Login | Register For Free | Help
Search for: (Advanced)

Mailing List Archive: Full Disclosure: Full-Disclosure

Re: Out of Office AutoReply: Snort Signature to det ect credit cards

  

 
Full Disclosure full-disclosure RSS feed   Index | Next | Previous | View Threaded


randy at procyonlabs

May 9, 2008, 1:32 AM

Post #1 of 3 (453 views)
Permalink
Re: Out of Office AutoReply: Snort Signature to det ect credit cards
On Fri, May 9, 2008 4:23 am, West, Bill (USA) wrote:
> I am no longer on-site full time and have limited access to e-mail. I will
> respond to you as soon as I can. If your issue is an emergency, please use
> the contacts below.
>
> Emergencies for MTU Users: Contact Augustin Schuster, +1-860-667-6620
> Emergencies for T-Systems & MTU Management: Contact Mike Bouranis,
> +1-248-276-3459
>
> Thanks
>

Folks, it is 2008. Like cell phones, e-mail autoresponders are no longer
cool. Use a separate address for mailing lists (like a personal or
disposable one) so we don't get bombarded with your junk.

Did I mention the social engineering treasures sent around the world with
each one? Do you really work in security?

Gah!

Randy


_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/


nick at virus-l

May 9, 2008, 4:45 AM

Post #2 of 3 (450 views)
Permalink
Re: Out of Office AutoReply: Snort Signature to det ect credit cards [In reply to]
Randal T. Rioux to Bill West:

> > I am no longer on-site full time and have limited access to e-mail. I will
> > respond to you as soon as I can. If your issue is an emergency, please use
> > the contacts below.
<<snip>>
>
> Did I mention the social engineering treasures sent around the world with
> each one? Do you really work in security?

Maybe this kind of thing is why he no longer...



Regards,

Nick FitzGerald


_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/


fdiggle at gmail

May 10, 2008, 11:07 PM

Post #3 of 3 (423 views)
Permalink
Re: Out of Office AutoReply: Snort Signature to det ect credit cards [In reply to]
Fredrick Diggle would like to disclose a vulnerability in email auto
responders. Using these auto responders causes information disclosure
that the victim is currently not in the office. an attacker could use
this information to know when a victim is not in the office and XSS
their browser for fun and profit.

On Fri, May 9, 2008 at 6:45 AM, Nick FitzGerald
<nick [at] virus-l> wrote:
> Randal T. Rioux to Bill West:
>
>
> <<snip>>
>
> >
> > Did I mention the social engineering treasures sent around the world with
> > each one? Do you really work in security?
>
> Maybe this kind of thing is why he no longer...
>
>
>
> Regards,
>
> Nick FitzGerald
>
>
>
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/
>

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Full Disclosure full-disclosure RSS feed   Index | Next | Previous | View Threaded
 
 


Interested in having your list archived? Contact Gossamer Threads
 
  Web Applications & Managed Hosting Powered by Gossamer Threads Inc.