Re: [Full-Disclosure] Things that make you go "Hmmm"

Ooooo, soap opera! Can't wait for the next chapter in the tale of 
"forensics.pivx", the mail server that was! :D

AvG

On Wed, 2 Mar 2005 11:27:18 +0100, Andriy Bilous
<Andriy.Bilous@sabre.com> wrote:
> I didn't get it... Now you have no mail server and use the open maillist for
> corporate correspondence? We are waiting impatiently for detailed report how
> this server was compromised.
>
> -----Original Message-----
> From: Jason Coombs [mailto:jasonc@science.org]
> Sent: Wednesday, March 02, 2005 5:24 AM
> To: Mark Remington; 'Burke N. Hare'
> Cc: full-disclosure@lists.netsys.com
> Subject: Re: [Full-Disclosure] Things that make you go "Hmmm"
>
> Mark, your story is convenient. It also does not match the statements of
> others at PivX who also claim to be involved in responding to this incident.
>
> According to an e-mail that I received earlier today, "The
> forensics.pivx.com mail server was trashed."
>
> PivX corporate counsel contacted me with the following query:
>
> "Why did you change the password on our server?"
>
> Then I received a follow-up from PivX counsel after I denied doing any such
> thing:
>
> "Our forensics server had the password changed so I figured it was you!"
>
> The conclusion was thus:
>
> "Don't worry about the server. It is being re-imaged."
>
> This makes me go Hmmm...
>
> Sincerely,
>
> Jason Coombs
> jasonc@science.org
>
> -----Original Message-----
> From: "Mark Remington" <mremington@threatfocus.com>
> Date: Tue, 1 Mar 2005 18:07:04
> To:"'Jason Coombs'" <jasonc@science.org>,       "'Burke N. Hare'"
> <bounce@asmodeus.yi.org>
> Cc:full-disclosure@lists.netsys.com
> Subject: RE: [Full-Disclosure] Things that make you go "Hmmm"
>
> All,
>
> This box was not taken down by any hacker, or owned, it was taken down by my
> sys admins at PivX for maintenance.  Forensics is a division of PivX and we
> manage that server.  There's patching that needs to happen, so we took it
> down.
>
> Sorry for any chatter about this today.  Obviously, there's some
> mis-communication here.  Hopefully this clears it all up.
>
> Mark Remington
> VP Operations
> PivX Solutions
>
> > -----Original Message-----
> > From: full-disclosure-bounces@lists.netsys.com
> > [mailto:full-disclosure-bounces@lists.netsys.com] On Behalf
> > Of Jason Coombs
> > Sent: Tuesday, March 01, 2005 5:06 PM
> > To: Burke N. Hare
> > Cc: full-disclosure@lists.netsys.com
> > Subject: Re: [Full-Disclosure] Things that make you go "Hmmm"
> >
> >
> > And whomever it was that just owned the forensics.PivX.com
> > linux box, that wasn't a very nice thing to do...
> >
> > You should apologize.
> >
> > Cheers,
> >
> > Jason Coombs
> > jasonc@science.org _______________________________________________
> > Full-Disclosure - We believe in it.
> > Charter: http://lists.netsys.com/full-disclosure-charter.html
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.netsys.com/full-disclosure-charter.html
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.netsys.com/full-disclosure-charter.html
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.netsys.com/full-disclosure-charter.html
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html