Re: SSH2 Exploit?

[H D Moore <sflist () digitaloffense net>]

I have gotten a few dozen emails now asking what happened to the binaries I 
posted. One of the TESO folks wasn't very happy that the tarball included a 
copy of their x2 exploit and asked that I remove it. I don't believe in 
distributing someones work from my web site if the don't want it on there, so 
I took the tarball down. This is an entire topic in itself and I would happy 
to talk it about it off-list. If anyone is interested in _just_ the 
auto-rooter code minus the actual x2 exploit, let me know and I will that 
part of it back online, at least until the author of _it_ starts to bitch ;) 

Also, some people somehow got the impression that I was trying to take credit 
for the auto-rooter code I posted. Just in case anyone missed it the first 
time, I would like to reiterate that the tarball was found on a compromised 
system I was helping out a friend with. Besides, I would be embarrased to be 
the author of that code, its fugly...

On Thursday 07 March 2002 08:15 am, Ron DuFresne wrote:
> Mr. Moore,
>
> Thanks for the binaries.  I'd gotten a copy earlier from another rouce
> also to campare these with. but, I'm suspecting they will come out
> similiar.