Re: Snort and SourceFire Compromised

["V.O." <vosipov () tpg com au>]

Do you always believe everything that people tell you? :) how do you know
that this compromise is for real? Although I must admit PHC guys are
becoming more and more successful in spreading FUD...

W.


----- Original Message ----- 
From: <joeypork () hushmail com>
To: <snort-users () lists sourceforge net>;
<snort-devel () lists sourceforge net>; <full-disclosure () lists netsys com>;
<bugtraq () securityfocus com>
Sent: Sunday, September 21, 2003 3:46 PM
Subject: [Full-disclosure] Snort and SourceFire Compromised


> Hey, has anyone else seen this:
>
> http://www.phrack.nl/phrack62/p62-0x0d.txt
>
> It looks like the PHC folks are at it again, the above is an article
> on "sneeze", a new script that will generate traffic to trigger on every
> snort rule.
>
> Also, appended to the end of the article is the home dirs of everyone
> at Sourcefire/Snort. You can see what is in Marty's directory, etc. Go
> check it out.
>
>
>
>
>
> Concerned about your privacy? Follow this link to get
> FREE encrypted email: https://www.hushmail.com/?l=2
>
> Free, ultra-private instant messaging with Hush Messenger
> https://www.hushmail.com/services.php?subloc=messenger&l=434
>
> Promote security and make money with the Hushmail Affiliate Program:
> https://www.hushmail.com/about.php?subloc=affiliate&l=427
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.netsys.com/full-disclosure-charter.html

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html