extensively. Unfortunately, even I can think of some easy
ways to bypass such a system.
--
Hawaiian Astronomical Society: http://www.hawastsoc.org
HAS Deepsky Atlas: http://www.hawastsoc.org/deepsky
_______
Full-Disclosure - We believe in it.
Charter
;ll have to google for it though. It was
originally given away by some PC magazine or other, but they've restricted
access to their archives now. See what you can find.
cheers,
DaveK
--
Can't think of a witty .sigline today
____
Sent: Thursday, March 03, 2005 3:19 PM
To: Matt Marooney
Cc: full-disclosure@lists.netsys.com
Subject: Re: [Full-Disclosure] Bios programming...
On Thu, 03 Mar 2005 13:44:39 EST, Matt Marooney said:
> 1. I would like the program to be "un-installable". I've heard of a
Did y
ministration.
Regards
Christian Leber
[1] If that is true, I'm sorry that i gave food to it.
--
http://www.nosoftwarepatents.com
___
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
: Gerry Eisenhaur [mailto:[EMAIL PROTECTED]
Sent: Thursday, March 03, 2005 2:28 PM
To: Matt Marooney
Subject: Re: [Full-Disclosure] Bios programming...
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Matt,
I too am interested in un-installable apps. Do you know that name of the
application you are
ted, but should be mostly
> accurate.
No, it would be completely useless. In case you didn't realise, the
registry is not an ASCII text file, it's megabytes of unintelligible binary
gibberish.
cheers,
DaveK
--
Can't think of a witty .sigline today
____
Page -
http://www.pcworld.com/downloads/file_description/0,fid,19540,00.asp
-Todd
> -Original Message-
> From: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED] On Behalf
> Of Frank Knobbe
> Sent: Thursday, March 03, 2005 11:54 AM
> To: Danny
> Cc: Full-Disclosure (E-
'm wondering if there is a way to figure out
"bad" requests on a packet level.
I really appreciate
any help with these questions! Thank you all,
--
Matt
_______
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
regsnap http://lastbit.com/regsnap
Ken
Danny wrote:
Anyone know of any free tools to analyze what changes have been made
to a Windows 2000/XP registry?
Thanks,
...D
___
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure
'm not
sure if they are still around or got bought. Unfortunately it's not a
free tool though.
Regards,
Frank
signature.asc
Description: This is a digitally signed message part
___
Full-Disclosure - We believe in it.
Charter: http://lists
of various machines which should have an
identical configuration to help detect worms. Create a web-based
registry editor. Have them automatically printed, faxed, emailed,
telephoned (text->speech), etc.
Good luck.
--
Eric Windisch <[EMAIL PROTECTED]>
______
ing better than
regmon for this purpose?
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Danny
Sent: 03 March 2005 15:36
To: Full-Disclosure (E-mail)
Subject: [Full-Disclosure] Windows Registry Analzyer
Anyone know of any free tools to analyze what changes
That's it so far. I will post my results.
Cheers,
...D
...D
___
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
Windows 2000/XP registry?
>
> Thanks,
>
> ...D
> _______
> Full-Disclosure - We believe in it.
> Charter: http://lists.netsys.com/full-disclosure-charter.html
>
___
Full-Disclosu
___
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
___
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
Danny wrote:
Anyone know of any free tools to analyze what changes have been made
to a Windows 2000/XP registry?
Thanks,
...D
___
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
try Regshot. Didin
ne know of anything better than
regmon for this purpose?
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Danny
Sent: 03 March 2005 15:36
To: Full-Disclosure (E-mail)
Subject: [Full-Disclosure] Windows Registry Analzyer
Anyone know of any free tools to analyze wh
Anyone know of any free tools to analyze what changes have been made
to a Windows 2000/XP registry?
Thanks,
...D
___
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
e. No person or entity is allowed
> to interfere with the capability of another person or entity to interest
> others in doing business, or continuing to do business, with them, by any but
> fair means of competition.
> http://www.lectlaw.com/def2/t061.htm
> Doing so results in a cause of action t
Hello Frederic,
Thursday, March 3, 2005, 1:27:17 PM, you wrote:
FC> hi list !
FC> I seeking a source code to retrieve Internet Explorer stored passwords,
FC> like Can&Abel do.
FC> If someone had this...
FC> Fred
FC> _______
FC
1 - 100 of 29088 matches
Mail list logo