Re: Kill the DOG and win 100 000 DM

[Steve <steve () SECURESOLUTIONS ORG>]

What is a contest such as this going to prove?  That in four days a bunch of
script kiddies will pound away at a system they know nothing about?  There
is a very good chance that you will come out of this "contest" un-hacked and
again, what will that prove?

Contests such as these are not replacements for secure coding and proper
security operating procedures.  Just because someone fails to deface your
web site or root your box in four days doesn't mean that the software or
system is secure.

------------------------------------------------------------------------

Steve Manzuik                                   Calgary, Alberta, Canada
Moderator - Win2K Security Advice               (403)660-2997

Security Analyst - Bindview RAZOR Team
smanzuik () razor bindview com
http://razor.bindview.com

* - The opinions expressed in this email are mine, and mine alone.  They - *
* - do not reflect those of my employer or anyone else for that matter.  - *

------------------------------------------------------------------------

> -----Original Message-----
> From: VULN-DEV List [mailto:VULN-DEV () SECURITYFOCUS COM]On Behalf Of
> Pluym Christian
> Sent: Thursday, November 02, 2000 9:19 AM
> To: VULN-DEV () SECURITYFOCUS COM
> Subject: Kill the DOG and win 100 000 DM
>
>
> Hi,
>
> there will be an interesting contest 6.-10. November, first one
> who modifies
> the web page gets 100 000 German Marks (around $45 000). The
> system will be
> running Pitbull 3 under Solaris 7, with http, telnet and smtp open.
> Nov 7th /etc/passwd will be published
> Nov 8th an user account will be given away
> Nov 9th the root password will be published
>
> All the details are at
> http://www.argus-systems.com/events/hacker/
>
> There is no need for registration, I think some people here would like to
> give it a try.
>
> You probably want to start at
> http://www.argusrevolution.com/pitbullsupport.html
>
> Regards,
>       Christian