lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [day] [month] [year] [list] 
From: netw3_security at hushmail.com (Curt Wilson)
Subject: Dont give in to attempts to silence the FD list


a review...

Some time back there was a stated agenda from a "blackhat" group attacking
"whitehats" that included destroying Full-Disclosure and Bugtraq, or
at least get FD moderated, which would drive people away and therefore
"save a bug" somewhere in the process. Another tactic was the posting
of trojaned exploit code, often involving shellcode that opens up a backdoor
port on the local machine where the script kiddie/security professional/etc.
is attempting to run the exploit without fully checking what it does
(of course, trojaned code that UDP bombs NAI has also made it's rounds,
 as well as all sorts of other interesting things that are yet to be
discovered). So use care, and remember that the noise is something we
must live with, or apply filters to. This IS a noisy list, and unfortunately
I just added my own noise to it but no one had mentioned this stated
"blackhat" agenda that probably still exists.

Curt R. Wilson
Netw3 Security
www.netw3.com

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ