Full Disclosure mailing list archives
Re: kaspersky-labs webserver or listserver com
From: Ka <ka () khidr net>
Date: Fri, 8 Nov 2002 12:32:21 +0100
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 At Freitag, 8. November 2002 12:25 Nick FitzGerald wrote:
... the real sending IP is in Mexico ...
If the server is/was owned or access to a mail-pipe or internal mail-backdoor was gained (which is one of the possible courses of this virus besides pure mail-admin stupidity), then that could (and would) be certainly forged also. Hence until the hole and it's consequences are discovered, I wouldn't trust that IP from Mexico. As I assume that whoever it was is reading this list too: greetings and kudos to the Secretaria de Educacion! I never laughed so much about virus warnings as tonight. Ka - -- The language center in the human brain was developed by evolution to create excuses. http://www.khidr.net/users/ka/pgpkey.asc -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (GNU/Linux) Comment: For info see http://www.gnupg.org iD8DBQE9y6DF72vu22ltWBERAuu8AJ47TOjdgdezxpytRLGf0FCxdWio5wCcCzYb /vj2PFvku4elj+fU2azYnH4= =T2Tu -----END PGP SIGNATURE----- _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
Current thread:
- kaspersky-labs webserver or listserver compromised? Ka (Nov 07)
- Re: kaspersky-labs webserver or listserver compromised? Andreas Tirok (Nov 08)
- Re: kaspersky-labs webserver or listserver com Nick FitzGerald (Nov 08)
- Re: kaspersky-labs webserver or listserver com Ka (Nov 08)
- Re: kaspersky-labs webserver or listserver compromised? Ka (Nov 08)
- Re: kaspersky-labs webserver or listserver com Nick FitzGerald (Nov 08)
- Re: kaspersky-labs webserver or listserver compromised? Brian McWilliams (Nov 08)
- Re: kaspersky-labs webserver or listserver compromised? Ka (Nov 08)
- Kaspersky blames "massive attack" Brian McWilliams (Nov 08)
- Re: kaspersky-labs webserver or listserver compromised? Ka (Nov 08)
- Re: kaspersky-labs webserver or listserver compromised? Andreas Tirok (Nov 08)