lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list] 
Message-ID: <1061335814.32228.371.camel@tesuji.nac.uci.edu>
From: strombrg at dcs.nac.uci.edu (Dan Stromberg)
Subject: SCO Web Site Vulnerable to Slapper?


I wouldn't put it past SCO to leave up a vulnerable linux server so they
can complain about "those nasty linux people breaking into us" and "see
how insecure linux is?"

On Tue, 2003-08-19 at 14:35, Justin Shin wrote:
> No I think SCO deserves whatever is coming to them if they really are vulnerable, because they are a bunch of jackasses. I don't think anyone can disagree with me here.
> 
> -- Justin
> 
> -----Original Message-----
> From: full-disclosure-admin@...ts.netsys.com
> [mailto:full-disclosure-admin@...ts.netsys.com]On Behalf Of KF
> Sent: Tuesday, August 19, 2003 5:42 AM
> To: Gherkin McDonalds
> Cc: full-disclosure@...ts.netsys.com; security@...dera.com;
> security@....com
> Subject: Re: [Full-Disclosure] SCO Web Site Vulnerable to Slapper?
> 
> 
> did you talk to security@...dera.com? probably a better place to start 
> than a full-disclosure mailing list.
> -KF
> 
> Gherkin McDonalds wrote:
> > They seem to be running Apache/1.3.14 (Unix)
> > mod_ssl/2.7.1 OpenSSL/0.9.6 PHP/4.3.2-RC on Linux,
> > which,
> > if I have my facts straight, is vulnerable to
> > <URL:http://www.cert.org/advisories/CA-2002-27.html>.
> > 
> > Am I correct?
> > 
> > __________________________________
> > Do you Yahoo!?
> > Yahoo! SiteBuilder - Free, easy-to-use web site design software
> > http://sitebuilder.yahoo.com
> > _______________________________________________
> > Full-Disclosure - We believe in it.
> > Charter: http://lists.netsys.com/full-disclosure-charter.html
> > 
> 
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.netsys.com/full-disclosure-charter.html
> 
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.netsys.com/full-disclosure-charter.html
-- 
Dan Stromberg DCS/NACS/UCI <strombrg@....nac.uci.edu>

-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20030819/c907b955/attachment.bin

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ