Re: [Full-disclosure] [Fwd: Re: Global CompuSearch]

think his lawyer is just digging his client a deeper pit to jump into and drown. -- Yours, J.A. Terranson [EMAIL PROTECTED] 0xBD4A95BF I like the idea of belief in drug-prohibition as a religion in that it is a strongly held belief based on grossly insufficient evidence and bolstered by fait

[Full-disclosure] [OT] (was Re: Re: Help put a stop to incompetent computerforensics)

ld measure the viewer share, and if it was successful, they could perform another each every week - reality TV to a whole new level. -- Yours, J.A. Terranson [EMAIL PROTECTED] 0xBD4A95BF I like the idea of belief in drug-prohibition as a religion in that it is a strongly held belief based on grossl

Re: [Full-disclosure] Re: Help put a stop to incompetent computer fore nsics

oad of entities). > - ferg > > p.s. You call that cheap shot "full dsiclosure"? First of all, it was not "a cheap shot" - get a grip Paul. As for the "disclosure" question, it's as disclosure-ish as anything else here: look around a little! -- Yours, J.

Re: [Full-disclosure] Re: Help put a stop to incompetent computer forensics

ested third party" any more than the anti-virus firms are - and not many people would use *them* as an authoritative reference (assuming of course that there are other sources). -- Yours, J.A. Terranson [EMAIL PROTECTED] 0xBD4A95BF I like the idea of belief in drug-prohibition as a re

Re: [Full-disclosure] Re: Help put a stop to incompetent computerforensics

ed - brush yourself off before you tarnish that sterling reputation of yours and move on. Oh, and *admit* when you're wrong: it works wonders for your credibility - even in front of Judges and Juries ;-) //Alif -- Yours, J.A. Terranson [EMAIL PROTECTED] 0xBD4A95BF I like the idea of beli

[Full-disclosure] Motorist wins case after maths whizzes break speed camera code (fwd)

-- Forwarded message -- Date: Wed, 10 Aug 2005 14:29:38 -0400 From: [EMAIL PROTECTED] To: cryptography@metzdowd.com Subject: Motorist wins case after maths whizzes break speed camera code The facts are very scrambled but I like it. The brief TV reports from lawyers were more fact

Re: [Full-disclosure] Operation Site-Key computer forensic searches ruled illegal

ictions. Any issue which is rooted in this new engineering/legal practiced will be a long tim awaiting foundational case law to guide our newly exposed judges. -- Yours, J.A. Terranson, CISM Sr. Forensic Investigator United Forensics Corp. [EMAIL PROTECTED] www.unitedforensics.com I like the idea of beli

REGUSTERFLY To The White Courtesy Phone Please? (Was: Re: [Full-disclosure] Virus on web site)

.WEBSITEWELCOME.COM Creation date: 23 Mar 2005 18:08:26 Expiration date: 23 Mar 2006 18:08:26 -- Yours, J.A. Terranson [EMAIL PROTECTED] 0xBD4A95BF I like the idea of belief in drug-prohibition as a religion in that it is a strongly held belief based on grossly insufficient evidence and bol

Re: [Full-disclosure] Cisco IOS Shellcode Presentation

> > can someone send me the famous Cisco IOS Shellcode Presentation ?? > > please.. > > my mail is [EMAIL PROTECTED] WTF? Just what kind of lazy, stupid, IGNORANT motherfucker are you? Go spend 15 seconds of YOUR OWN FUCKING TIME, and FETCH IT YOURSELF. -- Your

Re: [Full-disclosure] Mike Lynn's controversial Cisco Security Presentation

On Fri, 29 Jul 2005, Jason Coombs wrote: > J.A. Terranson wrote: > > didn't get my copy from Infowarrior. Nor have I seen any "order". > > "On Thursday, Judge Jeffrey White of the United States District Court > for the Northern District of California issu

Re: [Full-disclosure] Mike Lynn's controversial Cisco Security Presentation

c view is absurd. > deCSS, anybody? ;) Precisely. -- Yours, J.A. Terranson [EMAIL PROTECTED] 0xBD4A95BF I like the idea of belief in drug-prohibition as a religion in that it is a strongly held belief based on grossly insufficient evidence and bolstered by faith born of intuitions flowi

Re: [Full-disclosure] Mike Lynn's controversial Cisco Security Presentation

On Fri, 29 Jul 2005, Jason Coombs wrote: > J.A. Terranson wrote: > > On Fri, 29 Jul 2005, Jason Coombs wrote: > > > > *millions* of copies of these "secrets" in general circulation. Nobody > > can assert with a straight face that anything about Lynn

Re: [Full-disclosure] Mike Lynn's controversial Cisco Security Presentation

* of copies of these "secrets" in general circulation. Nobody can assert with a straight face that anything about Lynn's presentation is not completely and totally within the public view - and irretrievably so. -- Yours, J.A. Terranson [EMAIL PROTECTED] 0xBD4A95BF "A stock b

Re: [Full-disclosure] Mike Lynn's controversial Cisco Security Presentation

cisco.pdf > > > I wonder if he will get a Cease And Desist letter demanding to take down > the Cease and Desist letter Only if it's issued under the so-called (and inversely named) "Patriot Act". -- Yours, J.A. Terranson [EMAIL PROTECTED] 0xBD4A95BF "A s

Re: [Full-disclosure] Mike Lynn's controversial Cisco Security Presentation

On Fri, 29 Jul 2005, Jason Coombs wrote: > J.A. Terranson wrote: > > > > I believe that at the moment of disclosure it becomes public domain. > > Echoes of RC4... > > Wrong, J.A. > > infowarrior.org is now hosting a fine replica of the cease and desist > le

Re: [Full-disclosure] Cisco IOS Shellcode Presentation

a great idea, and every bit a "general purpose processor". Why it never caught on I never fully understood. Honestly, I hadn't thought of the tagged processors when I answered Jason's rant - I was merely thinking of separated data and code, but really, S38 would have been the right

Re: [Full-disclosure] Cisco IOS Shellcode Presentation

On Fri, 29 Jul 2005, Frank Knobbe wrote: > On Fri, 2005-07-29 at 18:57 -0500, J.A. Terranson wrote: > > They fucked up. They'll have to fix it then. But thats not the same > as > > the gross negligence they're being accused of. > > I'm not sure that ca

Re: [Full-disclosure] Mike Lynn's controversial Cisco Security Presentation

_ > > Full-Disclosure - We believe in it. > > Charter: http://lists.grok.org.uk/full-disclosure-charter.html > > Hosted and sponsored by Secunia - http://secunia.com/ > > > ___________ > Full-Disclosure - We believe in it. > Charter: http://lists.grok.org.uk/full-disclos

Re: [Full-disclosure] Cisco IOS Shellcode Presentation

g on an obviously deficient platform and has withstood all comers up to now is pretty amazing. They fucked up. They'll have to fix it then. But thats not the same as the gross negligence they're being accused of. I am not a Cisco fan, and Jason can attest to that. Also, I own no sto

Re: [Full-disclosure] Cisco IOS Shellcode Presentation

very least any possible criminal charges against Lynn dropped. Do I hear a faint echo of Adobe??? -- Yours, J.A. Terranson [EMAIL PROTECTED] 0xBD4A95BF "A stock broker is someone who handles your money until its all gone." Diana Hubbard (of Scientology fame) _

Re: [Full-disclosure] Cisco IOS Shellcode Presentation

; ___ > Full-Disclosure - We believe in it. > Charter: http://lists.grok.org.uk/full-disclosure-charter.html > Hosted and sponsored by Secunia - http://secunia.com/ > -- Yours, J.A. Terranson [EMAIL PROTECTED] 0xBD4A95BF "A

Re: [Full-disclosure] Considering nSight, any opinions?

On Thu, 28 Jul 2005, Jason Heschel wrote: > Hi list, > > I tried sending this to a SecurityFocus list but I think everyone's at > Blackhat or something. :) > > We've spent the last few weeks evaluating nSight (www.intrusense.com). > It's been very helpful in identifying exactly what, when and who

Re: [Full-disclosure] NETBIOS SMB IPC$ unicode share access

group? *Anyone*??? Didn't think so... -- Yours, J.A. Terranson [EMAIL PROTECTED] 0xBD4A95BF "A stock broker is someone who handles your money until its all gone." Diana Hubbard (of Scientology fame) ___ Full-Disclosure -

Re: [Full-disclosure] Our Industry Is Seriously Ethics Impaired

titutes "reputable". A "reputable" company does not encourage the writing of malware for money, or the withholding of information from the community (FD) in exchange for mere personal gain. -- Yours, J.A. Terranson [EMAIL PROTECTED] 0xBD4A95BF "A stock broker is s

[Full-disclosure] Our Industry Is Seriously Ethics Impaired

Yet another voice baying at the moon. -- Yours, J.A. Terranson [EMAIL PROTECTED] 0xBD4A95BF "A stock broker is someone who handles your money until its all gone." Diana Hubbard (of Scientology fame) ---

Re: [Full-disclosure] iDEFENSE/VeriSign - VCP Program Changes

00 > 4 $2,000 $4,000 > 5 $1,000 $2,000 > > Incentive program: > The purpose of the incentive program is to reward the top three > contributors for each quarter. The old and new pricing structures are as > follows: > > Old New > 1 $3,000 $5,000 > 2 $2,000 $3,000 &g

Re: [Full-disclosure] Why Vulnerability Databases can't do everything

saw the problem. just like everyone else did.) 90+ percent of our current woes can be laid at the doorstep of this single fuck up. -- Yours, J.A. Terranson [EMAIL PROTECTED] 0xBD4A95BF "If I want to gamble, I'll continue to have unprotected sex with my 14 year old first cousin."

Re: [Full-disclosure] Security contact at Nortel?

On Fri, 15 Jul 2005, security curmudgeon wrote: > : Does anybody have the e-mail address of a security contact at Nortel? Nortel. Security. Oxymoron. -- Yours, J.A. Terranson [EMAIL PROTECTED] 0xBD4A95BF "If I want to gamble, I'll continue to have unprotected sex with m

[Full-disclosure] [SOT] Some companies are just asking for it. (fwd)

Germane to recent threads... -- Forwarded message -- Date: Thu, 23 Jun 2005 22:42:44 -0400 From: Perry E. Metzger <[EMAIL PROTECTED]> To: cryptography@metzdowd.com Subject: Some companies are just asking for it. My girlfriend just got an (apparently legitimate from what I can te

Re: [Full-disclosure] Internet Explorer / Outlook / Microsoft Office private exploit request

> We will follow you. > > > > > > Best Regards > > > > > > > > > > > > > > > ___ > > > Full-Disclosure

Re: [Full-disclosure] Off topic rant to my friends

se! > > There. I fell better now. > > > thank you > Randall M > > > > ___ > Full-Disclosure - We believe in it. > Charter: http://lists.grok.org.uk/full-disclosure-charter.html > Hosted and sponsored by Secunia - http://se

Re: [Full-disclosure] Not even the NSA can get it right

Wait, so are you folks saying that the NSA intentionally allowed an XSS > bug on their Web site so that someone here would report it for some > unknown-to-us devious end? While I agree with Dan, let me play Devil's Advocate: "live" Honeypot? -- Yours, J.A. Terranson [E

Re: [Full-disclosure] Not even the NSA can get it right

On Tue, 24 May 2005, Barrie Dempster wrote: > http://www.nsa.gov/notices/notic3.cfm?Address=%22%3E%3Cscript%3Ealert(%22We%20love%20our%20XSS%22)%3C/script%3E Too funny! -- Yours, J.A. Terranson [EMAIL PROTECTED] 0xBD4A95BF "Never belong to any party, always oppose privileged

RE: [Full-disclosure] RE: Benign Worms (Cosmin Stejerean)

On Sun, 15 May 2005, Stejerean, Cosmin wrote: > While not the best way to handle patch management I still think the idea of > benign worms is one worth researching and experimenting with. Lets hope you don't choose to conduct these "experiments" on Stanford networks. -- Y

Re: [Full-disclosure] Benign Worms

oys Catholic Church ;-) > There's a conspiracy for ya. ;) Conspiracy confirmed. -- Yours, J.A. Terranson [EMAIL PROTECTED] 0xBD4A95BF "That bitch needs to learn proper Road Rage Etiquitte. Never give up." Me on 14 April 05, on I270, doing about 90mph and

Re: [Full-disclosure] Benign Worms

Why would an *administrator*, someone with FULL rights to the machine, use such a device to place patches??? -- Yours, J.A. Terranson [EMAIL PROTECTED] 0xBD4A95BF "What this country needs is a good old fashioned nuclear enema." ___

Re: [Full-disclosure] Re: Internet Going Down For Maintenance

On Fri, 1 Apr 2005, Carlos de Oliveira wrote: > Is this serious? > It is not funny. Then you are humor impaired. That was VERY funny! -- Yours, J.A. Terranson [EMAIL PROTECTED] 0xBD4A95BF "To hell with Terri Schiavo: stop feeding Kirstie Alley!" http://ww

Re: [Full-disclosure] CISSP Test

than respect, to our profession. -- Yours, J.A. Terranson [EMAIL PROTECTED] 0xBD4A95BF "Quadriplegics think before they write stupid pointless shit...because they have to type everything with their noses." http://www.tshirthell.com/

Re: [Full-disclosure] Re: Microsoft Patches & Political Theory...

e just because the current goverment is immoral, or even illegitimate (as it was four years ago). Regardless of whether government is "proper", it is, by definition, intrusive and all-powerful within it's own sovereign borders, and as such security issues which affect government affect eve

Re: [Full-disclosure] Reuters: Microsoft to give holes info to Uncle Sam first - responsible vendor notification may not be a good idea any more...

l. "Government" is a huge morass of systems, many of which are critical, and many more of which talk to something critical by dint of being owned by this entity "government". Because any "government" issue is likely to cascade, all government is, by definition, critical.

Re: [Full-disclosure] Reuters: Microsoft to give holes info to Uncle Sam first - responsible vendor notification may not be a good idea any more...

government. > Devdas Bhagat -- Yours, J.A. Terranson [EMAIL PROTECTED] 0xBD4A95BF "Quadriplegics think before they write stupid pointless shit...because they have to type everything with their noses." http://www.tshirthell.com/ ___ Fu

Re: [Full-disclosure] Reuters: Microsoft to give holes info to Uncle Sam first - responsible vendor notification may not be a good idea any more...

sure and bug-fix policy. If this is the case, I would agree with this position. > IMNSHO one more reason for the rest of the world to switch to > non-proprietary products and solutions. There are plenty of good reasons to switch - this one is pretty low on the list ;-) > Regards, >

Re: [Full-disclosure] Reuters: Microsoft to give holes info to Uncle Sam first - responsible vendor notification may not be a good idea any more...

As such, your "view" is worthless, and can be safely discarded. -- Yours, J.A. Terranson [EMAIL PROTECTED] 0xBD4A95BF "Quadriplegics think before they write stupid pointless shit...because they have to type everything with their noses." http://www.tshirthell.co

RE: [Full-disclosure] Reuters: Microsoft to give holes info to UncleSam first - responsible vendor notification may not be a good idea anymore...

; Here is a link that maybe makes the test nature a little more clear > > http://www.internetnews.com/security/article.php/3489586 -- Yours, J.A. Terranson [EMAIL PROTECTED] 0xBD4A95BF "Quadriplegics think before they write stupid pointless shit...because they have to type everything with

Re: [Full-disclosure] Reuters: Microsoft to give holes info to UncleSam first - responsible vendor notification may not be a goodidea any more...

machines running EMS and PD or a bunch of core routers making packets appear at your router, infrastructure *should*, ALWAYS, come first. > Regards, > > Jason Coombs > [EMAIL PROTECTED] //Alif -- Yours, J.A. Terranson [EMAIL PROTECTED] 0xBD4A95BF "Quadriplegics think before they

Re: [Full-disclosure] Reuters: Microsoft to give holes info to Uncle Sam first - responsible vendor notification may not be a good idea any more...

e national infrastructure is compromised, we are all up shit's creek, if Joe's Corner Store is compromised, only Joe and possibly Joe's small geographic user base is hosed. Decrying this shows you have not thought the problem through Tamas. -- Yours, J.A. Terranson [EMAIL PROTECTED] 0

<    1   2