Re: Fuzzing for Fun and Profit

[el8 () hushmail com]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Dear tal0n.

when will you do something that hasn't been done and is even
relevant or practical in 2009? fuzzing sftp and command line
arguments/env variables... nice and 2000AD "oh but its setuid(0)"
yeah on your box and the 5 other people who download it to write
useless papers/exploits to feel like they are smart/doing something
(hi prdelka). When is the last time a sftpd exploit was useful?
-----BEGIN PGP SIGNATURE-----
Charset: UTF8
Version: Hush 3.0
Note: This signature can be verified at https://www.hushtools.com/verify

wpwEAQMCAAYFAkmTBHwACgkQhtejBzrM32l9fAP+L5pGZYr3uQVaRUNh0hrO91/EjR8j
Eh/OLWWnhvEneGDwra2YR70R4AV0YDx3/wey/McNmiICu16xRLopvapqVdV2VVS5/1eP
z6lqWg3Rs+vZQuSEjmblxvhPLgb9dLBRr60qbKPfGPEZKssv3akkxZOmm9no8P1KX8wP
JU2A26Q=
=Iy18
-----END PGP SIGNATURE-----

--
Too many bills?  Click here to simplify your life and lower your debt.
 http://tagline.hushmail.com/fc/PnY6qxtUbhP9WqQxe5tCHOKDJDbyevAbhO9MFNhCEbIMLazpKKNbq/

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/