| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <BANLkTim2UVOCvE1S6kmodcHEgsBoPaShgQ@mail.gmail.com>
Date: Thu, 28 Apr 2011 12:59:43 +0200
From: Christian Sciberras <uuf6429@...il.com>
To: Tõnu Samuel <tonu@....ee>
Cc: full-disclosure@...ts.grok.org.uk
Subject: Re: Barracuda backdoor
Oh I'm sure someone on the list is going to help you.
Just give us SSH and root access and we'll do the hard work for you.
See, that's being open, not closed...!
On Thu, Apr 28, 2011 at 12:51 PM, Tõnu Samuel <tonu@....ee> wrote:
> On Thu, 2011-04-28 at 11:45 +0100, Benji wrote:
> > Do you actually have any evidence of a backdoor? Or could this just be
> > a remote 'turn-off' switch as such? I'm not saying that one is better
> > than the other, but they are very different features.
>
> I have no idea how this technically is implemented or what they can do
> else. This is clear example of closed source product dangers. Today we
> found some "switch off", tomorrow what? How we can be sure about
> anything? Only thing I am sure now: they kept copy of keys to house you
> bought from them years ago and their used those keys for illegal thing.
>
> Tõnu
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/
>
Content of type "text/html" skipped
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
Powered by blists - more mailing lists