OSEC

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com
 
Re: [Full-Disclosure] Joyous Holiday Hacking

From: Stef (stefmitgmail.com)
Date: Fri Dec 24 2004 - 16:35:32 CST


That's the opposite we did - myself and a colleague of mine, when we
setup a honeynet a few years back, at a college, for a research/paper
about security - i.e. we subscribed and pre-fab-ed ('cause we did not
know if some mailing list were clever enough to reject real
responders) "out of office" messages, for email addresses belonging to
domains registered by us, with only honeypots at the other end ... and
then we carried out analysis/statistics for time between postings and
honeypot being hit, and by whom ;)

... so - be careful before you jump to "out of office" messages - they
may not be what they appear :)

Merry Christmas and Happy Holidays to all, now!

On Thu, 23 Dec 2004 21:22:37 -0800, Gregory Gilliss
<ggillissnetpublishing.com> wrote:
> Merry Christmas!
>
> It's so much fun to post to a mailing list and to receive all of the "out
> of office" auto-replies. Now not only do I know that you subscribe to FD,
> but also you are away (which means that I can beat on your system with some
> impunity).
>
> Turn off the auto-responders, people, or else use the handy feature to
> disable your subscription while you're gone.
>
> -- Greg
>
> --
> Gregory A. Gilliss, CISSP E-mail: greggilliss.com
> Computer Security WWW: http://www.gilliss.com/greg/
> PGP Key fingerprint 2F 0B 70 AE 5F 8E 71 7A 2D 86 52 BA B7 83 D9 B4 14 0E 8C A3
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.netsys.com/full-disclosure-charter.html
>
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html