| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
From: frank at knobbe.us (Frank Knobbe) Subject: Re: DoomJuice.A, Mydoom.A source code On Mon, 2004-02-09 at 22:29, Riad S. Wahby wrote: > I asked people to email me personally; in doing so, I was attempting > to contact those who might be of assistance. Moreover, by attempting > to do so in a personal context (off-list) I've implied that I'm > willing to confirm my identity and describe in greater detail my > intentions. As far as I can tell, I have ignored no "ethical issues" > in attempting to establish a dialogue with those who might help me. I don't want to start a discussion about your validity, and it is not my intention to discredit you in any way. According to your resume you are doing some cool stuff (although more focused on hardware apparently). I think what raises concern is that your buddy Ian Martin describes you as a "H4x0r gra|\|d3". There is no need for you to confirm your identity when MIT's servers give plenty of information about you. I hope all goes well for your graduation this summer. As for the code, have you tried catching the bug with a honeypot? I heard of people using netcat listening on port 3127 to catch the bug... Regards, Frank -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 187 bytes Desc: This is a digitally signed message part Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20040210/05d24f51/attachment.bin
Powered by blists - more mailing lists