RE: Telnetd exploit for solaris

["Hicks, John" <JHicks () JUSTICE GC CA>]

!STANDING OVATION

-----Original Message-----
From: James Puckett [mailto:gabriel_m_james () yahoo com]
Sent: Friday, September 07, 2001 2:48 PM
To: sween; vuln-dev () securityfocus com
Subject: Re: Telnetd exploit for solaris


Yeah, we all owe those script kiddies really big time.
If it wasn for the fucking script kiddies, we might
all have time to really stay on top of our machines,
so that the real crackers do not just slip past all of
the patches and code updates we endlessly implement to
keep out the script kiddies. If it was not for the
script kiddies, we might have time to implement better
mail filtering to keep polymorphic mail worms from
wasting our bandwidth and disk space. If it was not
for the script kiddies, my mom would be able to run a
cable modem with having to worry about some asswipe
using nmap to scan the @home networks and blast her
Windows machine just for the hell of it.

There would always be a huge need for good security
without script kiddies. If you REALLY knew security
you would realize that external attacks by script
kiddies are hardly a threat compared to internal
industrial espionage, espionage by foreign government
into nation militarty networks, a moronic middle
manager waxing sentimentally over his sysadmin days
and accidentally wasting an important server, or even
a fire wiping out a datacenter.  Script kiddies are
nothing but a nuisance, wasting time and money that
many companies cannot afford, distracting admins from
the real problems.

-james 
--- sween <sween () modelm org> wrote:
> On Wed, 5 Sep 2001, fintler wrote:
> > Now why would you possible want something like
> that...if you were an
>
> sooooo you can drive an industry and root somebody's
> solaris machine and
> prove to SOMEONE's company that this computer
> security bullshit isn't just
> a fad and that are not wasting 60K a year for a
> "security" expert to hover
> over security focus mailing lists and apply patches
> to expensive operating
> systems that were shipped broken in the first place.
>
> this industry needs an old fashioned ass whoopin.
>
> You owe script kiddies... BIG TIME.
>
> GET OFF MY LIST.
>
> > --- Labkonto <ppht-15 () mdstud chalmers se> wrote:
> > > Anyone here that developed an exploit
> > > for the Telnetd buffer overflow on solaris,
> > > or know where to get one?
> > >
> > >
> > > // pp
>
> admin, you'd just patch your
> > box and forget it. I can only assume you're trying
> to get into someone elses box, what makes you
> > think I'm going to give you a script so you can
> get someone fired from their job because you felt
> > like being an 3r3ct skr1pt k1ddi3.
> >
> > -fintler <fintler () halfbug com>
> >
> > __________________________________________________
> > Do You Yahoo!?
> > Get email alerts & NEW webcam video instant
> messaging with Yahoo! Messenger
> > http://im.yahoo.com
>
>
> --
>
> sween
> -script kiddie-

__________________________________________________
Do You Yahoo!?
Get email alerts & NEW webcam video instant messaging with Yahoo! Messenger
http://im.yahoo.com