|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
From: Justin Wojdacki (justin.wojdacki
analog.com)Date: Mon Jun 17 2002 - 11:54:30 CDT
At least one person mentioned in the chatlogs is stepping forward to
claim it's a hoax:
<BEGIN MESSAGE>
Subject: Re: openbse rumours
Date: Mon, 17 Jun 2002 11:05:11 -0500 (CDT)
From: pr0ix <pr0ixdef-con.org>
To: <vuln-devsecurityfocus.com>
CC: <BlueBoarthievco.com>
Earlier today, someone calling themselves ``Van Cloude Jandame''
posted a message to VULN-DEV and OpenBSD-misc entitled ``openbse
rumours'' (sic).
> (within the rest of them) talking about the 7350-crocodile.c,
> 7350-obsdftpd.c and the 7350-pf.c exploit code by team teso made with
> support of GOBBLES Security, who gave them the advisories.
With the exception of 7350oftpd (which is public), these exploits do
not
exist. Furthermore, GOBBLES is a deliberate joke played out by some
otherwise
avid fans of non-disclosure.
> <m0rgan> ./a.out
> <m0rgan> 7350-crocodile - x86/OpenBSD apache/telnetd/sshd
> *** pr0ix (pr0ixdef-con.org) has joined #darknet
These logs are fake. No such conversation ever occurred.
> <m0rgan> ./7350-crocodile [options] [host] [port] [misc-option]
> <m0rgan>
> <m0rgan> -d <daemon> (1= apache, 2= telnetd, 3= sshd)
This, too, is fake.
Conclusion: This is a poor attempt at conjuring up the spectre of
``unreleased OpenBSD exploits'' in people's minds. Don't fall for it.
<END MESSAGE>
-- ------------------------------------------------- Justin Wojdacki justin.wojdacki
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]