Full Disclosure mailing list archives

Previous By Date Next
Previous By Thread Next

Re: list noise

From: Steve Kudlak <stevex11 () sbcglobal net>
Date: Thu, 06 Jan 2005 03:12:02 -0800
In my case I get a mix of stuff that comes a variety of places. The various sbc clones were in there, so was symoatico. There were Healtyh Insurance processors and they seemed the worst. I think it varies depending on a lot of variables. But it is worth watching this stuff and taking adequate precautions. I have Norton and am considering a backup. My other account is run through sentinare which is really good that plus Norton gets almost everything. The only one that got through yearsn ago was the A"Playa Virus" but luckily I don't use IE or Outlook and I just tossed it withoug opening the attachment so all was OK. 

Have Fun,
Sends Steve

P,S, I also scan all outgoing mail etc.



dcdave () att net wrote:


Steve,
On a related topic, what is sbcglobal? 90% of the virus e-mail I see coming in where I work (usually Jennifer the wild girl xxx07) is coming from infected sbcglobal addresses. Warm regards, 
dcdave--
CSO
InfoSec Group
703-626-6516

    -------------- Original message from Steve Kudlak
    <stevex11 () sbcglobal net>: --------------


    > dcdave () att net wrote:
    >
    > >I will NOT respond to this;
    > >I will NOT respond to this;
    > >I will Not respond to this;
    > >
    > >dcdave
    > >
    > >--
    > >CSO
    > >InfoSec Group
    > >703-626-6516
    > >
    > >
    > > -------------- Original message ----------------------
    > >From: phased
    > >
    > >
    > >>I also care about noise, and responding to stupid mails makes
    it worse.
    > >>Every time people send stupid mails like the rm file thing,
    and people reply
    > to
    > >>the list, the author was successful in filling the list with
    crap for a day or
    > >>so.
    > >>
    > >>If no one replies, then they dont get attention and the people
    who know their
    > >>advisories(anyone with common sense) are blatantly crap will
    not be affected
    > by
    > >>their nuisance.
    > >>
    > >>You always get a load of emails to the list from people who
    want to tell
    > >>everyone they know that an advisory for example was crap, yes
    we know
    > >>thank you, but we are not handing out gold stars today!!!
    > >>No need to tell us all every time!!!
    > >>
    > >>phased
    > >>
    > >>-----Original Message-----
    > >>From: Barrie Dempster
    > >>To: full-disclosure () lists netsys com
    > >>Date: Thu, 30 Dec 2004 09:36:07 +0000
    > >>Subject: RE: [Full-disclosure] Multiple Backdoors found in eEye
    > Products(IRISand
    > >>SecureIIS)
    > >>
    > >>
    > >>
    > >>>I'd hav! e to agr ee with the eEye statement on this one. You
    sent out an
    > >>>advisory without disclosing the details, which offers no real
    benefit to
    > >>>anyone. Many people consider this responsible disclosure but
    that also
    > >>>requires you to notify the vendor (there were no @eeye.com's
    in your
    > >>>"to" list but there were a couple of press mailboxes).
    > >>>
    > >>>You didn't contact eEye, you didn't release details, you used an
    > >>>anonymous address and failed to mention or credit any of the
    other guys
    > >>>in your "testing team", This can only lead us to believe that
    the
    > >>>advisory is fake and only intended to generate bad press for
    eEye. I
    > >>>personally don't care about eEye's PR rating but I do care
    about the
    > >>>level of noise on these lists and I do care about backdoor-ed
    commercial
    > >>>products that are in common use. You may have an issue with
    eEye and see
    > >>>this as revenge. However, I doubt you also have an issue with
    the many
    > >>>admins who probably have spent their holiday season
    investigating these
    > >>>claims, when there are likely more pressing matters to
    address, such as
    > >>>a large stock of alcohol.
    > >>>
    > >>>Show us details, or be quiet. If you intended to embarrass
    eEye the plan
    > >>>backfired as any competent professional on this list (there
    are a few -
    > >>>I've heard stories about them) would see this as a shameful
    attempt and
    > >>>would be laughing at you, not eEye.
    > >>>
    > >>>Seasons greetings to eEye and all Full Disclosure subscribers
    - even you
    > >>>"Lance Gusto".
    > >>>
    > >>>With Regards..
    > >>>Barrie Dempster (zeedo) - Fortiter et Strenue
    > >&! gt;>
    > >>> http://www.bsrf.org.uk
    > >>>
    > >>>[ gpg --recv-keys --keyserver www.keyserver.net 0x96025FD0 ]
    > >>>
    > >>>
    > >>>
    > >>>
    > >>>
    > >>>ATTACHMENT: application/pgp-signature ("signature.asc")
    > >>>
    > >>>_______________________________________________
    > >>>Full-Disclosure - We believe in it.
    > >>>Charter: http://lists.netsys.com/full-disclosure-charter.html
    > >>>
    > >>>
    > >>>
    > >>>
    > >>_______________________________________________
    > >>Full-Disclosure - We believe in it.
    > >>Charter: http://lists.netsys.com/full-disclosure-charter.html
    > >>
    > >>
    > >
    > >
    > >_______________________________________________
    > >Full-Disclosure - We believe in it.
    > >Charter: http://lists.netsys.com/full-disclosure-charter.html
    > >
    > >
    > >
    > Neither Will I!
    > Neither Will I!
    > Neither Will I!
    > Let it Die!
    > Let it Die!
    > Let it Die!;)
    >
    > Have Fun,
    > Sends Steve
> 


_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
Previous By Date Next
Previous By Thread Next

Current thread: