lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [day] [month] [year] [list] 
From: hellnbak at nmrc.org (hellNbak)
Subject: RE:  EMPIRICAL SECURITY ADVISORY 0x02

http://archives.neohapsis.com/archives/fulldisclosure/2002-q3/1211.html

Not to be picky but you have a couple errors in your advisory that I feel
I must correct.

> I was on the elevator the other day, going downstairs to get a cup of
> coffee the other day, when on the 2nd floor a herd of fucking CATTLE
> came on. These women were BIG.

If these women exceeded 166lbs each the elevator would have been far
beyond load.  A DoS in itself I would suspect.

Also your calculation of the unit "Manzuik" was way off.

> Steve Manzuik (hellNbak)
> Height: 5' 5"
> Width: 5' 5"
> Weight: 350lbs
> (this unit of measurement henceforth referred to as a "Manzuik")

It is more like Height:  6' 3"
                Width:   1' 3"
                Weight:  250lbs

And these numbers are not even exact.  Height can change with my state of
arrousal (hows that for a mental picture....) as can width.  Weight, well
that is easily plus or minus 30lbs depending on a number of factors.

So yeah, based on the numbers, and the forgotten gas ratio, you don't want
any more than 8 Manzuik on the elevator.  But most elevator contain
redundant cabling and braking systems so this vulnerability is nothing
but theoretical.

Boy, its nice to be loved enough that I get the honor of being used in
this example.  Do you mind if I attach this advisory to my resume, I am
sure I can drive up my consulting fees with it.


-- 
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-

"I don't intend to offend, I offend with my intent"

hellNbak@...c.org
http://www.nmrc.org/~hellnbak

-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-

PS:  Eat me bitch.

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ