lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [thread-next>] [day] [month] [year] [list] 
From: toddtowles at brookshires.com (Todd Towles)
Subject: why o why did NASA do this.

I meant this outdated NASA e-mail list. I undestand that FD could be
used for this purpose.

The fact that NASA just hands you this information (outdated or not) is
pretty sad. As I stated before it is free information leakage at best
and because it is outdated it should be removed from public view. This
could be used for social attacks and e-mail attacks. I don't think
SPAMmers care about some 6 year old list but hackers would. Any
information that they can get free of charge is just that much better.

You know me better than that GuidoZ .....lol 

> -----Original Message-----
> From: GuidoZ [mailto:uberguidoz@...il.com] 
> Sent: Tuesday, October 19, 2004 1:24 AM
> To: Todd Towles
> Cc: full-disclosure@...ts.netsys.com
> Subject: Re: [Full-Disclosure] why o why did NASA do this.
> 
> > how would this list help me spam?
> 
> Google your email address - then simply use a bot to gather 
> ALL the email addresses listed in the posts along with it. ;) 
> The sad fact is that the email addresses used to post to this 
> list (and any others like it) are freely there for the 
> taking. Plus, it's quite obvious they are active. (More 
> obvious then, say, email addies fro 1996?) ;)
> 
> --
> Peace. ~G
> 
> 
> On Mon, 18 Oct 2004 11:02:00 -0500, Todd Towles 
> <toddtowles@...okshires.com> wrote:
> > Exactly as I stated eariler...this is just information 
> leakage...old 
> > as it might be, it helps...the people on the list are just 
> doing their 
> > jobs...getting paid and giving information to a employee that knows 
> > their name (and is higher in the company) seems harmless. 
> Spam isn't 
> > the issue with this information leakage, I can buy a CD 
> with 6 million 
> > e-mail address on it...how would this list help me spam?
> > 
> > 
> > 
> > > -----Original Message-----
> > > From: full-disclosure-admin@...ts.netsys.com
> > > [mailto:full-disclosure-admin@...ts.netsys.com] On Behalf Of 
> > > KF_lists
> > > Sent: Monday, October 18, 2004 9:06 AM
> > > To: Harry de Grote
> > > Cc: full-disclosure@...ts.netsys.com
> > > Subject: Re: [Full-Disclosure] why o why did NASA do this.
> > >
> > >
> > > Forget about the spammers, how about social engineers. 
> This is quite 
> > > the gold mine for that.
> > >
> > > Hi this is Joe Schmoe from building 69 I need to have my password 
> > > reset.
> > > -KF
> > >
> > >
> > > >
> > > > i have to admit... it's pretty old and useless, but i think
> > > this may
> > > > be a nice place for spammers to try out some new adresses...
> > > >
> > >
> > > _______________________________________________
> > > Full-Disclosure - We believe in it.
> > > Charter: http://lists.netsys.com/full-disclosure-charter.html
> > >
> > 
> > _______________________________________________
> > Full-Disclosure - We believe in it.
> > Charter: http://lists.netsys.com/full-disclosure-charter.html
> >
>

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ