lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list] 
From: lorenzohgh at nsrg-security.com (Lorenzo Hernandez Garcia-Hierro)
Subject: file inclusion (les visiteurs)

Hi Chris,
Good reply , that's it .
I think too that advice people of security issues is not exploiting them in
thw wild with 0day exploits.
But , check the shellcodes of the exploits , i think that kiddies don't look
at them ;-)

Best regards,
-------------------------------
0x00->Lorenzo Hernandez Garcia-Hierro
0x01->\x74\x72\x75\x6c\x75\x78
0x02->The truth is out there,
0x03-> outside your mind .
__________________________________
PGP: Keyfingerprint
4ACC D892 05F9 74F1 F453  7D62 6B4E B53E 9180 5F5B
ID: 0x91805F5B
**********************************
\x6e\x73\x72\x67
\x73\x65\x63\x75\x72\x69\x74\x79
\x72\x65\x73\x65\x61\x72\x63\x68
http://www.nsrg-security.com
______________________
----- Original Message ----- 
From: "Christian Horchert" <chorchert@...dev.de>
To: "Full-Disclosure" <full-disclosure@...ts.netsys.com>
Cc: "gazpa" <gazpa@...kalnet.net>
Sent: Tuesday, December 02, 2003 3:21 AM
Subject: Re: [Full-Disclosure] file inclusion (les visiteurs)


> Hi gazpa!
>
> Am 02.12.2003 um 01:09 schrieb gazpa:
> > Don't blame people who is only intending to advise people about
> > a bug that is being exploited.
>
> I cannot really follow you here: Scanning websites, running exploit
> code, injections etc. on foreign servers without permission and blame
> the admins by making it public to guerradigital, delta5 and zone-h
> isn't exactly what I would call "intending to advice people", sorry.
>
> But maybe I'm wrong ...
>
>    Christian
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.netsys.com/full-disclosure-charter.html
>
>

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ