lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [thread-next>] [day] [month] [year] [list] 
Message-ID: <200302112308.h1BN8E6q062531@mailserver2.hushmail.com>
From: ddhs at hushmail.com (ddhs@...hmail.com)
Subject: Re: OPENSSH REMOTE ROOT COMPROMISE ALL VERSIONS

-----BEGIN PGP SIGNED MESSAGE-----

*35* days ago, Global InterSec Research wrote:

> As some may have gathered, the advisory recently posted by
> mmhs@...hmail.com was indeed a fake, intended to highlight several
> unclear statements made in GIS2002062801.
>
> The advisory in question is currently being updated with more
> detailed information and will be re-posted at:
> http://www.globalintersec.com/adv/openssh-2002062801.txt as soon as
> it becomes available.

Still waiting...

Also, the advisory written by our cousins (the Mickey Mouse Hacking
Squadron) was not a "fake" since they confirmed that the research
presented in this advisory was indeed performed by the Mickey Mouse
Hacking Squadron and that they believed their results were accurate
since they thought the results published by Global InterSec were
accurate as well...

What we, proud members of the Donald Duck Hacking Squadron, do not
understand, is why Global InterSec needs more than one month to correct
a few "unclear statements" in their advisory... who published a fake
advisory already?

Love,
Donald Duck Hacking Squadron
-----BEGIN PGP SIGNATURE-----
Version: Hush 2.2 (Java)
Note: This signature can be verified at https://www.hushtools.com/verify

wlkEARECABkFAj5Jgq0SHGRkaHNAaHVzaG1haWwuY29tAAoJEHEGHAClK+6gW5EAoInx
0s76eY1stBgdZ9LT7kAjT2LfAJwP6Mw2gE1pBi7mvncUrzC1S7JonQ==
=/vov
-----END PGP SIGNATURE-----




Concerned about your privacy? Follow this link to get
FREE encrypted email: https://www.hushmail.com/?l=2 

Big $$$ to be made with the HushMail Affiliate Program: 
https://www.hushmail.com/about.php?subloc=affiliate&l=427

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ