lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite for Android: free password hash cracker in your pocket
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list] 
Date: Fri, 7 Oct 2011 10:59:24 -0400
From: James Wright <jamfwright@...il.com>
To: Valdis.Kletnieks@...edu
Cc: full-disclosure@...ts.grok.org.uk
Subject: Re: Verizon Wireless DNS Tunneling

I wouldn't say I blindly clicked it, but truth be told, I was not overly
concerned about it (annoyed, but not concerned).  The machine gets wiped and
reinstalled every few months, doing so does not disable my Internet access.
It is dedicated to another purpose, it's not for email, banking, etc.
Sometimes the kids play games on it.  That's about it.  Even my kids have
Linux on their laptops.  Thanks for assuming otherwise, I appreciate your
concern about my home network :)

Why all the hate on Comcast?  I see this a lot on various lists, and besides
their DNS servers being flaky at times (I stopped using their DNS servers
long ago because of this), I personally have not had trouble with them.
Even bittorrent works (gasp) using default settings.  Are they just too big
to be loved?  :)


Thanks,
James


On Fri, Oct 7, 2011 at 10:53 AM, <Valdis.Kletnieks@...edu> wrote:

> On Fri, 07 Oct 2011 10:47:13 EDT, Terrence said:
>
> > To the guy saying that comcast  requires an executable to authenticate
> you.
> > Ha. You should prolly wipe your install.
>
> And that's true even if you actually trusted the Comcast binary.  If they
> were
> able to get a binary to get run, probably others have as well.  It either
> got
> automatically run by the browser without your intervention, or it *did*
> prompt
> for execution and you (probably blindly) said "OK".  Either way, you're
> probably
> pwned by something else that got run the exact same way the Comcast binary
> did.
>
> Thanks for nothing, Comcast.  At least we've finally gotten most banks to
> not
> send out phishy-looking email.
>
>

Content of type "text/html" skipped

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ