Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security FullDisclosure
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: !SPAM! [Full-Disclosure] Automated ssh scanning

from [Hugo Vazquez Carapez ] Network Security [Permanent Link]
Subject: Re: !SPAM! [Full-Disclosure] Automated ssh scanning
Date: Thu, 26 Aug 2004 08:33:43 -0700 
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

"And yes, they logged in and became root in no time. But I thought the
kernel compiled from the latest debian woody kernel-source could be
considered to be save. But I was wrong! So I posted the tools used by
the attackers to this list and also to the debian security team."

Dear Richard,
You must be very new and a huge clueless moron... not only you're evidencing
your low skills but you're wasting time + bandwidth

"But they managed to become root on this machine due to a kernel(?) exploit!
Should I then consider any woody system to be insecure to let people
work at?"

kernel eh?

Please take a quick look into isec.pl and take your time to read some
of their advisories. After you've done that, sit down, make some coffee
and learn that there are more bugs in the actual linux kernels which
are not disclosed yet.


"So I posted the tools used by the attackers to this list and also to
the debian security team."

WoW! Just normal tools, no ultra secret toolz. Be aware that this email
is part of the e-jihad tactical strategie to collaps the Internet

Have a nice day

DISCLOSURE TIMELINE
26/08/2004 Initial lame email
26/08/2004 Big laugh of debian security team
26/08/2004 Public disclosure
26/08/2004 We rehack iberia.com

Infohacking e-JIHAD Team <www.infohacking.com>
Hugo Vazquez Carapez aka "Fishface"
-----BEGIN PGP SIGNATURE-----
Note: This signature can be verified at https://www.hushtools.com/verify
Version: Hush 2.4

wkYEARECAAYFAkEuA8QACgkQPMMEGI9aoaezrgCfbDdC2LJU64IFND1WNqqLxaAUxFAA
oIHCQRdXrdP4epy4acntw0HseNMa
=PDyB
-----END PGP SIGNATURE-----




Concerned about your privacy? Follow this link to get
secure FREE email: http://www.hushmail.com/?l=2

Free, ultra-private instant messaging with Hush Messenger
http://www.hushmail.com/services-messenger?l=434

Promote security and make money with the Hushmail Affiliate Program: 
http://www.hushmail.com/about-affiliate?l=427

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  RE: [Full-Disclosure] Automated ssh scanning, Todd Towles
Next by Date:  RE: !SPAM! [Full-Disclosure] Automated ssh scanning, Stephen Agar
Previous by Thread:  RE: !SPAM! [Full-Disclosure] Automated ssh scanning, Todd Towles
Next by Thread:  RE: !SPAM! [Full-Disclosure] Automated ssh scanning, Stephen Agar
Indexes:  [Date] [Thread] [Top] [All Lists]