Re: panix.com hijacked
On 2005-01-16T09:46:28-0500, R.A. Hettinga wrote: On Sun, 16 Jan 2005 [EMAIL PROTECTED] wrote: On Sun, 16 Jan 2005 01:32:46 EST, Henry Yen said: . panix.net usable as panix.com (marcotte) Sat Jan 15 10:44:57 2005 So let's see.. the users will see this when they log into shell.panix.net (since shell.panix.com is borked). Somehow that doesn't seem to help much. and the hijackers could be, potentially, running a box pretending to be shell.panix.com, gathering userids and passwds :( Object lesson in why using replayable passwords is not a good idea. Allah invented nonce-based password hashes and public key crypto for a reason. -- War is the father and king of all, and some he shows as gods, others as men; some he makes slaves, others free. -Heraclitus Kahn.83/D-K.53
Re: panix.com hijacked
On 2005-01-16T09:46:28-0500, R.A. Hettinga wrote: On Sun, 16 Jan 2005 [EMAIL PROTECTED] wrote: On Sun, 16 Jan 2005 01:32:46 EST, Henry Yen said: . panix.net usable as panix.com (marcotte) Sat Jan 15 10:44:57 2005 So let's see.. the users will see this when they log into shell.panix.net (since shell.panix.com is borked). Somehow that doesn't seem to help much. and the hijackers could be, potentially, running a box pretending to be shell.panix.com, gathering userids and passwds :( Object lesson in why using replayable passwords is not a good idea. Allah invented nonce-based password hashes and public key crypto for a reason. -- War is the father and king of all, and some he shows as gods, others as men; some he makes slaves, others free. -Heraclitus Kahn.83/D-K.53
Re: panix.com hijacked
--- begin forwarded text Delivered-To: [EMAIL PROTECTED] Delivered-To: [EMAIL PROTECTED] Delivered-To: [EMAIL PROTECTED] Date: Sun, 16 Jan 2005 07:08:24 + (GMT) From: Christopher L. Morrow [EMAIL PROTECTED] Subject: Re: panix.com hijacked To: [EMAIL PROTECTED] Cc: Henry Yen [EMAIL PROTECTED], [EMAIL PROTECTED], Mark Jeftovic [EMAIL PROTECTED] Sender: [EMAIL PROTECTED] On Sun, 16 Jan 2005 [EMAIL PROTECTED] wrote: On Sun, 16 Jan 2005 01:32:46 EST, Henry Yen said: from panix shell hosts motd: . panix.net usable as panix.com (marcotte) Sat Jan 15 10:44:57 2005 So let's see.. the users will see this when they log into shell.panix.net (since shell.panix.com is borked).. Somehow, that doesn't seem to help much.. and the hijackers could be, potentially, running a box pretending to be shell.panix.com, gathering userids and passwds :( --- end forwarded text -- - R. A. Hettinga mailto: [EMAIL PROTECTED] The Internet Bearer Underwriting Corporation http://www.ibuc.com/ 44 Farquhar Street, Boston, MA 02131 USA ... however it may deserve respect for its usefulness and antiquity, [predicting the end of the world] has not been found agreeable to experience. -- Edward Gibbon, 'Decline and Fall of the Roman Empire'
Re: panix.com hijacked
--- begin forwarded text Delivered-To: [EMAIL PROTECTED] Delivered-To: [EMAIL PROTECTED] Delivered-To: [EMAIL PROTECTED] Date: Sun, 16 Jan 2005 07:08:24 + (GMT) From: Christopher L. Morrow [EMAIL PROTECTED] Subject: Re: panix.com hijacked To: [EMAIL PROTECTED] Cc: Henry Yen [EMAIL PROTECTED], [EMAIL PROTECTED], Mark Jeftovic [EMAIL PROTECTED] Sender: [EMAIL PROTECTED] On Sun, 16 Jan 2005 [EMAIL PROTECTED] wrote: On Sun, 16 Jan 2005 01:32:46 EST, Henry Yen said: from panix shell hosts motd: . panix.net usable as panix.com (marcotte) Sat Jan 15 10:44:57 2005 So let's see.. the users will see this when they log into shell.panix.net (since shell.panix.com is borked).. Somehow, that doesn't seem to help much.. and the hijackers could be, potentially, running a box pretending to be shell.panix.com, gathering userids and passwds :( --- end forwarded text -- - R. A. Hettinga mailto: [EMAIL PROTECTED] The Internet Bearer Underwriting Corporation http://www.ibuc.com/ 44 Farquhar Street, Boston, MA 02131 USA ... however it may deserve respect for its usefulness and antiquity, [predicting the end of the world] has not been found agreeable to experience. -- Edward Gibbon, 'Decline and Fall of the Roman Empire'
Re: panix.com hijacked
--- begin forwarded text Delivered-To: [EMAIL PROTECTED] Delivered-To: [EMAIL PROTECTED] Delivered-To: [EMAIL PROTECTED] Date: Sun, 16 Jan 2005 01:32:46 -0500 From: Henry Yen [EMAIL PROTECTED] To: [EMAIL PROTECTED] Cc: Mark Jeftovic [EMAIL PROTECTED] Subject: Re: panix.com hijacked Mail-Followup-To: [EMAIL PROTECTED], Mark Jeftovic [EMAIL PROTECTED] Sender: [EMAIL PROTECTED] On Sat, Jan 15, 2005 at 10:50:49AM -0500, Perry E. Metzger wrote: Panix is highly screwed by this -- their users are all off the air, and they can't really wait for an appeals process to complete in order to get everything back together again. from panix shell hosts motd: . panix.net usable as panix.com (marcotte) Sat Jan 15 10:44:57 2005