Re: [Full-disclosure] Surge in Skype Spam activity

2010-01-11 Thread Jacob Taylor
On 1/11/2010 3:26 AM, Chen Levkovich wrote:
> Surge in Skype Spam activity.
> http://tinyurl.com/yc38trm

If only your site actually said anything about the spam... Like what 
kind of viruses the software they're pedaling is infected with or 
something. Useless post is useless.
-J
-- 
It is no measure of health to be well adjusted to
a profoundly sick society.
-Krishnamurti
+---+

___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/


Re: [Full-disclosure] Surge in Skype Spam activity

2010-01-11 Thread dd
Or you can also use:

http://sucuri.net/?page=tools&title=check-url

Which checks any short URL and also run them through site advisor and
google safe browsing
to see what they think of it...

--dd

On Mon, Jan 11, 2010 at 2:08 PM, Thor (Hammer of God)
 wrote:
> http://kiserai.net/turl.pl
>
>
>
> Tiny URL decoder.   I was going to send the TinyURL decoder in a TinyURL,
> but I’m just not that motivated atm. J
>
>
>
> t
>
>
>
> From: full-disclosure-boun...@lists.grok.org.uk
> [mailto:full-disclosure-boun...@lists.grok.org.uk] On Behalf Of Larry
> Seltzer
> Sent: Monday, January 11, 2010 5:44 AM
> To: dramacrat; Chen Levkovich
> Cc: full-disclosure@lists.grok.org.uk
> Subject: Re: [Full-disclosure] Surge in Skype Spam activity
>
>
>
> It’s harmless, he’s just blowing his own company’s horn. Speaking of spam…
>
>
>
> h, shall I click a tinyurl coming from a f-d poster?
>
>
>
> n/n, pick one
>
> this is email, not twitter. if you're sharing a legitimate link, there's no
> reason not to directly link to it.
>
>
>
> 2010/1/11 Chen Levkovich 
>
> Surge in Skype Spam activity. http://tinyurl.com/yc38trm
>
>
>
> ___
>
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/
>
>
>
> ___
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/
>

___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/


Re: [Full-disclosure] Surge in Skype Spam activity

2010-01-11 Thread Thor (Hammer of God)
http://kiserai.net/turl.pl

Tiny URL decoder.   I was going to send the TinyURL decoder in a TinyURL, but 
I’m just not that motivated atm. ☺

t

From: full-disclosure-boun...@lists.grok.org.uk 
[mailto:full-disclosure-boun...@lists.grok.org.uk] On Behalf Of Larry Seltzer
Sent: Monday, January 11, 2010 5:44 AM
To: dramacrat; Chen Levkovich
Cc: full-disclosure@lists.grok.org.uk
Subject: Re: [Full-disclosure] Surge in Skype Spam activity

It’s harmless, he’s just blowing his own company’s horn. Speaking of spam…

h, shall I click a tinyurl coming from a f-d poster?

n/n, pick one
this is email, not twitter. if you're sharing a legitimate link, there's no 
reason not to directly link to it.

2010/1/11 Chen Levkovich 
mailto:chen.levkov...@securityextension.com>>
Surge in Skype Spam activity. http://tinyurl.com/yc38trm


___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Re: [Full-disclosure] Surge in Skype Spam activity

2010-01-11 Thread Michael Holstein

> h, shall I click a tinyurl coming from a f-d poster?

Click? .. no. Wget? .. sure. Speaking of spam .. why not just say "clikz
me so I can haz adsense".

Cheers,

Michael Holstein
Cleveland State University

$wget -O - http://tinyurl.com/yc38trm
--09:54:37--  http://tinyurl.com/yc38trm
   => `-'
Resolving tinyurl.com... 85.255.210.134, 195.66.135.131, 85.255.210.133
Connecting to tinyurl.com|85.255.210.134|:80... connected.
HTTP request sent, awaiting response... 301 Moved Permanently
Location: http://securityextension.com/securitylab [following]
--09:54:37--  http://securityextension.com/securitylab
   => `-'
Resolving securityextension.com... 67.18.133.18
Connecting to securityextension.com|67.18.133.18|:80... connected.
HTTP request sent, awaiting response... 200 OK
Length: unspecified [text/html]


(crap, crap, crap)

___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/


Re: [Full-disclosure] Surge in Skype Spam activity

2010-01-11 Thread Chen Levkovich
Hello all,

 

Every long journey begins with a small step….

 

As requested, with full URL 

 

Chen

 

http://www.securityextension.com/securitylab

 

From: Larry Seltzer [mailto:la...@larryseltzer.com] 
Sent: Monday, January 11, 2010 3:44 PM
To: dramacrat; Chen Levkovich
Cc: full-disclosure@lists.grok.org.uk
Subject: RE: [Full-disclosure] Surge in Skype Spam activity

 

It’s harmless, he’s just blowing his own company’s horn. Speaking of spam…

 

h, shall I click a tinyurl coming from a f-d poster?

 

n/n, pick one

this is email, not twitter. if you're sharing a legitimate link, there's no 
reason not to directly link to it.

 

2010/1/11 Chen Levkovich 

Surge in Skype Spam activity.  <http://tinyurl.com/yc38trm> 
http://tinyurl.com/yc38trm

 


___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

 

___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Re: [Full-disclosure] Surge in Skype Spam activity

2010-01-11 Thread Daniele Stanzani
On Monday 11 January 2010 14:32:06 dramacrat wrote:
> h, shall I click a tinyurl coming from a f-d poster?
>
> n/n, pick one
>
> this is email, not twitter. if you're sharing a legitimate link, there's no
> reason not to directly link to it.
>
> 2010/1/11 Chen Levkovich 
>
> > Surge in Skype Spam activity. http://tinyurl.com/yc38trm
> >
> >
> >
> > ___
> > Full-Disclosure - We believe in it.
> > Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> > Hosted and sponsored by Secunia - http://secunia.com/

I am not a security expert, but I suppose that when you don't trust the sender 
the security countermeasures you have to take while opening a shortened url 
are *obviously* the same as opening a clean one.

Stanza

___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/


Re: [Full-disclosure] Surge in Skype Spam activity

2010-01-11 Thread Nick FitzGerald
dramacrat wrote:

> h, shall I click a tinyurl coming from a f-d poster?
> 
> n/n, pick one
> 
> this is email, not twitter. if you're sharing a legitimate link, there's no
> reason not to directly link to it.

Whilst I agree entirely with these sentiments, at least tinyurl has a 
(I thought well-known) "preview" option that does not require a browser 
plugin -- simply prefix the tinyurl.com domain name with the "preview" 
sub-domain and instead of auto-redirecting you tinyurl will tell you 
the redirection URL.

Also, is using a commandline URL grabber like curl or wget to see the 
301 redirect terget really that difficult for a 1337 F-D hax0r such as 
yourself?

FWIW, the target URL is:

   http://securityextension.com/securitylab

which really doesn't seem worth the effort of shortening...



Regards,

Nick FitzGerald


___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/


Re: [Full-disclosure] Surge in Skype Spam activity

2010-01-11 Thread mrx
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

I did but I use Firefox + NoScript in a vm for such things.
Admittedly still risky especially if the site pedals a certain kind of porn and 
is on a watch list.
I know I should really chain proxy or TOR to such links. Unfortunately this 
occurred to me after clicking the link.

There is not much to see here, it's a new site with next to no content.
There are couple of examples of the typical kind of spam one gets via 
email:Viagra and cheap software.
It has a blog format.
I believe the guy/gal is just promoting his/her site.

There is script on the page:
jQuery 1.2.6 - New Wave Javascript
drupal.js,v 1.41.2.4 2009/07/21

as well as google analytics stuff.

To my admittedly limited knowledge the site is benign

mrx


dramacrat wrote:
> h, shall I click a tinyurl coming from a f-d poster?
> 
> n/n, pick one
> 
> this is email, not twitter. if you're sharing a legitimate link, there's no
> reason not to directly link to it.
> 
> 2010/1/11 Chen Levkovich 
> 
>> Surge in Skype Spam activity. http://tinyurl.com/yc38trm
>>
>>
>>

- --
Mankind's systems are white sticks tapping walls.
Thanks Roy
http://www.propergander.org.uk
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.2 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/

iQEVAwUBS0svELIvn8UFHWSmAQLK7wf/RFF4dLAO/MCVKtFIDxNFCNbSMdjzGfKM
QsaIo5Dk3TboYL/V7LU0kZU7HbclFRb2lcfo6+mGws4c4HjoxYhWFRnCq0IQi2bY
lbL0D5OAOwplo3R79B9dgsxaI1BwdkjljzmHuORLQW9g4bMq+uXUtJvCNOGeZy2y
LVTZDGST3O6Myr2Yqy3kxAagq01hO31p/H+TRIzt7NVy1R+pZH8mYuQFW1nqub/P
svlKIDs30NskwEOu0A0B6ezTp3/xry6Mqr4975rmfncHsO4seN2FYHIkiyi324k+
YNCHFE6qJEMj3WI91PIjp8jJPM+escZh/8EkRC5d9gYANlxIXveZsg==
=uBiw
-END PGP SIGNATURE-

___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/


Re: [Full-disclosure] Surge in Skype Spam activity

2010-01-11 Thread Benji

Hah, I see what you did there.

Sent from my iPhone

On 11 Jan 2010, at 13:43, "Larry Seltzer"   
wrote:


It’s harmless, he’s just blowing his own company’s horn.  
Speaking of spam…




h, shall I click a tinyurl coming from a f-d poster?



n/n, pick one

this is email, not twitter. if you're sharing a legitimate link,  
there's no reason not to directly link to it.




2010/1/11 Chen Levkovich 

Surge in Skype Spam activity. http://tinyurl.com/yc38trm




___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/



___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Re: [Full-disclosure] Surge in Skype Spam activity

2010-01-11 Thread Larry Seltzer
It’s harmless, he’s just blowing his own company’s horn. Speaking of spam…

 

h, shall I click a tinyurl coming from a f-d poster?

 

n/n, pick one

this is email, not twitter. if you're sharing a legitimate link, there's no 
reason not to directly link to it.

 

2010/1/11 Chen Levkovich 

Surge in Skype Spam activity. http://tinyurl.com/yc38trm 
 

 


___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

 

___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Re: [Full-disclosure] Surge in Skype Spam activity

2010-01-11 Thread dramacrat
h, shall I click a tinyurl coming from a f-d poster?

n/n, pick one

this is email, not twitter. if you're sharing a legitimate link, there's no
reason not to directly link to it.

2010/1/11 Chen Levkovich 

> Surge in Skype Spam activity. http://tinyurl.com/yc38trm
>
>
>
> ___
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/
>
___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

[Full-disclosure] Surge in Skype Spam activity

2010-01-11 Thread Chen Levkovich
Surge in Skype Spam activity.  
http://tinyurl.com/yc38trm

 

___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/