Full Disclosure mailing list archives

Previous By Date Next
Previous By Thread Next

Re: [fuzzing] The truth

From: "Joey Mengele" <joey.mengele () hushmail com>
Date: Thu, 19 Jul 2007 10:36:13 -0400
Well "David", you clearly have not followed the life and times of 
the Doctor. The Great Doctor (I am not referring to myself here) 
has also been impersonated by hackers who cleverly used PGP to fool 
the masses. I talked to Neal about this and he has told me he 
suspects PGP has been cracked. 

So yes, PGP is good, but the only real evidence one can provide as 
proof of identity are pictures of his or her own butt as Jarod 
DeMott has previously offered up on this list.

So "David", wheres the REAL proof?

J

On Thu, 19 Jul 2007 10:27:18 -0400 David Maynor 
<dave () erratasec com> wrote:

I am going to guess it has something to do with the pgp signature, 
I can post from dave () erratasec com and I can update the erratasec 
blog. 

-----Original Message-----
From: Joey Mengele [mailto:joey.mengele () hushmail com] 
Sent: Thursday, July 19, 2007 10:16 AM
To: andre () operations net; lmh () info-pull com; David Maynor
Cc: full-disclosure () lists grok org uk; 
fuzzing () whitestar linuxbox org; dailydave () lists immunitysec com
Subject: Re: [Full-disclosure] [fuzzing] The truth

But what does Dr. Neal Krawetz have to say? I will not draw any 
conclusions until he has the time to analyze the writing samples. 
As Neal has taught us, the students of Full Disclosure, there is 
no 
validation required for online impersonation [1]. How do we know 
you are not impersonating this David Maynor character?

More importantly, and of equal relevance to this list (these 
lists?), how can we be sure you aren't n3td3v? Or GOBBLES? Or both?

J

[1] http://www.securityfocus.com/columnists/441

On Thu, 19 Jul 2007 09:36:49 -0400 David Maynor 
<dave () erratasec com> wrote:

http://erratasec.blogspot.com/2007/07/i-am-not-lmh.html

-----Original Message-----
From: full-disclosure-bounces () lists grok org uk [mailto:full-
disclosure-bounces () lists grok org uk] On Behalf Of 
andre () operations net
Sent: Thursday, July 19, 2007 9:15 AM
To: Lance M. Havok
Cc: full-disclosure () lists grok org uk; 
fuzzing () whitestar linuxbox org; dailydave () lists immunitysec com
Subject: Re: [Full-disclosure] [fuzzing] The truth

Dave / LMH / whatever,

Give up.

You really don't get it, do you?

Rouland, Ptacek, hdm, myself - we're all out to get you.
Infosecsellout is a collaborative effort to drive you insane.

Aitel even wrote that script just to make you more paranoid.

If anyone actually cares that you used two identities online I'll
really be surprised.  So did my grandma.

Is this some kind of story?  A confession?  A bug report?  Your 
whole
paragraph about SILC leads nowhere - it doesn't make any sense.

Ptacek, hdm, myself, et al - we all know who Infosecsellout is.  
Not
because we wrote clever scripts that do user fingerprinting via
behavorial statistical analysis.  Think of it more like hearing 

the

voice of an old friend call you on the phone.  Someone you haven't
heard from in awhile.  Easy to identify, correct?

Wait, why am I asking you? - that's probably never going to 

happen 

to you.

dre

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/


--
Click for free info on real estate schools and make $150K/ year
http://tagline.hushmail.com/fc/Ioyw6h4eCnIQ58QE5Xosh8kr94mzZOAPaFhG
AZliJ13oEnyV3lCONS/


--
Need cash? Click to get an instant cash advance
http://tagline.hushmail.com/fc/Ioyw6h4dP5F8DOcft1JJV5wDm0jMPpxdoKPVar6fLOZRp7rmSx5bmw/

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
Previous By Date Next
Previous By Thread Next

Current thread: