lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Date: Sat, 8 Jun 2013 16:50:15 -0000
From: jtagtgc@...mail.org
To: full-disclosure@...ts.grok.org.uk
Subject: Re: Botnet using Plesk vulnerability and takedown

We put that domain in as example, obviously we not disclose our real
domain. On that domain is the clean.pl script, obvious enough.

Also, thanks to person who register domain, you now have badass domain
name. Perhaps host the clean.pl as final_solution.txt in webroot?

> What happened to the link.
>
> On 6/8/13, kai <kai@...nn.net> wrote:
>>> wget http://botslayer.ru/final_solution.txt
>>
>> i've registered this domain just to save incompetent shitheads who
>> blindly
>>
>> run any code which is supposed to "fix security problem". why have you
>> included the non-existent domain in your code?
>>
>> thanks for your interesting investigation anyway.
>>
>>
>> Cheers,
>>
>> Kai
>>
>> _______________________________________________
>> Full-Disclosure - We believe in it.
>> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
>> Hosted and sponsored by Secunia - http://secunia.com/
>>
>
>
> --
> --
> Gichuki John Ndirangu, C.E.H , C.P.T.P, O.S.C.P
> I.T Security Analyst and Penetration Tester
> jgichuki at inbox d0t com
>
> {FORUM}http://lists.my.co.ke/pipermail/security/
> http://chuksjonia.blogspot.com/
>


_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Powered by blists - more mailing lists