| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <200505251543.j4PFhWMM011021@turing-police.cc.vt.edu> Date: Wed May 25 16:43:40 2005 From: Valdis.Kletnieks at vt.edu (Valdis.Kletnieks@...edu) Subject: Not even the NSA can get it right On Wed, 25 May 2005 07:14:12 CDT, "milw0rm Inc." said: > lol are you guys joking? They wouldn't allow an xss bug on their > website on purpose come on now. You're not devious enough. Remember that the *best* place to put a honeypot is right out there in plain sight where it's likely to attract attention. So now they've grepped their Apache logs, and they've added several dozen people to their "suspected script kiddie" list. (Remember - the NSA probably knows more about proper airgapping than anybody. All *those* webservers have on them is non-sensitive content, so you can't actually *get* anything really interesting to happen - in the NSA view of the world, "public website gets defaced" isn't particularly interesting or noteworthy). -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 226 bytes Desc: not available Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20050525/7769867c/attachment.bin
Powered by blists - more mailing lists