Mailing List Archive: Full Disclosure: Full-Disclosure

Google Sacure

Full Disclosure full-disclosure RSS feed

Index | Next | Previous | View Threaded

whupass at hushmail

Oct 25, 2007, 12:19 PM

Post #1 of 16 (780 views)
Permalink

Google Sacure

How can security companies protect us if they can't even configure
their shit right?

http://www.sacure.com/news/index.php

Warning: mysql_pconnect(): Access denied for user:
'sacuredb [at] 64' (Using password: YES) in
/home/content/s/a/c/sacure/html/news/snews.php on line 457

Warning: mysql_select_db(): Can't connect to local MySQL server
through socket '/usr/local/mysql-5.0/data/mysql.sock' (2) in
/home/content/s/a/c/sacure/html/news/snews.php on line 459

Warning: mysql_select_db(): A link to the server could not be
established in /home/content/s/a/c/sacure/html/news/snews.php on
line 459
There was an error while connecting to the database.
Check your database settings.

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

tremaine at gmail

Oct 25, 2007, 12:47 PM

Post #2 of 16 (742 views)
Permalink

Re: Google Sacure [In reply to]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

So their sql server fell over. Shit happens.

- ---
Tremaine Lea
Network Security Consultant
Intrepid ACL
"Paranoia for hire"

On 25-Oct-07, at 1:19 PM, <whupass [at] hushmail>
<whupass [at] hushmail> wrote:

> How can security companies protect us if they can't even configure
> their shit right?
>
> http://www.sacure.com/news/index.php
>
> Warning: mysql_pconnect(): Access denied for user:
> 'sacuredb [at] 64' (Using password: YES) in
> /home/content/s/a/c/sacure/html/news/snews.php on line 457
>
> Warning: mysql_select_db(): Can't connect to local MySQL server
> through socket '/usr/local/mysql-5.0/data/mysql.sock' (2) in
> /home/content/s/a/c/sacure/html/news/snews.php on line 459
>
> Warning: mysql_select_db(): A link to the server could not be
> established in /home/content/s/a/c/sacure/html/news/snews.php on
> line 459
> There was an error while connecting to the database.
> Check your database settings.
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.7 (Darwin)

iQEcBAEBAgAGBQJHIPLOAAoJEKGa22zRy9WCSmYH/io6r6afUMPqwN7dxaCeGTN+
Ct7MzUh4TfBlNtGE+bZ5PFsEl9amnA1LBFemCaEGCmZe3av54cjFr28b7k7D4VIT
Mlh+UfY3PqAEjw2tUDbsmuPSvka1PhpcC7LzbmbWy/oqPwSwURiQdug/OEzlalxL
AzeBbrO5zgAWM4Yn7RfdnQ2xZu+knrNR22+NolkVOm7L6hnS+TDv1v6uJPM6qE/Y
K1aqL1hRDe8PwF5hOxfV7wQJUQHZUIINvpgQdc1G+Opx/ve8YSz0iHVWB+mi1jI4
4Ugx6ByohQXOAfuzlHCpViYI/48ZMDO//0hxyCK1JbrW73f1spZQ+d2O1+AUW28=
=gYUR
-----END PGP SIGNATURE-----

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

whupass at hushmail

Oct 25, 2007, 2:53 PM

Post #3 of 16 (746 views)
Permalink

Re: Google Sacure [In reply to]

Fell over a few months ago. They're supposed to be a security
company... you'd think that they would notice.

This is G o o g l e's cache of http://www.sacure.com/news/index.php
as retrieved on Aug 22, 2007 08:14:11 GMT.

On Thu, 25 Oct 2007 15:47:25 -0400 Tremaine Lea
<tremaine [at] gmail> wrote:
>So their sql server fell over. Shit happens.
>
>---
>Tremaine Lea
>Network Security Consultant
>Intrepid ACL
>"Paranoia for hire"
>
>
>
>On 25-Oct-07, at 1:19 PM, <whupass [at] hushmail>
><whupass [at] hushmail> wrote:
>
>> How can security companies protect us if they can't even
>configure
>> their shit right?
>>
>> http://www.sacure.com/news/index.php
>>
>> Warning: mysql_pconnect(): Access denied for user:
>> 'sacuredb [at] 64' (Using password: YES) in
>> /home/content/s/a/c/sacure/html/news/snews.php on line 457
>>
>> Warning: mysql_select_db(): Can't connect to local MySQL server
>> through socket '/usr/local/mysql-5.0/data/mysql.sock' (2) in
>> /home/content/s/a/c/sacure/html/news/snews.php on line 459
>>
>> Warning: mysql_select_db(): A link to the server could not be
>> established in /home/content/s/a/c/sacure/html/news/snews.php on
>> line 459
>> There was an error while connecting to the database.
>> Check your database settings.
>>
>> _______________________________________________
>> Full-Disclosure - We believe in it.
>> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
>> Hosted and sponsored by Secunia - http://secunia.com/

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

tremaine at gmail

Oct 25, 2007, 3:02 PM

Post #4 of 16 (749 views)
Permalink

Re: Google Sacure [In reply to]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

...

I take it all back. You were right :)

Heck, you'd think *any* company would notice.

- ---
Tremaine Lea
Network Security Consultant
Intrepid ACL
"Paranoia for hire"

On 25-Oct-07, at 3:53 PM, <whupass [at] hushmail>
<whupass [at] hushmail> wrote:

> Fell over a few months ago. They're supposed to be a security
> company... you'd think that they would notice.
>
> This is G o o g l e's cache of http://www.sacure.com/news/index.php
> as retrieved on Aug 22, 2007 08:14:11 GMT.
>
>
>
> On Thu, 25 Oct 2007 15:47:25 -0400 Tremaine Lea
> <tremaine [at] gmail> wrote:
>> So their sql server fell over. Shit happens.
>>
>> ---
>> Tremaine Lea
>> Network Security Consultant
>> Intrepid ACL
>> "Paranoia for hire"
>>
>>
>>
>> On 25-Oct-07, at 1:19 PM, <whupass [at] hushmail>
>> <whupass [at] hushmail> wrote:
>>
>>> How can security companies protect us if they can't even
>> configure
>>> their shit right?
>>>
>>> http://www.sacure.com/news/index.php
>>>
>>> Warning: mysql_pconnect(): Access denied for user:
>>> 'sacuredb [at] 64' (Using password: YES) in
>>> /home/content/s/a/c/sacure/html/news/snews.php on line 457
>>>
>>> Warning: mysql_select_db(): Can't connect to local MySQL server
>>> through socket '/usr/local/mysql-5.0/data/mysql.sock' (2) in
>>> /home/content/s/a/c/sacure/html/news/snews.php on line 459
>>>
>>> Warning: mysql_select_db(): A link to the server could not be
>>> established in /home/content/s/a/c/sacure/html/news/snews.php on
>>> line 459
>>> There was an error while connecting to the database.
>>> Check your database settings.
>>>
>>> _______________________________________________
>>> Full-Disclosure - We believe in it.
>>> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
>>> Hosted and sponsored by Secunia - http://secunia.com/
>

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.7 (Darwin)

iQEcBAEBAgAGBQJHIRJpAAoJEKGa22zRy9WCcWAIAOSMaeFVyOfMxwxPqJzcn8zg
3m4HeoChbo9GT7HbwPltkswLURvotcan7ZRr4vCgSGtnYKxSkMbmJ3WTMfmNI/YD
fnk5GZ1KGeWXQrMgndxA9b42Hbh7tpoLq9FdP7Uq+PgESD94Z4N+t977CgE+Fusi
bbfqpjzKdCaXPv0BZoicg5KY1OFhtkLsg3qM4Fgkf6IC88kMO1OPJAfihNgn1mtv
TLuRYZzVlBDLcIAetGwgKi4HHlkxZI/vm443vtz1MDJL9vPKxlh6GEjg9ZS6AqBU
LQ8eP+tEpqLHsMSL0ZQbvJ/ZPDBchEqQExShb8yjpIg7ei8KN1eDyQSPpA0cieI=
=GEPK
-----END PGP SIGNATURE-----

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

whupass at hushmail

Oct 25, 2007, 3:06 PM

Post #5 of 16 (746 views)
Permalink

Re: Google Sacure [In reply to]

amen.

On Thu, 25 Oct 2007 18:02:17 -0400 Tremaine Lea
<tremaine [at] gmail> wrote:
>...
>
>I take it all back. You were right :)
>
>Heck, you'd think *any* company would notice.
>
>---
>Tremaine Lea
>Network Security Consultant
>Intrepid ACL
>"Paranoia for hire"
>
>
>
>On 25-Oct-07, at 3:53 PM, <whupass [at] hushmail>
><whupass [at] hushmail> wrote:
>
>> Fell over a few months ago. They're supposed to be a security
>> company... you'd think that they would notice.
>>
>> This is G o o g l e's cache of
>http://www.sacure.com/news/index.php
>> as retrieved on Aug 22, 2007 08:14:11 GMT.
>>
>>
>>
>> On Thu, 25 Oct 2007 15:47:25 -0400 Tremaine Lea
>> <tremaine [at] gmail> wrote:
>>> So their sql server fell over. Shit happens.
>>>
>>> ---
>>> Tremaine Lea
>>> Network Security Consultant
>>> Intrepid ACL
>>> "Paranoia for hire"
>>>
>>>
>>>
>>> On 25-Oct-07, at 1:19 PM, <whupass [at] hushmail>
>>> <whupass [at] hushmail> wrote:
>>>
>>>> How can security companies protect us if they can't even
>>> configure
>>>> their shit right?
>>>>
>>>> http://www.sacure.com/news/index.php
>>>>
>>>> Warning: mysql_pconnect(): Access denied for user:
>>>> 'sacuredb [at] 64' (Using password: YES) in
>>>> /home/content/s/a/c/sacure/html/news/snews.php on line 457
>>>>
>>>> Warning: mysql_select_db(): Can't connect to local MySQL
>server
>>>> through socket '/usr/local/mysql-5.0/data/mysql.sock' (2) in
>>>> /home/content/s/a/c/sacure/html/news/snews.php on line 459
>>>>
>>>> Warning: mysql_select_db(): A link to the server could not be
>>>> established in /home/content/s/a/c/sacure/html/news/snews.php
>on
>>>> line 459
>>>> There was an error while connecting to the database.
>>>> Check your database settings.
>>>>
>>>> _______________________________________________
>>>> Full-Disclosure - We believe in it.
>>>> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
>>>> Hosted and sponsored by Secunia - http://secunia.com/
>>

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

juha-matti.laurio at netti

Oct 25, 2007, 3:27 PM

Post #6 of 16 (746 views)
Permalink

Re: Google Sacure [In reply to]

http://www.sacure.com/news/home/sacure-to-offer-security-staffing-and-consulting-services/

generates the same result as well.

- Juha-Matti

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

staticrez at gmail

Oct 25, 2007, 5:51 PM

Post #7 of 16 (740 views)
Permalink

Re: Google Sacure [In reply to]

Way too much info.

Let's map out some tables names now....

http://www.sacure.com/login_process.php

On 10/25/07, Juha-Matti Laurio <juha-matti.laurio [at] netti> wrote:
>
>
> http://www.sacure.com/news/home/sacure-to-offer-security-staffing-and-consulting-services/
>
> generates the same result as well.
>
> - Juha-Matti
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/
>

mbann at cems

Oct 25, 2007, 7:08 PM

Post #8 of 16 (737 views)
Permalink

Re: Google Sacure [In reply to]

Maybe it's a joke. :-)

Fabrizio wrote:
> Way too much info.
>
> Let's map out some tables names now....
>
> http://www.sacure.com/login_process.php
>
> On 10/25/07, *Juha-Matti Laurio* <juha-matti.laurio [at] netti
> <mailto:juha-matti.laurio [at] netti>> wrote:
>
> http://www.sacure.com/news/home/sacure-to-offer-security-staffing-and-consulting-services/
>
> generates the same result as well.
>
> - Juha-Matti
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> <http://lists.grok.org.uk/full-disclosure-charter.html>
> Hosted and sponsored by Secunia - http://secunia.com/
>
>
> ------------------------------------------------------------------------
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/

--
CEMS IT Office
185 Amundson Hall
(612)-626-0712
https://www.cems.umn.edu/dept/itoffice/

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

redhowlingwolves at bellsouth

Oct 25, 2007, 9:27 PM

Post #9 of 16 (750 views)
Permalink

Re: Google Sacure [In reply to]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

First off,it's on GoDaddy (dot)com.That should be the first pointer.

Michael Bann wrote:
> Maybe it's a joke. :-)
>
> Fabrizio wrote:
>> Way too much info.
>>
>> Let's map out some tables names now....
>>
>> http://www.sacure.com/login_process.php
>>
>> On 10/25/07, *Juha-Matti Laurio* <juha-matti.laurio [at] netti
>> <mailto:juha-matti.laurio [at] netti>> wrote:
>>
>>
http://www.sacure.com/news/home/sacure-to-offer-security-staffing-and-consulting-services/
>>
>> generates the same result as well.
>>
>> - Juha-Matti
>>
>> _______________________________________________
>> Full-Disclosure - We believe in it.
>> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
>> <http://lists.grok.org.uk/full-disclosure-charter.html>
>> Hosted and sponsored by Secunia - http://secunia.com/
>>
>>
>> ------------------------------------------------------------------------
>>
>> _______________________________________________
>> Full-Disclosure - We believe in it.
>> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
>> Hosted and sponsored by Secunia - http://secunia.com/
>

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQFHIWyzxajqy/aNaRsRAmJMAKCmpotsqKhBCVpAQo9N1vPCbZqqswCdFJ6i
ch8p5dc1RJ6LMfDw2zXVr6Y=
=8bh4
-----END PGP SIGNATURE-----

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

w3bd3vil at gmail

Oct 26, 2007, 8:54 AM

Post #10 of 16 (706 views)
Permalink

Re: Google Sacure [In reply to]

ole:
your site itself has problems! how are you going to solve others problems?
Welcome ole! Your request has been directed to the Customer
Servicedepartment. Please wait for our operator to answer your call.
Call accepted by operator JC. Currently in room: JC. ole:
any answers?
JC:
Hello Ole
JC:
Do you have a question?
ole:
your site itself has problems! how are you going to solve others problems?
JC:
What problems are you speaking of
JC:
We're currently working to fix some of our pages if that is what you're
referring to
ole:
Access denied for user:
'sacuredb [at] 64'<%27sacuredb [at] 64%27>(Using
password: YES)
ole:
/home/content/s/a/c/sacure/html/news/snews.php
JC:
Yes, I understand the concern with our News and Events page
JC:
We're working to fix that, my apologies
ole:
Your being discussed on FullDisclosure
ole:
do you know what that is?
JC:
No
JC:
Can you explain to me what that is
ole:
are you by anyway related to information security testing?
JC:
Yes we are
JC:
Can you please explain to me what Full Disclosure is and what the discussion
is
ole:
well you should be asking one of your penetration testers there what FD is

whupass at hushmail

Oct 26, 2007, 2:54 PM

Post #11 of 16 (719 views)
Permalink

Re: Google Sacure [In reply to]

The truth about Sacure is that they have little to no capabilities
or talent what so ever. Their website has been malfunctioning since
well before August 2007 and they never caught it. Why would anyone
hire a “Managed Security” company that can’t detect issues in their
own network? How the hell are they going to detect issues in yours?

Reference:

http://lists.grok.org.uk/pipermail/full-disclosure/2007-
October/067050.html

Furthermore, Sacure has a broken customer portal. How would a
“leader” in “Managed Security Services” not notice that their
customer portal was broken? When you try to login to the portal you
get an error that shows “Query failed : Table
‘sacure123.assessment’ doesn’t exist”. The obvious comes to mind;
Sacure must not have any customers that use their “Managed Security
Service”… so… how are they a leader again?

In addition Sacure also claims that they are “Professional Security
Service” experts. This is obviously bullshit. When you read through
the materials on their website you find things like references to
XSS (“Cross-Site Shipping”). What the fuck is that? Are they going
to send UPS to assess your network? Last time I checked XSS was
Cross-Site Scripting.

Reference:

http://lists.grok.org.uk/pipermail/full-disclosure/2007-
October/067065.html

I wish that people in the security community would take the time to
expose the “fake” security companies like Sacure for what they
really are. This would help innocent buyers who do not know any
better to avoid companies like Sacure. It would help them to avoid
being ripped off.

Sacure… it’s a fucking joke.

On Fri, 26 Oct 2007 00:27:34 -0400 scott
<redhowlingwolves [at] bellsouth> wrote:
>First off,it's on GoDaddy (dot)com.That should be the first
>pointer.
>
>
>
>Michael Bann wrote:
>> Maybe it's a joke. :-)
>>
>> Fabrizio wrote:
>>> Way too much info.
>>>
>>> Let's map out some tables names now....
>>>
>>> http://www.sacure.com/login_process.php
>>>
>>> On 10/25/07, *Juha-Matti Laurio* <juha-matti.laurio [at] netti
>>> <mailto:juha-matti.laurio [at] netti>> wrote:
>>>
>>>
>http://www.sacure.com/news/home/sacure-to-offer-security-staffing-
>and-consulting-services/
>>>
>>> generates the same result as well.
>>>
>>> - Juha-Matti
>>>
>>> _______________________________________________
>>> Full-Disclosure - We believe in it.
>>> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
>>> <http://lists.grok.org.uk/full-disclosure-charter.html>
>>> Hosted and sponsored by Secunia - http://secunia.com/
>>>
>>>
>>> ----------------------------------------------------------------
>--------
>>>
>>> _______________________________________________
>>> Full-Disclosure - We believe in it.
>>> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
>>> Hosted and sponsored by Secunia - http://secunia.com/
>>

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

redhowlingwolves at bellsouth

Oct 26, 2007, 9:06 PM

Post #12 of 16 (711 views)
Permalink

Re: Google Sacure [In reply to]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

They can't even spell 'secure'.What the hell is 'sacure'?

Regards,
Scott

whupass [at] hushmail wrote:
> The truth about Sacure is that they have little to no capabilities
> or talent what so ever. Their website has been malfunctioning since
> well before August 2007 and they never caught it. Why would anyone
> hire a “Managed Security” company that can’t detect issues in their
> own network? How the hell are they going to detect issues in yours?
>
> Reference:
>
> http://lists.grok.org.uk/pipermail/full-disclosure/2007-
> October/067050.html
>
> Furthermore, Sacure has a broken customer portal. How would a
> “leader” in “Managed Security Services” not notice that their
> customer portal was broken? When you try to login to the portal you
> get an error that shows “Query failed : Table
> ‘sacure123.assessment’ doesn’t exist”. The obvious comes to mind;
> Sacure must not have any customers that use their “Managed Security
> Service”… so… how are they a leader again?
>
> In addition Sacure also claims that they are “Professional Security
> Service” experts. This is obviously bullshit. When you read through
> the materials on their website you find things like references to
> XSS (“Cross-Site Shipping”). What the fuck is that? Are they going
> to send UPS to assess your network? Last time I checked XSS was
> Cross-Site Scripting.
>
> Reference:
>
> http://lists.grok.org.uk/pipermail/full-disclosure/2007-
> October/067065.html
>
> I wish that people in the security community would take the time to
> expose the “fake” security companies like Sacure for what they
> really are. This would help innocent buyers who do not know any
> better to avoid companies like Sacure. It would help them to avoid
> being ripped off.
>
> Sacure… it’s a fucking joke.
>
>
> On Fri, 26 Oct 2007 00:27:34 -0400 scott
> <redhowlingwolves [at] bellsouth> wrote:
>> First off,it's on GoDaddy (dot)com.That should be the first
>> pointer.
>>
>>
>>
>> Michael Bann wrote:
>>> Maybe it's a joke. :-)
>>>
>>> Fabrizio wrote:
>>>> Way too much info.
>>>>
>>>> Let's map out some tables names now....
>>>>
>>>> http://www.sacure.com/login_process.php
>>>>
>>>> On 10/25/07, *Juha-Matti Laurio* <juha-matti.laurio [at] netti
>>>> <mailto:juha-matti.laurio [at] netti>> wrote:
>>>>
>>>>
>> http://www.sacure.com/news/home/sacure-to-offer-security-staffing-
>> and-consulting-services/
>>>> generates the same result as well.
>>>>
>>>> - Juha-Matti
>>>>
>>>> _______________________________________________
>>>> Full-Disclosure - We believe in it.
>>>> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
>>>> <http://lists.grok.org.uk/full-disclosure-charter.html>
>>>> Hosted and sponsored by Secunia - http://secunia.com/
>>>>
>>>>
>>>> ----------------------------------------------------------------
>> --------
>>>> _______________________________________________
>>>> Full-Disclosure - We believe in it.
>>>> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
>>>> Hosted and sponsored by Secunia - http://secunia.com/
>
>

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQFHIrlAxajqy/aNaRsRApwMAJ9Obal+uzlNax+l2uat0PZMMMtmowCeMz99
JC1z7NFsDBtvGqI46zXYCWg=
=iXxr
-----END PGP SIGNATURE-----

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

yahoo at jimpop

Oct 26, 2007, 9:14 PM

Post #13 of 16 (718 views)
Permalink

Re: Google Sacure [In reply to]

On Sat, 2007-10-27 at 00:06 -0400, scott wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> They can't even spell 'secure'.What the hell is 'sacure'?

Perhaps it's suppose to be sauce. :-)

-Jim P.

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

whupass at hushmail

Oct 27, 2007, 10:50 AM

Post #14 of 16 (698 views)
Permalink

Re: Google Sacure [In reply to]

God, this is just more proof that they have no idea what they are
doing. How long does it take to fix errors on a website? I mean, I
know that they are using Godaddy.com and don't host their own
stuff...

wait... that can't be right!

How can a leader in "Managed Security Services" not have the
ability to host their own web server? Somethings fishy...

On Fri, 26 Oct 2007 11:54:22 -0400 webby devil <w3bd3vil [at] gmail>
wrote:
>ole:
>your site itself has problems! how are you going to solve others
>problems?
> Welcome ole! Your request has been directed to the Customer
>Servicedepartment. Please wait for our operator to answer your
>call.
> Call accepted by operator JC. Currently in room: JC. ole:
>any answers?
>JC:
>Hello Ole
>JC:
>Do you have a question?
>ole:
>your site itself has problems! how are you going to solve others
>problems?
>JC:
>What problems are you speaking of
>JC:
>We're currently working to fix some of our pages if that is what
>you're
>referring to
>ole:
>Access denied for user:
>'sacuredb [at] 64'<%27sacuredb [at] 64%27>(Using
>password: YES)
>ole:
>/home/content/s/a/c/sacure/html/news/snews.php
>JC:
>Yes, I understand the concern with our News and Events page
>JC:
>We're working to fix that, my apologies
>ole:
>Your being discussed on FullDisclosure
>ole:
>do you know what that is?
>JC:
>No
>JC:
>Can you explain to me what that is
>ole:
>are you by anyway related to information security testing?
>JC:
>Yes we are
>JC:
>Can you please explain to me what Full Disclosure is and what the
>discussion
>is
>ole:
>well you should be asking one of your penetration testers there
>what FD is

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

reepex at gmail

Oct 27, 2007, 2:25 PM

Post #15 of 16 (694 views)
Permalink

Re: Google Sacure [In reply to]

please stop trying to ruin a noname company - all you are doing is
giving n3td3v more things to talk about so that people click his link
and his terrorist cell can be funded by adsense.

If you want a company to laugh at you should instead try irm and
their cisco xss.

On 10/27/07, whupass [at] hushmail <whupass [at] hushmail> wrote:
> God, this is just more proof that they have no idea what they are
> doing. How long does it take to fix errors on a website? I mean, I
> know that they are using Godaddy.com and don't host their own
> stuff...
>
> wait... that can't be right!
>
> How can a leader in "Managed Security Services" not have the
> ability to host their own web server? Somethings fishy...
>
>
>
> On Fri, 26 Oct 2007 11:54:22 -0400 webby devil <w3bd3vil [at] gmail>
> wrote:
> >ole:
> >your site itself has problems! how are you going to solve others
> >problems?
> > Welcome ole! Your request has been directed to the Customer
> >Servicedepartment. Please wait for our operator to answer your
> >call.
> > Call accepted by operator JC. Currently in room: JC. ole:
> >any answers?
> >JC:
> >Hello Ole
> >JC:
> >Do you have a question?
> >ole:
> >your site itself has problems! how are you going to solve others
> >problems?
> >JC:
> >What problems are you speaking of
> >JC:
> >We're currently working to fix some of our pages if that is what
> >you're
> >referring to
> >ole:
> >Access denied for user:
> >'sacuredb [at] 64'<%27sacuredb [at] 64%27>(Using
> >password: YES)
> >ole:
> >/home/content/s/a/c/sacure/html/news/snews.php
> >JC:
> >Yes, I understand the concern with our News and Events page
> >JC:
> >We're working to fix that, my apologies
> >ole:
> >Your being discussed on FullDisclosure
> >ole:
> >do you know what that is?
> >JC:
> >No
> >JC:
> >Can you explain to me what that is
> >ole:
> >are you by anyway related to information security testing?
> >JC:
> >Yes we are
> >JC:
> >Can you please explain to me what Full Disclosure is and what the
> >discussion
> >is
> >ole:
> >well you should be asking one of your penetration testers there
> >what FD is
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/
>

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

worriedsecurity at googlemail

Oct 29, 2007, 11:20 AM

Post #16 of 16 (675 views)
Permalink

Re: Google Sacure [In reply to]

On 10/27/07, reepex <reepex [at] gmail> wrote:
>
> please stop trying to ruin a noname company - all you are doing is
> giving n3td3v more things to talk about so that people click his link
> and his terrorist cell can be funded by adsense.

I'm a lawful researcher and n3td3v is a non-profit organisation and have
never put adverts onto any website.

Think carefully before taking what "reepex" says with any credibility.

n3td3v

Index | Next | Previous | View Threaded

Interested in having your list archived? Contact Gossamer Threads