Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email firstname.lastname@example.org
Re: [Full-Disclosure] InfoSec sleuths beware ...
From: Dave Horsfall (davehorsfall.org)
Date: Fri Feb 20 2004 - 03:02:49 CST
On Thu, 19 Feb 2004, Calum wrote:
> > Am I the only one to have noticed that the unzipped contents neatly fit on
> > a CD? Not arguing one way or the other, but it does suggest a possible
> > vector. Accidental? I doubt it.
> If that was the way that the files were leaked, surely it would have been the
> zip that was ~650 Mb?
Not if the perp had a limited window of opportunity...
Let's say he knew he was about to be shown the door, for example. He
fires up a GUI, clicks on the juciest directories until he gets 650Mb,
writes the CD, then pockets it. Later, he zips it at his leisure. That
way, there's no incriminating watermarks or the like.
It's what *I* would do, after all.
Full-Disclosure - We believe in it.