Lexa Software: Security-Alerts@yandex-team.ru archive

		Apache-Talk @lexa.ru
		Inet-Admins @info.east.ru
		Filmscanners @halftone.co.uk
		Security-alerts @yandex-team.ru
		nginx-ru @sysoev.ru

СТАТЬИ

ПЕРСОНАЛЬНОЕ

ПРОГРАММЫ

ПИШИТЕ
ПИСЬМА

АРХИВ :: Security-alerts

Security-Alerts mailing list archive (security-alerts@yandex-team.ru)

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [security-alerts] Securitylab.ru - lamers ?

To: "3APA3A" <3APA3A@xxxxxxxxxxxxxxxx>
Subject: RE: [security-alerts] Securitylab.ru - lamers ?
From: "Kazennov, Vladimir" <Vladimir.Kazennov@xxxxxxxxxx>
Date: Wed, 30 Aug 2006 15:35:34 +0400
Cc: <security-alerts@xxxxxxxxxxxxxx>
Content-class: urn:content-classes:message
In-reply-to: <476357451.20060830152802@xxxxxxxxxxxxxxxx>
List-archive: <http://www.lexa.ru/security-alerts/> (Web Archive)
List-id: <security-alerts.yandex-team.ru>
List-subscribe: <mailto:majordomo@yandex-team.ru?body=subscribe%20security-alerts>
List-unsubscribe: <mailto:majordomo@yandex-team.ru?body=unsubscribe%20security-alerts>
Thread-index: AcbMJ14JZQ1OrvPBRyWOsr8R33N1awAAGBYg
Thread-topic: [security-alerts] Securitylab.ru - lamers ?


> 
> Новости  с  XSSными  ссылками пишет Антипов. Исключительно 
> ради прикола,
> что   всем  и  так  понятно.  А  почто  идиот,  который  
> Valery  Marchuk
> <tecklord@xxxxxxxxxxxxx>  постит  их  в  F-D никому кроме 
> вышеуказанного
> идиота не известно. Первый раз все посмеялись. Второй раз уже 
 А откуда он о них узнал, интересно? Что-то я ссылок на сайте на страницу не 
увидел.
 
> не смешно.
 Вот именно - причем сообщение написано на английском языке и явно 
предназначено для иностранцев. Как-то это нехорошо.
 Кто-то (другой дурак) ведь может подумать, что взломали их защищенную систему 
Битрих и сплойтят сайт по безопасности таким образом...
 
> 
> --Wednesday, August 30, 2006, 3:09:56 PM, you wrote to 
> security-alerts@xxxxxxxxxxxxxx:
> 
> KV> Они что совсем глупые, если размещают фальсифицированное
> KV> сообщение с XSS-ной ссылкой? Кто у них пишет новости, интересно?
> 
> 
> >> -----Original Message-----
> >> From: full-disclosure-bounces@xxxxxxxxxxxxxxxxx 
> >> [mailto:full-disclosure-bounces@xxxxxxxxxxxxxxxxx] On Behalf 
> >> Of full-disclosure-request@xxxxxxxxxxxxxxxxx
> >> Sent: Wednesday, August 30, 2006 3:00 PM
> >> To: full-disclosure@xxxxxxxxxxxxxxxxx
> >> Subject: Full-Disclosure Digest, Vol 18, Issue 72
> >> 
> >> 
> ----------------------------------------------------------------------
> >> 
> >> Message: 1
> >> Date: Wed, 30 Aug 2006 08:58:40 +0300
> >> From: "Valery Marchuk" <tecklord@xxxxxxxxxxxxx>
> >> Subject: [Full-disclosure] FoxNews: Paralysis of the Fifth Power
> >> To: <full-disclosure@xxxxxxxxxxxxxxxxx>
> >> Message-ID: <004601c6cbf9$59595600$0400a8c0@pc4>
> >> Content-Type: text/plain; format=flowed; charset="koi8-r";
> >>    reply-type=original
> >> 
> >> Last week Russian hackers attacked top news agencies web 
> >> sites. Work in 
> >> these agencies was almost completely paralyzed by mass 
> >> defaces. Russian 
> >> hackers replaced published news by anti-American slogan 
> >> "Neft' bliznego 
> >> vostoka - dostoyanee chelovechestva. Russkaya Komputernaya 
> >> Mafia." (Oil of 
> >> Middle East belongs to all humanity. Russian Computer Mafia).
> >> 
> >> More at http://www.securitylab.ru/news/extra/273022.php
> >> 
> >> 
> >> 
> >> 
> >> ------------------------------
> >> ------------------------------
> >> 
> >> Message: 3
> >> Date: Wed, 30 Aug 2006 03:18:34 -0300
> >> From: cardoso <cardosolistas@xxxxxxxxxxxxxxxxxx>
> >> Subject: Re: [Full-disclosure] FoxNews: Paralysis of the 
> Fifth Power
> >> To: <full-disclosure@xxxxxxxxxxxxxxxxx>
> >> Message-ID: <20060830031213.D6E6.CARDOSOLISTAS@xxxxxxxxxxxxxxxxxx>
> >> Content-Type: text/plain; charset="ISO-8859-1"
> >> 
> >> Lesson #1:
> >> 
> >> When creating a fake page, find someone with a reasonable 
> knowledge of
> >> the english language AND HTML skills.
> >> 
> >> Lesson#2
> >> 
> >> using plain JPEGs donЄt make a very realistic fake page 
> from whatever
> >> site you want to pretend defacing. 
> >> 
> >> Lesson#3
> >> 
> >> Fake news on Fox News ?? you really want to pass unnoticed...
> >> 
> >> 
> >> 
> >> On Wed, 30 Aug 2006 08:58:40 +0300
> >> "Valery Marchuk" <tecklord@xxxxxxxxxxxxx> wrote:
> >> 
> >> > Last week Russian hackers attacked top news agencies web 
> >> sites. Work in 
> >> > these agencies was almost completely paralyzed by mass 
> >> defaces. Russian 
> >> > hackers replaced published news by anti-American slogan 
> >> "Neft' bliznego 
> >> > vostoka - dostoyanee chelovechestva. Russkaya Komputernaya 
> >> Mafia." (Oil of 
> >> > Middle East belongs to all humanity. Russian Computer Mafia).
> >> > 
> >> > More at http://www.securitylab.ru/news/extra/273022.php
> >> > 
> >> > 
> >> > _______________________________________________
> >> > Full-Disclosure - We believe in it.
> >> > Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> >> > Hosted and sponsored by Secunia - http://secunia.com/
> >> > 
> >> 
> >> -------------------------------------------------------------
> >> Carlos Cardoso - "Blogueiro Inconformado^
> >> http://www.carloscardoso.com <== sacanagem
> >> http://www.contraditorium.com <== ProBlogging e cultura digital
> >> 
> >> 
> >> 
> 
> 
> 
> -- 
> ~/ZARAZA
> Машина оказалась способной к единственному действию,
> а именно умножению 2x2, да и то при этом ошибаясь. (Лем)
> 
>

Follow-Ups:
- Re[2]: [security-alerts] Securitylab.ru - lamers ?
  - From: 3APA3A

References:
- Re: [security-alerts] Securitylab.ru - lamers ?
  - From: 3APA3A

Prev by Date: Re: [security-alerts] Securitylab.ru - lamers ?
Next by Date: Re[2]: [security-alerts] Securitylab.ru - lamers ?
Previous by thread: Re: [security-alerts] Securitylab.ru - lamers ?
Next by thread: Re[2]: [security-alerts] Securitylab.ru - lamers ?
Index(es):
- Date
- Thread