Full Disclosure mailing list archives

Re: InfoSec sleuths beware ...

From: Dave Horsfall <dave () horsfall org>
Date: Fri, 20 Feb 2004 20:02:49 +1100 (EST)

On Thu, 19 Feb 2004, Calum wrote:

Am I the only one to have noticed that the unzipped contents neatly fit on
a CD?  Not arguing one way or the other, but it does suggest a possible
vector.  Accidental?  I doubt it.


If that was the way that the files were leaked, surely it would have been the
zip that was ~650 Mb?


Not if the perp had a limited window of opportunity...

Let's say he knew he was about to be shown the door, for example.  He
fires up a GUI, clicks on the juciest directories until he gets 650Mb,
writes the CD, then pockets it.  Later, he zips it at his leisure.  That
way, there's no incriminating watermarks or the like.

It's what *I* would do, after all.

-- Dave

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Current thread:

Re: InfoSec sleuths beware ..., (continued)
- - - Re: InfoSec sleuths beware ... Nancy Kramer (Feb 18)
    - RE: InfoSec sleuths beware ... Aditya, ALD [Aditya Lalit Deshmukh] (Feb 19)
    - Re: InfoSec sleuths beware ... madsaxon (Feb 18)
    - Re: InfoSec sleuths beware ... Byron Copeland (Feb 18)
    - Re: InfoSec sleuths beware ... madsaxon (Feb 18)
    - Re: InfoSec sleuths beware ... Exibar (Feb 19)
    - Re: InfoSec sleuths beware ... Dave Horsfall (Feb 19)
    - Re: InfoSec sleuths beware ... Exibar (Feb 19)
    - Re: InfoSec sleuths beware ... michael williamson (Feb 19)
    - Re: InfoSec sleuths beware ... Calum (Feb 19)
    - Re: InfoSec sleuths beware ... Dave Horsfall (Feb 20)
    - Re: InfoSec sleuths beware ... Gregory A. Gilliss (Feb 19)
  - Re: InfoSec sleuths beware, Microsoft's attorneys may be knocking at your door Bernie, CTA (Feb 18)