lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [day] [month] [year] [list] 
From: adam at vattnet.net (Adam Balogh)
Subject: Re: new openssh exploit in the wild! *isFAKE
	AS SH@!*

Adam wrote:
> Probably a scriptkiddie or some random idiot. The fun part 
> was it came up totally different offsets then i mean TOTALLY 
> different each time you ran it and if you gave it a offset it 
> would "work" no matter what. For those people who ran it.. 
> change all your 
> passwords. :)

Paul Schmehl wrote:
> Why bother?  If you were stupid enough to run that obvious piece of
> crap, changing your password is the least of your worries.  (In fact, if
> you run *anything* that's posted here without first checking it out
> thoroughly or if you don't understand code at all, you might as well run
> up the white flag right now.)

First of all we didnt run it without checking what is was. And my change
your password comment was directed to those ppl who ran it without
knowing what it was. Which i indeed knew and therefor ran it on a
isolated labmachine. So i dont know to whom your unneccesary commentary
was directed to?

/Adam

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ