lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite for Android: free password hash cracker in your pocket
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list] 
Message-Id: <200611272239.kARMd1wc024890@turing-police.cc.vt.edu>
Date: Mon, 27 Nov 2006 17:39:00 -0500
From: Valdis.Kletnieks@...edu
To: Rick <optik@...net.org>
Cc: full-disclosure@...ts.grok.org.uk
Subject: Re: Sasser or other nasty worm needed

On Mon, 27 Nov 2006 17:16:31 EST, Rick said:
> 
> On Mon, 27 Nov 2006, Valdis.Kletnieks@...edu wrote:
> 
> > You would have us believe that the guy is clued enough to run a "closed
> > lab" without screwing up (and there's *lots* of ways to screw up, starting
> > with forgetting to wipe the drives afterwards, forgetting to disable a
> > wireless card, forgetting to not plug any of the boxes into the normal net,
> > forgetting to...).
> 
> so when you go to mcdonalds and hand over your $5 for your MCbig meal, do 
> you consider the repercussions of supporting an industry which pays low 
> wages, is under-staffed, and promotes world-hunger by using enough grain 
> to feed a continent, etc...?

WTF does that have to do with the topic?  Unless you want to make the point
that often, the McDonald's staff fails to use a level of food-preparation
hygiene that matches the computer-security hygiene requirements to work with
known malware?

The average McDonald's doesn't have biohazard signs (whether they should is a
different rant) - and even the average doctor's office that *does* have
biohazard signs for used hypodermic needles and the like usually has special
training/procedures for dealing with the stuff.

And labs that do active research on biohazards have even stricter protocols.

(Make note, there *have* been screw-ups in the protocols at places that handle
stuff like Ebola and smallpox - Preston's "The Hot Zone" has a nice story of a
dead monkey with nothing but a plastic garbage bag keeping the nasties in, and
a few years ago, there was a small to-do in one of the labs in England that had
some smallpox...)

>> And yet he's not clued enough to know how to find a copy of Sasser by 
>> himself.

> so what?
> do *you* know where to find a copy?
Yes.
> did you always?
Yes.
> have you always been able to configure a network to talk via EIGRP?
No, because when I first got on the net, RFC1058 was still 4 years in the
future. So it wasn't "always" possible, because the option didn't always
exist.

> > There are a lot of people who are of the opinion that "if you have to ask
> > where to find a copy of Sasser, you're not clued enough to be trusted with
> > a copy".
> 
> perhaps the next time you need a doctor, the one you find will laugh at 
> you with the same sense of elitism you demonstrate.

Did I say I was one of the lot of people? Did you notice that I was
replying *in the context of KF's comments* saying "It's cool because it's
in a closed lab?"

Content of type "application/pgp-signature" skipped

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ