lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Message-ID: <20030830142403.GW4074@Bragi.private.network>
From: mds at helices.org (Michael D Schleif)
Subject: Authorities eye MSBlaster suspect

Valdis.Kletnieks@...edu [2003:08:29:20:56:30-0400] scribed:
> On Fri, 29 Aug 2003 15:47:22 CDT, Jerry Heidtke said:
> 
> > It looks like it took the FBI 6 days to find what took 10 minutes on
> > Google. Let's see, executable name is teekids.exe, here's a
> 
> No, given that it only hit 7,000 systems, it probably took 5 days before they
> got a copy of the binary and somebody who was computer forensics trained and
> not allocated to the main Blaster or Nachi work, and get them to the same place
> at the same time....
> 
> And then a very long afternoon documenting the steps they took using Google.
> Remember that it's OK for *us* to say "yeah, that's probably him".  The FBI
> does it, they have to make *really* sure they aren't googling for the wrong
> 'teekid' - first they have to convince a judge they have the right guy, and if
> they still screw up and bash down the door of a 97-year-old woman who dies of a
> heart attack of fright (yes, that DID happen recently), they end up with
> serious egg on their faces.

OK, they nabbed a nickel-bagger; let's not get carried away!

This kid is small potatoes, compared to other vermin spreaders, and we
-- on this list, at least -- know that as fact.

It's one thing to make an example of this kid; it's quite another thing
to put a lid on this whole wormy Internet thingy . . .

-- 
Best Regards,

mds
-
Dare to fix things before they break . . .
-
Our capacity for understanding is inversely proportional to how much
we think we know.  The more I know, the more I know I don't know . . .
--
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20030830/3f5aeb42/attachment.bin

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ