lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list] 
Message-ID: <40618059.5030304@egotistical.reprehensible.net>
From: ge at egotistical.reprehensible.net (Gadi Evron)
Subject: viruses being sent to this list

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

As I got a response from the managers, I am happy. And I took it off-list.

They asked for us to send any responses to them directly rather than
on-list, and I did. However, this has now become a different thread, so
I will try and contribute.

The samples below could have been detected by any AV using signatures
alone. Thus, without any heuristics, not risking false positives or
requiring more time spent on moderation.

If anything, it should help out on moderating all the viruses that get
sent from off-list addresses, by saving time, and with no risk of new
stuff not getting to the list due to a false positive.

Also, it might be a good idea to amend the list's charter to include an
"if you use this list, it is under your own blah blah and viruses get
sent, blah blah". For future protection.

Such disclaimers don't *really* mean much legally, but they are something.

	Gadi Evron.

| 3368     Mar 22 ge@...tistical. ( 421) [Full-Disclosure] Re: Thanks :)
| 3369     Mar 11 bugzilla@...hat ( 420) [Full-Disclosure] Hi! :-)
| 3370     Mar 16 nexus@...rol.i- ( 425) [Full-Disclosure] hi
| 3371     Mar 03 psirt@...co.com ( 426) [Full-Disclosure] stolen
| 3372     Mar 01 psirt@...co.com ( 428) [Full-Disclosure] unknown
| 3373     Mar 13 nexus@...rol.i- ( 427) [Full-Disclosure] stolen
| 3374     Jan 26 jyowell@...nedy ( 420) [Full-Disclosure] hello
| 3375     Feb 05 nakal@....de    ( 420) [Full-Disclosure] Test
| 3376     Jan 30 brian@...radio. ( 420) [Full-Disclosure] Server Report
| 3377     Jan 26 http-equiv@...i ( 420) [Full-Disclosure] Status
| 3378     Jan 27 jeff01@...il.un ( 420) [Full-Disclosure] Status
| 3379     Feb 04 jim@...gtrading ( 420) [Full-Disclosure] (no subject)
| 3380     Feb 12 franjime@...co. ( 422) [Full-Disclosure] HELLO
| 3381     Feb 11 psirt@...co.com ( 422) [Full-Disclosure] Hi
| 3382     Jan 27 lsawyer@....com ( 422) [Full-Disclosure] hello
| 3383     Jan 27 http-equiv@...w ( 422) [Full-Disclosure] (no subject)
| 3384     Jan 28 jkarp@...ionael ( 422) [Full-Disclosure] STATUS
| 3385     Feb 07 jim@...gtrading ( 422) [Full-Disclosure] TEST
| 3386     Mar 03 je@...ure.net   ( 424) [Full-Disclosure] TEST
| 3387     Feb 08 hobbit@...an.or ( 424) [Full-Disclosure] Server Report
| 3388     Jan 30 psirt@...co.com ( 424) [Full-Disclosure] (no subject)
| 3389     Feb 09 psirt@...co.com ( 441) [Full-Disclosure] hi
| 3390     Feb 08 joel@...geson.c ( 465) [Full-Disclosure] Error
| 3391     Jan 27 lsawyer@....com ( 466) [Full-Disclosure] Status
| 3392     Feb 26 psirt@...co.com ( 494) [Full-Disclosure] something
for you
| 3393     Feb 26 psirt@...co.com ( 494) [Full-Disclosure] something
for you
| 3394     Mar 16 phlox@...cast.n ( 496) [Full-Disclosure] greetings


-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.3 (MingW32)

iD8DBQFAYYBYqH6NtwbH1FARAucIAJ9sI6Od0t082zVhgdwAAzgz+iZvHwCaAopT
fTKWd37xDJkqW4XGms2+yH8=
=Jfzl
-----END PGP SIGNATURE-----

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ