lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list] 
Message-ID: <6158bb410804091209q7f8788d6l877d4ad78ba761b@mail.gmail.com>
Date: Wed, 9 Apr 2008 15:09:53 -0400
From: Ureleet <ureleet@...il.com>
To: n3td3v@...glegroups.com
Cc: full-disclosure@...ts.grok.org.uk
Subject: Re: Fwd: n3td3v has a fan

see:

On Wed, Apr 9, 2008 at 2:53 PM, n3td3v <xploitable@...il.com> wrote:

>
> On Wed, Apr 9, 2008 at 7:13 PM, Ureleet <ureleet@...il.com> wrote:
> > where do you come into the equation?
>
> It highlights what i've been saying for _years_ about never trusting
> your employees, and you've got to patch your offline machines as fast
> as your online ones.
>
> Read the n3td3v advisory I just posted:
> http://lists.grok.org.uk/pipermail/full-disclosure/2008-April/061313.html


no, i meant the key fob/malware/thumbdrive thing.  not the patch your
offline systems thing.


>
> <http://lists.grok.org.uk/pipermail/full-disclosure/2008-April/061313.html>
>
> Last night wasn't the first time I mentioned that I want people to
> patch their offline computers as fast as their online ones.
>
> Your argument is about comparing time and date? I've been saying it
> for years bro, so your argument don't stand up a shred.


i'm not arguing.  would you stop thinking im attacking you?  im just asking
a question!  chill.


>
>
> Example: http://seclists.org/fulldisclosure/2007/Oct/0545.html
>
> Ureleet, maybe one day you'll leave me alone eh?


chill dude.


>
>
> There is older links of me mentioning it, but that will do for now.
>
> "Never trust your employees"


agreed.  most bad attacks are insiders (or the fault of one), but then
again, employees shouldn't be paranoid either.


>
>
> Regards,
>
> n3td3v
>

Content of type "text/html" skipped

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ