Full Disclosure mailing list archives

RE: win2kup2date.exe ?

From: "Yaakov Yehudi" <yehudi () tehila gov il>
Date: Sun, 5 Sep 2004 16:38:31 +0200

It seems to me that the argument that it is wisest not to spread the
virus too widely is yet another argument that _sometimes_ security by
obscurity is a "Good Thing"[tm].

Stir that pot!

YY

-----Original Message-----
From: full-disclosure-admin () lists netsys com
[mailto:full-disclosure-admin () lists netsys com] On Behalf Of Nick
FitzGerald
Sent: Friday, September 03, 2004 17:16
To: full-disclosure () lists netsys com
Subject: Re: [Full-disclosure] win2kup2date.exe ?

James Tucker to Harlan Carvey to me to :

 > > > > ...  If you want to email me a copy of it, I'll

rip it apart and see what can be seen.


And world plus dog should entrust you with such

material because???
... most viruses, trojans and malware to not store copies of 
stolen data in their executables. Furthermore the file size is 
very small.


Interesting answer, but completely non-sequitor.  Nick asked why 
this person should be trusted with a live bit of malware, and your 
response is that it's not very big???  What does that have to do 
with anything?


Malware and viruses are VERY readily available in many places accross 
the internet. Therefore this point should be of no concern.  ...


It feels good when you stop hitting your head aginst the door too, and
there are very many doors readily available for you to hit your head
against.  Now, I don't know James, but I'd say it is a fair bet he
doesn't hit his head against every door he sees just so he can enjoy the
feeling when he stops hitting his head against each specific door.

Look fool -- just because samples of some malware are easily accessible
to you does not mean it is a good idea to encourage others to liberally
spray copies of probably-new-and-undetected-by-many-scanners malware
around willy nilly.  Such encouragement is ethically dubious, at best...

<snip>

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Current thread:

Re: win2kup2date.exe ?, (continued)
- - - Re: win2kup2date.exe ? KF_lists (Sep 09)
    - Re: win2kup2date.exe ? Über GuidoZ (Sep 09)
    - Re: win2kup2date.exe ? John Galt (Sep 10)
    - Re: win2kup2date.exe ? KF_lists (Sep 10)
    - Re: win2kup2date.exe ? VX Dude (Sep 12)
    - Re: win2kup2date.exe ? GuidoZ (Sep 12)
    - Re: win2kup2date.exe ? devis (Sep 13)
    - Re: win2kup2date.exe ? Barry Fitzgerald (Sep 13)
- Re: win2kup2date.exe ? rmulraney (Sep 03)
  - Re: Re: win2kup2date.exe ? devis (Sep 03)
- RE: win2kup2date.exe ? Yaakov Yehudi (Sep 05)
- Re: win2kup2date.exe ? Marek Isalski (Sep 09)
- win2kup2date.exe ? iDefense Labs (Sep 09)
  - Re: win2kup2date.exe ? Über GuidoZ (Sep 09)
- RE: win2kup2date.exe ? Watts, Jonathan (Sep 09)