Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security FullDisclosure
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [Full-disclosure] lots of connections to 64.40.117.19 port 80

from [Joey Mengele] Network Security [Permanent Link]
Subject: Re: [Full-disclosure] lots of connections to 64.40.117.19 port 80
Date: Fri, 18 Apr 2008 11:22:43 -0400 
News,

On Fri, 18 Apr 2008 11:11:53 -0400 news@dmcdonald.net wrote:

Eh? The closest thing I can think of to what you're saying is if 
the cause
of a DDOS was stored XSS on a popular site(s) being used get users
browsers to request information from 64.40.117.19. The XSS would 
be done
else where, and the DDOS attack itself would contain no 'payload'.



That is exactly what I am saying, thank you for clarifying for the 
others. Sometimes I am not as articulate as I would like to be.


In which case filtering user input on his side isnt going to 
anything.



Actually, it is going to anything, if done properly.


Plus, you still have no reason for calling this a textbool case of 
XSS, or
anything else for that matter. Without seeing the tcpdump, all we 
can do
is reel of a list of things in might be.



Your logic is not correct here. Please rethink this statement.


Best,

Renski



Same,

J

--
Amazing cruises.  Click here to find great deals.
http://tagline.hushmail.com/fc/Ioyw6h4eRWxit9KgITEla3eJ1ahgSImEFgk0W8lYc76qHVagchTYCE/

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  [Full-disclosure] ANNOUNCE: RFIDIOt-0.1s release (now available for Windows), Adam Laurie
Next by Date:  Re: [Full-disclosure] lots of connections to 64.40.117.19 port 80, Joey Mengele
Previous by Thread:  Re: [Full-disclosure] lots of connections to 64.40.117.19 port 80, php0t
Next by Thread:  Re: [Full-disclosure] lots of connections to 64.40.117.19 port 80, Joey Mengele
Indexes:  [Date] [Thread] [Top] [All Lists]