uh-oh. i am sure you are only joking, sibayan. but even jokes may be unsafe. best to take this offlist, if you have anything more to say on this.
lol tathagata, source is still freely available. even guys from M$ lab in iit-kgp have d/led it. and ofcourse i was joking.
by the way, do you think crackers will be able to create bigger, better, tastier worms and viruses by looking at the spilled code? i know you haven't seen it, i'm just asking your opinion because you are a security guy ;-)
ummm well crackers never use source code to write exploits or virus/worms. it is much more easy to find exploit in a binary by useing debuggers than using the source code. trend for writing viruses has come to its end. it is the era for worms. worms are coded very intelligently, it becomes deadly when it uses a system exploit. currently i'm analysing MyDoom (rated as the best worm ever written) source code which is very simple only 101kb. right now even a *.html page sent to you can be fatal. before MyDoom it was sobig and before that yaha (writen by indians) rated as the best. just look at the following snippet below. believe it or not it is written by a bengali boy 1st year BSc Comp Sc student, accepted by security focus and published by a french security group. writing or discussing about an exploit is not a crime only abusing it can be a criminal offence. so a coder by heart doesn't need the source code of a binary to exploit it.
btw i lost your contact numbers. can you please mail me?
sibayan
----------8<-------------------8<---------------------8<------------------
/*
* rsync <= 2.5.7 Local Exploit
* Saved EIP on stack is overwritten with address of shellcode in memory
* Generally rsync is not setuid or setgid so just a local shell is of no use
* So i used a portbinding shellcode as a PoC of a different attack vector.
* RET is calculated dynamically so payload can be changed just by changing shellcode
* Tested on:
* [EMAIL PROTECTED] my]$ uname -a
* Linux Matrix 2.4.18-14 #1 Wed Sep 4 13:35:50 EDT 2002 i686 i686 i386 GNU/Linux
* coded by: [EMAIL PROTECTED]
* Special Thanks: n2n, Hirosh Joseph
*/
----------8<-------------------8<---------------------8<------------------
-- To unsubscribe, send mail to [EMAIL PROTECTED] with the body "unsubscribe ilug-cal" and an empty subject line. FAQ: http://www.ilug-cal.org/node.php?id=3
