Re: [Full-disclosure] Gustav, domain name reportage

On Sun, Aug 31, 2008 at 5:49 AM, [EMAIL PROTECTED] wrote: There's no such thing as bad publicity... Well I don't see the point in telling the cyber criminals you're watching before the crime has been committed, because then obviously the crime won't be committed and yet the bad guys are still

Re: [Full-disclosure] Gustav, domain name reportage

On Sun, 31 Aug 2008 08:28:08 BST, n3td3v said: Well I don't see the point in telling the cyber criminals you're watching before the crime has been committed, because then obviously the crime won't be committed and yet the bad guys are still going to be out there being bad some other way that

Re: [Full-disclosure] Gustav, domain name reportage

On Sun, Aug 31, 2008 at 8:41 AM, [EMAIL PROTECTED] wrote: On Sun, 31 Aug 2008 08:28:08 BST, n3td3v said: Well I don't see the point in telling the cyber criminals you're watching before the crime has been committed, because then obviously the crime won't be committed and yet the bad guys are

[Full-disclosure] PoCfix (PoC for Postfix local root vuln - CVE-2008-2936)

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Hello, The recent vulnerability in Postfix discovered by Sebastian Krahmer is trivially exploitable when certain preconditions are met. Nevertheless, it's very difficult to find such conditions in a real-world scenario. I wrote this exploit for fun

[Full-disclosure] Port Randomization: New revision of our IETF Internet-Draft

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Folks, We have published a revision of our IETF Internet-Draft about port randomization. It is available at: http://www.gont.com.ar/drafts/port-randomization/draft-ietf-tsvwg-port-rand omization-02.txt (you can find the document in other fancy

[Full-disclosure] [SECURITY] [DSA-1597-2] New mt-daapd package fix regression

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - Debian Security Advisory DSA-1597-2 [EMAIL PROTECTED] http://www.debian.org/security/ Devin Carraway August 30, 2008

[Full-disclosure] [SECURITY] [DSA 1627-2] New opensc package fix incomplete check

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - Debian Security Advisory DSA-1627-2 [EMAIL PROTECTED] http://www.debian.org/security/ Thijs Kinkhorst August 31, 2008

[Full-disclosure] rPSA-2008-0264-1 ruby

rPath Security Advisory: 2008-0264-1 Published: 2008-08-31 Products: rPath Appliance Platform Linux Service 1 rPath Appliance Platform Linux Service 2 rPath Linux 1 rPath Linux 2 Rating: Severe Exposure Level Classification: Remote User Deterministic Privilege Escalation

Re: [Full-disclosure] Inside India’s CAPTCHA Solvin g Economy

On Sunday 31 Aug 2008, n3td3v wrote: At least its giving hundreds of thousands of poor indians employment, by paying them to manually create internet accounts for bot net herders to use. I don't know if thats what the Dancho Danchev blog post is about because I refuse to read anything by him

Re: [Full-disclosure] Inside India’s CAPTCHA Solvi ng Economy

No, thank you for emailing us twice. Really. -- Razi On 8/31/08, Raj Mathur [EMAIL PROTECTED] wrote: On Sunday 31 Aug 2008, n3td3v wrote: At least its giving hundreds of thousands of poor indians employment, by paying them to manually create internet accounts for bot net herders to

Re: [Full-disclosure] Gustav, domain name reportage

On Aug 31, 2008, at 2:46 AM, n3td3v wrote: On Sun, Aug 31, 2008 at 8:41 AM, [EMAIL PROTECTED] wrote: On Sun, 31 Aug 2008 08:28:08 BST, n3td3v said: Well I don't see the point in telling the cyber criminals you're watching before the crime has been committed, because then obviously the

Re: [Full-disclosure] Inside India's CAPTCHA Solving Economy

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Razi Shaban wrote: No, thank you for emailing us twice. Really. -- Razi On 8/31/08, Raj Mathur [EMAIL PROTECTED] wrote: On Sunday 31 Aug 2008, n3td3v wrote: At least its giving hundreds of thousands of poor indians employment, by paying

Re: [Full-disclosure] Monthly Hands-On Meetups

Professor Micheal Chatner wrote: I was wondering if anyone would like to start something like a Full-Disclosure monthly group in cities all over the world. It could be like 2600 meetings except with real security professionals because personally I don't want to even talk to someone unless they

Re: [Full-disclosure] Monthly Hands-On Meetups

-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Professor Micheal Chatner wrote: Let me know what you think! Kill yourself. Sounds like a good idea. - You really think that people with certifications are the only individuals worth it? Oh my god, you're such a nazi... - -- Arturo Buanzo

[Full-disclosure] [PLSA 2008-35] Ruby: Denial of Service

Pardus Linux Security Advisory 2008-35[EMAIL PROTECTED] Date: 2008-09-01 Severity: 3 Type: Remote

Re: [Full-disclosure] [inbox] Monthly Hands-On Meetups

This coming from the guy who basically insults everyone on the list at any chance he gets... C'mon, you really are n3td3v right.? Exibar -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Professor Micheal Chatner Sent: Sunday, August 31, 2008 5:20

Re: [Full-disclosure] [inbox] Monthly Hands-On Meetups

On Sun, 31 Aug 2008 22:39:31 EDT, Exibar said: This coming from the guy who basically insults everyone on the list at any chance he gets... C'mon, you really are n3td3v right.? The phrase I just started a new job in digital forensics. would tend to indicate otherwise...

Re: [Full-disclosure] Monthly Hands-On Meetups

Professor Micheal Chatner wrote: I just started a new job in digital forensics. It would be fun to meet other people who like hacking and trading Ubuntu tips and tricks! oh aren't you top of the class Let me know what you think! Professor Micheal Chatner, M.D., CISSP

[Full-disclosure] Port Randomization: New revision of our IETF Internet-Draft

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Folks, We have published a revision of our IETF Internet-Draft about port randomization. It is available at: http://www.gont.com.ar/drafts/port-randomization/draft-ietf-tsvwg-port-rand omization-02.txt (you can find the document in other fancy