[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-Disclosure] Things that make you go "Hmmm"

To: full-disclosure@xxxxxxxxxxxxxxxx
Subject: Re: [Full-Disclosure] Things that make you go "Hmmm"
From: Matt <smp.repicky@xxxxxxxxx>
Date: Wed, 2 Mar 2005 10:49:16 -0500

Would they really want to promote themselves being so stupid that they
get hacked and rather than take any steps to find out how, just
re-image the server....  The "FORENSICS" server?  I mean... really...

Then again on the other hand, if they're not promoting themselves,
they're still just that stupid since they're using the seclist to send
email back and forth between each other.


--


On Wed, 2 Mar 2005 17:22:30 +0300, Egoist <mastah@xxxxxxxxxxxx> wrote:
> Hello Andreia,
> 
> Wednesday, March 2, 2005, 4:51:45 PM, you wrote:
> 
> AG> Ooooo, soap opera! Can't wait for the next chapter in the tale of
> AG> "forensics.pivx", the mail server that was! :D
> 
> AG> AvG
> 
> AG> On Wed, 2 Mar 2005 11:27:18 +0100, Andriy Bilous
> AG> <Andriy.Bilous@xxxxxxxxx> wrote:
> >>
> >> I didn't get it... Now you have no mail server and use the open maillist 
> >> for
> >> corporate correspondence? We are waiting impatiently for detailed report 
> >> how
> >> this server was compromised.
> >>
> >> -----Original Message-----
> >> From: Jason Coombs [mailto:jasonc@xxxxxxxxxxx]
> >> Sent: Wednesday, March 02, 2005 5:24 AM
> >> To: Mark Remington; 'Burke N. Hare'
> >> Cc: full-disclosure@xxxxxxxxxxxxxxxx
> >> Subject: Re: [Full-Disclosure] Things that make you go "Hmmm"
> >>
> >> Mark, your story is convenient. It also does not match the statements of
> >> others at PivX who also claim to be involved in responding to this 
> >> incident.
> >>
> >> According to an e-mail that I received earlier today, "The
> >> forensics.pivx.com mail server was trashed."
> >>
> >> PivX corporate counsel contacted me with the following query:
> >>
> >> "Why did you change the password on our server?"
> >>
> >> Then I received a follow-up from PivX counsel after I denied doing any such
> >> thing:
> >>
> >> "Our forensics server had the password changed so I figured it was you!"
> >>
> >> The conclusion was thus:
> >>
> >> "Don't worry about the server. It is being re-imaged."
> >>
> >> This makes me go Hmmm...
> >>
> >> Sincerely,
> >>
> >> Jason Coombs
> >> jasonc@xxxxxxxxxxx
> >>
> >> -----Original Message-----
> >> From: "Mark Remington" <mremington@xxxxxxxxxxxxxxx>
> >> Date: Tue, 1 Mar 2005 18:07:04
> >> To:"'Jason Coombs'" <jasonc@xxxxxxxxxxx>,       "'Burke N. Hare'"
> >> <bounce@xxxxxxxxxxxxxxx>
> >> Cc:full-disclosure@xxxxxxxxxxxxxxxx
> >> Subject: RE: [Full-Disclosure] Things that make you go "Hmmm"
> >>
> >> All,
> >>
> >> This box was not taken down by any hacker, or owned, it was taken down by 
> >> my
> >> sys admins at PivX for maintenance.  Forensics is a division of PivX and we
> >> manage that server.  There's patching that needs to happen, so we took it
> >> down.
> >>
> >> Sorry for any chatter about this today.  Obviously, there's some
> >> mis-communication here.  Hopefully this clears it all up.
> >>
> >> Mark Remington
> >> VP Operations
> >> PivX Solutions
> >>
> >> > -----Original Message-----
> >> > From: full-disclosure-bounces@xxxxxxxxxxxxxxxx
> >> > [mailto:full-disclosure-bounces@xxxxxxxxxxxxxxxx] On Behalf
> >> > Of Jason Coombs
> >> > Sent: Tuesday, March 01, 2005 5:06 PM
> >> > To: Burke N. Hare
> >> > Cc: full-disclosure@xxxxxxxxxxxxxxxx
> >> > Subject: Re: [Full-Disclosure] Things that make you go "Hmmm"
> >> >
> >> >
> >> > And whomever it was that just owned the forensics.PivX.com
> >> > linux box, that wasn't a very nice thing to do...
> >> >
> >> > You should apologize.
> >> >
> >> > Cheers,
> >> >
> >> > Jason Coombs
> >> > jasonc@xxxxxxxxxxx _______________________________________________
> >> > Full-Disclosure - We believe in it.
> >> > Charter: http://lists.netsys.com/full-disclosure-charter.html
> >> >
> >>
> >> _______________________________________________
> >> Full-Disclosure - We believe in it.
> >> Charter: http://lists.netsys.com/full-disclosure-charter.html
> >>
> >> _______________________________________________
> >> Full-Disclosure - We believe in it.
> >> Charter: http://lists.netsys.com/full-disclosure-charter.html
> >>
> >> _______________________________________________
> >> Full-Disclosure - We believe in it.
> >> Charter: http://lists.netsys.com/full-disclosure-charter.html
> >>
> AG> _______________________________________________
> AG> Full-Disclosure - We believe in it.
> AG> Charter: http://lists.netsys.com/full-disclosure-charter.html
> 
> looks like stupid promotion of pivx
> is it?
> 
> --
> Best regards,
>  Egoist                            mailto:mastah@xxxxxxxxxxxx
> 
> 
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.netsys.com/full-disclosure-charter.html
>
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Follow-Ups:
- RE: [Full-Disclosure] Things that make you go "Hmmm"
  - From: Aditya Deshmukh
- Re: [Full-Disclosure] Things that make you go "Hmmm"
  - From: James Tucker

References:
- RE: [Full-Disclosure] Things that make you go "Hmmm"
  - From: Andriy Bilous
- Re: [Full-Disclosure] Things that make you go "Hmmm"
  - From: Andreia Gaita
- Re[2]: [Full-Disclosure] Things that make you go "Hmmm"
  - From: Egoist

Prev by Date: [Full-Disclosure] New virus?
Next by Date: Re: [Full-Disclosure] New virus?
Previous by thread: Re[2]: [Full-Disclosure] Things that make you go "Hmmm"
Next by thread: RE: [Full-Disclosure] Things that make you go "Hmmm"
Index(es):
- Date
- Thread