Full Disclosure mailing list archives

Previous By Date Next
Previous By Thread Next

(no subject)

From: <hatless () hush ai>
Date: Wed, 16 Aug 2006 15:17:53 +0200
Jason wrote:

Matt Burnett wrote:

You really think this would be hard to design. Think about how 

most spam

solutions work, if you get 25 posts in hour with 100k 

attachments from a

new user, do you think they are talking about security or are 

they

posting porn. Anything a spam filter would consider suspicous 

could be

flaged for moderator approval. Its not 100% fool proof but do 

you really

think some 16 year old kid whos posting porn here would take the 

time to

try to defeat it, in order just to post crappy porn?



Wonderful. I suggest that you get or develop this technology for
yourself and offer it to others.



Have you done the analysis of the images yet? I quote the 

challenge

again for your and the lists benefit.



"Are you an expert? Have you done an analysis of the porn? What 

were

your findings? Are there any hidden messages? Disclosures? 

Patterns?

Trends?"



The next target of a terrorist plot could be embedded in there 

somewhere

just waiting for you to discover it.


What's your problem? Who cares about that?
A simple filter would do the job:

example 1:
mail contains attachment -> attachment is image (WE HAVE FILE
EXTENSIONS - GUYS) -> let mod approve it or delete them

How often do you send images to a security related list? Not often, 
i
guess.

example 2:
more than 10 mails per hour -> let mod approve it/ delay delivery



If implemented properly it would not limit the free exchange of 

SECURITY

RELATED information, but would limit the exchange of porn on FD. 

You

dont think a couple thousand security people, most of whom are 

strong

supporters of privacy rights/civil rights/etc couldnt devise a 

proper

system that would not impead the exchange of security related 

information?

Anyways what legal issues are you talking about, be specific. 

For one i

know that it is against nearly all American corporate internet 

use

policies to look at porn. So some 16 year old kid could 

potentialy get

someone fired for sending porn on FD. Hows that for a legal 

issue.


If you are on a corporate network and subscribed to FD using 

corporate

resources without the authority and justification to do so then 

you

deserve to be terminated. It has nothing to do with porn and is 

just as

likely to have the same effect for downloading copyrighted 

content,

exploits, "dangerous material", viruses...


In my country it's absolutaly legit to check their own e-mails as
long as your work is not disturbed. Hint: Check mails while you 
take a
break. Btw. mails are treated as private so nobody cares what they
contain. Virii, trojans, spam, ... are usuallly filtered.

< removed other crap, nobody cares about >




Concerned about your privacy? Instantly send FREE secure email, no account required
http://www.hushmail.com/send?l=480

Get the best prices on SSL certificates from Hushmail
https://www.hushssl.com?l=485

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
Previous By Date Next
Previous By Thread Next

Current thread: